Bug Bounty Program

Identify security vulnerabilities in EGBBIA products and earn rewards. We value your contribution to making EGBBIA secure and reliable.

Report a Vulnerability View Guidelines

What is This Program?

EGBBIA’s Bug Bounty Program invites security researchers to find and report security flaws responsibly. By participating, you help us build safer technology.

Valid reports receive recognition + financial incentives
100% transparency in evaluation and resolution
Access to exclusive security tools for researchers

Open to all researchers who agree to EGBBIA's ethical guidelines and terms.

In Scope

Cloud API endpoints
Web and mobile applications
Public repositories and CLI tools

Rewards

Rewards vary by issue severity and impact. Researchers can expect:

$250 - $5,000

Common web vulnerabilities

$5K - $25K

High-severity API flaws

$50,000+

Critical infrastructure vulnerabilities

Reporting Guidelines

Prepare

Verify if your finding is in scope
Document steps using our reporting template
Test PoCs without affecting production data

Submit

Use this form (Section below)
Include full technical details
Wait for confirmation (48h max)

Key Do's and Don'ts

Do

Test non-destructively
Use responsible disclosure
Include steps to reproduce

Don't

Access production data
Disclose findings publically
Share with third parties

Submit Security Report

Common Questions

What's in-scope? ▼

Our bug bounty program covers all publicly accessible web properties, mobile applications, and APIs under domains owned by EGBBIA Technologies Ltd. See our full in-scope documentation here.

How long will it take to get a response? ▼

Is there a public disclosure timeline? ▼

Yes - we follow standard disclosure timelines. For non-critical bugs: 30 days before public acknowledgment. For severe threats: immediate remediation with co-discussion.

Need Help?

Contact our security team directly at security@egbbia.com

View full program terms