AGILE . SKILLED .
TRUSTFUL

YesWeHack, #1 European Bug Bounty platform.

Yes We Hack :  Vulnerability Coordination through CrowdSourced Security
Yes we hack workflow and points system

A quick update on our ranking point system.

We have recently been questioned on how our ranking point system works and how report quality is evaluated. Our system has evolved quite a lot since inception, and some new report quality rating features have been added. 1- Triaging The first step of a bug report life cycle is being…

YES, we have a changelog.

Hunters and Program Managers can now track our interfaces and backend evolutions. We’re working hard, under the hood, to offer you the best experience possible. From the first platform iteration, we’ve gone already a long way, paved with new features milestones. You can now track them all on an unified…

YesWeHack & Alibaba Security Meetup challenge solution

The goal of the challenge was to find an XSS vulnerability on a minimalist website. It was composed of 3 steps of increasing difficulty in the form of extra security layer. All the payload are tested with Chrome 75. difficulty Escape GET value X-XSS-Protection CSP easy NO 0 NO medium…

Alibaba Security Meetup

Catch the flag, catch the (real!) gold

Did you ever have the chance to win a pure gold medal ?THIS IS HAPPENING : Join us next week, on the 18th of June, at the Alibaba Security Meetup-hacker Community Event organized by Alibaba Security and Lazada in partnership with YesWeHack.  TO REGISTER Highlights of the evening Hacking game…

CTF YesWeHack Singapore

Let’s break stuff together Singapore : YesWeHack is coming up with a brand new CTF at Infosec in the City !

Infosec in the City Singapore is a premier techno-centric cybersecurity event, bringing together top cybersecurity leaders from both the East and the West to share deep-technical insights, and build the next-generation cybersecurity capabilities around the globe. Visit YesWeHack at booth 5N7-01 to learn how you can make cybersecurity an accelerator…

The Cybersecurity Act: strengthening Coordinated Vulnerability Disclosure at the European Level

In March 2019, the EU Parliament adopted the Cybersecurity Act. The EU Cybersecurity Act aims to strengthen the role of the European Agency for Network and Information Security (ENISA) and introduces a common certification framework for ICT products (Hardware, Software and Services). Before this, in 2018, the European Commission advocated…

YesWeHack – Europe’s leading bug bounty platform – is opening an office in Singapore

YesWeHack – Europe #1 bug bounty platform – has announced that it is opening an office in Singapore. The new office is part of YesWeHack’s fast-growth strategy for its international activities following a €4 million fundraising at the start of the year. YesWeHack is consolidating its global positioning in a…

New YesWeHack Api Extension for Burp

YesWeBurp Today we are proud to release the version 1.0.0 of our BurpSuite extension. This will allow you to access all the programs details from YesWeHack directly inside of BurpSuite.But also instantly configure the scopes and the required headers according to the program rules. No more copy pasting between the…

Solution for “A Weird XSS Case”

This challenge was created for BSidesDublin 2019, the goal was to trigger an alert using an XSS on the domain https://bsides2019dublin.h4cktheplanet.com/. Nobody was able to solve it during the event so we decided to keep it online for an extra week to let you play with it. 3 persons managed…

New features for quicker and improved Bug Reporting !

Our Dev Team issued two new features for you to save time and gain quality while reporting vulnerabilities. As shown below, now you can access a new menu entry called “My Yes We Hack“. This section provides a template manager up to five templates. According to our experience, 5 templates…

1 2 3 4 8