Web3
Bug Bounty
Harness the full power of crowdsourced security with 20k+ ethical hackers curated by HackenProof.
- 20000+
- Ethical hackers
- 10000+
- Submitted reports
- $4B+
- Paid to hackers
- 70
- Active programms
Receive reports on security flaws from ethical hackers before cybercriminals can exploit them.
Cost-effective security
You only have to pay for found bugs, and HackenProof ensures that all bugs are relevant.
Choose your scope
Bug bounty program follows your goals, and you select the scope, timeframe and rewards.
Crowdsourced protection
Bug Bounty gives access to thousands of external security experts.
Web3 projects suffer costly exploits without adequate protection
- $3.8B
stolen from crypto projects in 2022
- 82%
DeFi Protocols accounted for 82% of all hack losses in 2022
- 2x Damage
direct financial losses + token price drop
What projects need Bug Bounty?
Crypto Exchanges & Finance
Startups and established projects in lending and borrowing, trading and prediction markets, token swaps, investments, crowdfunding, insurance, portfolios, and wallets.
Blockchain Ecosystems
Enterprises developing blockchain and protocol technology and use cases for them.
Gaming
Web3 projects creating virtual worlds for entertainment and earning.
Arts and Collectibles
Apps and platforms for digital ownership in art and fashion, digital collectibles, and music.
When to run Bug Bounty?
A pre-launch bug bounty secures your product, minimizing risk at launch.
Public launch bug bounty enhances security, utilizing global talent.
Post-incident bug bounties restore trust, transforming weaknesses into strengths.
Why choose HackenProof for Bug Bounty?
Expertise
10k+ found bugs, 70+ active programs, 20k+ experts. Avalanche, CoinGecko, IoTeX, Huobi, and Gate.io use HackenProof.
Pay-as-you-go
Only pay for vetted bugs and triage services. HackenProof handles all policy and payment transactions.
Top-Notch Triage
Receive only the most relevant reports as we check for duplicates and out-of-scope issues and identify their significance.
How does it work?
You submit the required documentation and get the estimation of the audit scope, timeline, and price.
3 - 10 days
Get a quote
Bounty Policy
Sign Contract
Add funds
On average, it takes from 5 to 10 business days to launch your program.
Clients say
"CoinGecko is excited about working with Hacken for our bug bounty program. We are well aware of the dangers that vulnerabilities may present to our users and this is one way where we take proactive steps together with Hacken to ensure and improve the safety, security, and integrity of our platform."
Booby Ong
Co-founder, CoinGecko
"Hacken’s work to analyze our recent Proof of Reserves update is a great example of the power of community feedback."
Binance
Binance
"We highly recommend Hacken to anyone in need of Web3 security services and a reliable partner for their blockchain initiatives. Their team’s professionalism and expertise in the security space have helped us to secure an ecosystem for our users."
Isha Tyagi
Technical Program Manager
"Hacken has provided mature security audits with a proactive approach, prompt communication and valuable security recommendations. We appreciate our partnership and would recommend collaboration with Hacken to anyone keen to strengthen their code’s resilience."
Aurora
Aurora
"Internal stakeholders are impressed with the work Hacken has completed so far. An organized team, they’ve managed the project well, never letting the six-hour time difference get in the way of productivity. Customers can expect an experienced and professional partner."
Tony Wei
CTO, Gate.io
"Hacken founders inherited quality, professionalism, and integrity from Deloitte, their ex-employer."
Sunny Lu
CEO, Vechain
"Hacken’s meticulous approach to the audit process ensured that our smart contracts were reviewed comprehensively. Their professionalism and dedication were evident throughout the audit."
EBSI
Ebsi
"Hacken has provided highly professional audits with outstanding quality. We are delighted to work with such a well-known and trusted security vendor."
Jason, Seong Ho Lee
DeFi Architect at Wemade
"As our security partner, Hacken’s team of experts is a pleasure to work with. Their persistence in making recommendations and solving problems is impressive."
Qevan Guo
Co-founder of IoTeX
"Entrusting Hacken with a bug bounty program was the right call for us. They took care of all the routine processes and helped us make our products more secure."
Status
Crypto Wallet
"They've extended their background and clarification on the subject to ensure the project's success."
Ruben Guevara
DevOps Engineer Security Oriented, PAID Network
FAQ
What is the best way to start a bug bounty program?
What are the validity requirements for Bug Bounty?
What is HackenProof?
Other Web3 security services
Smart Contract Audit
Harness the power of an effective 4-stage audit methodology valued by industry leaders.
Proof
of ReservesEnhance transparency in crypto exchanges with independent on-chain proof of assets’ true collateralization.
dApp Audit
Identify vulnerabilities in applications interacting with blockchain networks with secure code review and static security analysis.