[Owasp-board] Initial Funding for OWASP Bug Bounty Program

Josh Sokol josh.sokol at owasp.org
Mon Apr 18 14:06:00 UTC 2016


Board,

Now that we have announced BugCrowd as our bug bounty program platform, it
is time to take the next step of figuring out how much of a bounty we want
to start with.  There is no minimum funding amount (we could do "kudo"
bounties if we want) and we can scale the rewards however we would like for
different categories.  Obviously, money equates to more motivated
researchers.  BugCrowd's recommendation is to fund the initial pot at
$5,000 and go from there.  I think we were originally talking about just
leveraging a Wall of Fame to start with (ie. "kudos"), but I wanted to see
what others thought about it.  Should we throw some money into the pot?
How much?  Your feedback is greatly appreciated.

~josh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20160418/7576450b/attachment.html>


More information about the Owasp-board mailing list