FAQ

Find out more about SecApps BountyPage and all related services.

  • questions
  • answers

General

Q. What is SecApps BountyPage?

SecApps BountyPage helps you set up and run public and private bug bounty and responsible vulnerability disclosure programs.

Q. What can I do with SecApps BountyPage?

SecApps BountyPage simplifies the entire bug bounty submission and triaging process by offering an embeddable SDK which can be plugged into any web application. The researcher details are collected upon submission and sent forward to other SecApps services, such as SecApps Triage or your external systems such as Jira, Slack, etc.

Q. Who are the main users of SecApps BountyPage?

SecApps BountyPage is designed to be used by small to large enterprises to kick start their responsible vulnerability disclosure and bug bounty programs.

Q. What kind of output can I get with SecApps BountyPage that I could not get with any other solution?

SecApps BountyPage is one of a kind. It is the only tool on the market to help you setup your bug bounty program in a completely bespoke way.

Q. How do I interface with SecApps BountyPage?

SecApps BountyPage can be accessed by the BountyPage application part of your Launchpad.

Q. How do I get started using SecApps BountyPage?

It is straightforward to get started. All related resources and help materials are available online. The tool requires minimal initial user input. SecApps fully automates everything else.

Billing

Q. How much does SecApps BountyPage cost?

Creating a BountyPage instance does not cost anything. You pay what you use for any other resource outside of BountyPage.

BountyPage

Q. What is a BountyPage instance?

The BountyPage instance is a single configuration of a bug bounty program.

Q. How many BountyPage instances can I create?

You can create up to 1000 BountyPage instances per account. SecApps can extend this limit per request.

Q. What does SecApps do with my BountyPage instances?

SecApps is responsible for maintaining and running your BountyPage instances plus the corresponding SDK. SecApps does not use the data to form or influence other service offerings.

Q. Where are BountyPage submissions collected?

SecApps BountyPage is only responsible for setting up your bug bounty and responsible vulnerability disclosure program. All data received by BountyPage is stored in SecApps Triage. You can also forward the data to any other 3rd-party system using SecApps Connect.

Security

Q. How secure is my data in SecApps BountyPage?

SecApps takes security very seriously, and this is why we have baked in hard security controls around your data. Your data has encryption at rest and in transit. It is up to you to decide for how long you want to keep your BountyPage instances.

Q. What options do I have for encrypting data stored on SecApps BountyPage?

Your data is automatically encrypted with the highest possible encryption standard. SecApps does not need to access your data except for executing your BountyPage instances and providing you access to read the data.

Was this page helpful?