What is YesWeHack?
YesWeHack is a Bug Bounty and Vulnerability Management Platform. Founded by ethical hackers in 2015, YesWeHack connects organisations worldwide to tens of thousands of ethical hackers, who uncover vulnerabilities in websites, mobile apps, connected devices and digital infrastructure.
Bug Bounty programs benefit from in-house triage, personalised support, a customisable model and results-based pricing. Clients include Tencent, Swiss Post, Orange France and the French Ministry of Armed Forces.
The YesWeHack platform offers a range of integrated, API-based solutions: Bug Bounty (crowdsourcing vulnerability discovery); Vulnerability Disclosure Policy (creating and managing a secure channel for external vulnerability reporting); Pentest Management (managing pentest reports from all sources); Attack Surface Management (continuously mapping online exposure and detecting attack vectors); and ‘Dojo’ (ethical hacking training).
The vendor states YesWeHack complies with security, financial traceability and privacy requirements. YesWeHack’s services are ISO 27001- and ISO 27017-certified and accredited by CREST. YesWeHack’s infrastructure uses EU-based, GDPR-compliant private hosting that meets the most stringent standards: ISO 27001, ISO 27017, ISO 27018, ISO 27701 and SOC II Type 2. The YesWeHack platform is also permanently subject to a public Bug Bounty Program.
Categories & Use Cases
Videos
Screenshots
1 / 5
Screenshot of Public programs These give the entire hunter community access to an organization's program to benefit from their diverse skills. YesWeHack Hunters can access all public programs of the platform.
Product Demos
Technical Details
| Deployment Types | SaaS |
|---|---|
| Mobile Application | No |
| Supported Countries | Worldwide |
| Supported Languages | English-French-German-Spanish-Chinese-Bahasa Melayu |
FAQs
What are YesWeHack's top competitors?
HackerOne, Bugcrowd, and Intigriti are common alternatives for YesWeHack.