Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Crowdsourced Security Platform for Pen Testing, Bug Bounty, and More

Bugcrowd

Reviews from AWS customer

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

47 reviews
from

External reviews are not included in the AWS star rating for the product.

    Education Management

Indifferent

  • June 01, 2019
  • Review provided by G2

What do you like best about the product?
BugCrowd has managed to find a few issues that have managed to slip by me. The issues that were found though happened to be low priority. Good news.
What do you dislike about the product?
I don't really have a strong negative opinion, other than it can be somewhat expensive. I can say though that it was a little tricky with handing over information to ethical hackers whom I did not know or trust. I also realize bugcrowd's services are a little mediocre and are really great at assuring you that you at least have some sort of bug bounty program; quality of service is a little questionable though.
What problems is the product solving and how is that benefiting you?
Bug bounty programs are assiduous at demonstrating attentiveness beyond standard analysis and penetration.
Recommendations to others considering the product:
To those considering bugcrowd, I would say that you're headed in the right direction. From a personal standpoint, I've had nothing but a positive experience from bugcrowd. Bugcrowd really does bring peace of mind to you knowing that you're being proactive to protect your IP. Overall, bugcrowd does a fantastic job. I'd say the only real downside is the price tag.

    Information Technology and Services

Extremely disappointed with with Support and Ops Management.

  • December 11, 2018
  • Review provided by G2

What do you like best about the product?
Over the 5 months I have been using their program I did not see material results until month 4. In that month they were all very low priority bugs, some worth fixing, some not.
What do you dislike about the product?
At the end of Q2 2018 I contacted a sales rep at Bugcrowd to see if they were able to do a price cut to hit sales numbers. They obliged and gave me a great deal. The handoff to the Solutions Architect was smooth but soon after working with him I started to see the problems. I had very explicit scope I did not want tested. This scope was immediately ignored by the solutions architect and every single person I dealt with after. The scope was very explicit not to make new accounts, but to use the ones created for them. Multiple internal Bugcrowd employees ignored my request, and then followed by multiple researchers who had this scope explicit in their req. I let them know every time they didn’t follow this process, informing them it is not acceptable as they were entering our sales channels. I informed them if it continued to happen, that the benefit of using Bugcrowd would be outweighed by the negatives of researchers not following this outlined process. I then informed Bugcrowd if it continued to happen I will request a refund. The issue continued so I requested a pro-rated refund. I was denied and then was asked if I could do something on my end to prevent their process of not following directions. I informed Bugcrowd to pause the program because it doesn’t make sense for me to hardcode around their email addresses for their own lack of control and that the Bugcrowd platform from now moving forward has no use to me.

I do not recommend their products if you want anything more than a rubber stamp of having a ‘bug bounty program.’
What problems is the product solving and how is that benefiting you?
I wanted to use Bugcrowd for security testing. Was very disappointed when I had to cancel the program for their lack of following directions and inability to control their own researchers.
Recommendations to others considering the product:
Wait until the end of a quarter to negotiate if you are dead-set on using them.

    Information Technology and Services

Manage your connection with the best security researchers in the world

  • November 22, 2018
  • Review provided by G2

What do you like best about the product?
Bugcrowd helps you improve your security posture by linking you with some of the best security researchers in the world. There are so many unknowns about running a bug bounty program and the relationships with researchers that BugCrowd help you become familiar with and guide you into getting the best results out of your company. While anyone can run a bug bounty program on their own, the BugCrowd team is where the value comes from and their help is invaluable.
What do you dislike about the product?
The program can be expensive. But as long as you have your processes in place and internal teams on board to deliver valuable content to the program, you will make your monies worth.
What problems is the product solving and how is that benefiting you?
Bugcrowd allows us to get more eyes and better coverage over our systems from a security view.

    Utilities

The Right Choice

  • November 09, 2018
  • Review provided by G2

What do you like best about the product?
The best part of my many positive experiences with Bugcrowd has been with the triage team. Based on their diligence with confirming, duplicating researcher findings, working with those researchers and finally working with us has built trust to the point that I can take and work from Bugcrowd's reports at face value. I 100% trust that the triage team is working to our benefit and challenging researchers when things that are found don't quite add up.
What do you dislike about the product?
Not so much a dislike but my initial thought in working with Bugcrowd was from the standpoint of reservation. I was worried about handing over our web applications for the purpose of intentionally trying to exploit flaws and the fear of the unknown for what could happen with ethical hackers that we neither knew nor trusted. Those concerns were put to rest within days of the team reaching out to us and through scheduled status/progress meetings. Bugcrowd "invites" researchers they trust and because I have grown to trust Bugcrowd I trust their researchers by extension.
What problems is the product solving and how is that benefiting you?
Our goals are two fold, 1) Protect our customer's information and 2) not be in a position that we ever have to explain to the public or our board of directors why we didn't do everything we possibly could to complete the first goal.
Recommendations to others considering the product:
Our experience has been very positive with the Bugcrowd platform, team and campaigns we engaged them for. Best case is their team of researchers find little to nothing wrong with what they're testing and you get the peace of mind knowing you've done what you could to protect your IP. Worst case is you get to see exactly right down to the smallest detail what you can do better to achieve that peace of mind. Bugcrowd provides a service that I am proud to report statuses back to our leadership team with.

    Hospital & Health Care

Great program for due dilligence above and beyond standard testing

  • November 01, 2018
  • Review provided by G2

What do you like best about the product?
BugCrowd has found multiple serious issues that have managed to slip by our scanning and procedure based testing. The CrowdControl portal makes it easy to manage programs for a large number of applications like we have given our extensive online presence.
What do you dislike about the product?
It can be difficult to setup a large number of accounts for testing - not sure that's specific to BugCrowd but it is a difficulty of running Bug Bounties whether they be long or short. There have also been elements of the Bug Crowd portal that haven't worked well but have been addressed over the course of this year.
What problems is the product solving and how is that benefiting you?
Bug Bounty programs are used to demonstrate due diligence above and beyond standard static analysis, open source scanning, dynamic scanning and penetration testing.

    Computer Networking

Crowdsource your security vulnerabilities

  • August 25, 2018
  • Review provided by G2

What do you like best about the product?
Bugcrowd allows you to tap the expertise of many professionals to root out vulnerabilities in your work. I find this invaluable, as having developers security check their own code is prone to error. I find it to be a great way to discover problems rapidly and allow my teams to work on what they're good at.
What do you dislike about the product?
While highly effective, the service can be expensive, especially for small, internally-facing code. For a higher level project, it's worth it, though.
What problems is the product solving and how is that benefiting you?
Save time trying to discover security vulnerabilities with the in-house team. More effective discovery.

    Gunank S.

Platform for people who are always finding bug in everything

  • August 21, 2018
  • Review provided by G2

What do you like best about the product?
I like this platform because it provides opportunity to show case that you have find some bug or any application flow fault which will be really helpful for companies. Rewards are awesome if you are able to find a bug in software/App.
What do you dislike about the product?
As the platform provides opportunity for Enthusiastic people so i don't have any dislike for this. It also helps organisations to improve their product and save from hackers.
What problems is the product solving and how is that benefiting you?
Bugcrowd is providing Platform to its users and helping organisations to test their products and software. Bug bounty program by bugcrowd is another helping hand for both people and organisations.
Recommendations to others considering the product:
Yeah if you are exploring Bugcrowd then you are heading to a good direction just look into the code of some organisations and found some bugs in that.

showing 41 - 47