50076 policies in database
Link to program      
Contrast Security logo


Contrast Security

Contrast Security invites you to test our application security platform providing IAST, RASP, and SCA for applications and APIs.  

Our web interface allows users to log into to download specific language agents and view their security information (such attacks, and libraries) or reporting. The way you interact with Contrast depends on your particular situation, the tools and integrations you employ, or your roles and permissions

We appreciate your efforts and hard work in making our assets more resilient, accurate and secure. As we continue to build our product and rules, we wanted to get the research communities help in hardening and testing them before releasing to the general public. We look forward to working with the researcher community to create a meaningful and successful program. Good luck and happy hunting!

Each researcher will be assigned a dedicated test instance.  

Please see the Testing section for further details.

Scope and rewards

Program rules

This program follows Bugcrowd’s standard disclosure terms.

For any testing issues (such as broken credentials, inaccessible application, or Bugcrowd Ninja email problems), please email support@bugcrowd.com. We will address your issue as soon as possible.

This program does not offer financial or point-based rewards for P5 — Informational findings. Learn more about Bugcrowd’s VRT.

In Scope

Scope Type Scope Name

Dedicated test instance per researcher

Out of Scope

Scope Type Scope Name

Any Contrast Corporate Asset





This program crawled on the 2021-06-16 is sorted as bounty.

FireBounty © 2015-2024

Legal notices | Privacy policy