HackerOne vs. YesWeHack

HackerOne

YesWeHack

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
HackerOne	Score 7.0 out of 10	N/A	HackerOne is a hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be exploited, from the company of the same name in San Francisco. The service is used for vulnerability location, pen testing, bug bounty, and vulnerability triage services.	N/A
YesWeHack	Score 0.0 out of 10	N/A	Founded in 2015, YesWeHack is a global Bug Bounty and VDP Platform. YesWeHack offers companies an innovative approach to cybersecurity with Bug Bounty (pay-per-vulnerability discovered), connecting more than 45,000 cybersecurity experts (ethical hackers) across 170 countries with organisations to secure their exposed scopes and reporting vulnerabilities in their websites, mobile apps, infrastructure and connected devices. YesWeHack runs private (invitation based only) programs and…	N/A

Pricing

HackerOne

YesWeHack

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
HackerOne	YesWeHack
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	Yes

Entry-level Setup Fee

No setup fee

Additional Details

For more information please email www.hackerone.com/contact or find us on the AWS Marketplace: https://aws.amazon.com/marketplace/seller-profile?id=10857e7c-011b-476d-b938-b587deba31cf

—

More Pricing Information

Community Pulse
	HackerOne	YesWeHack
Top Pros	Pro Easy to use Pro Working with large Pro Beautifully designed	No answers on this topic
Top Cons	Minus No easy Minus No easy way Minus End user	No answers on this topic

User Ratings
	HackerOne	YesWeHack
Likelihood to Recommend	7.0 (2 ratings)	- (0 ratings)

User Testimonials
	HackerOne	YesWeHack
Likelihood to Recommend	HackerOne It is one of the good platforms for security researchers to submit bugs and other vulnerabilities, it however, has some challenges, in terms of un-verified and duplicate submissions. Incentivized Jugpreet Talwar Technical Intern Read full review	YesWeHack No answers on this topic
Pros	HackerOne Filter for spammy bug reports Nice central interface Payment/reward system is nice Incentivized Verified User Anonymous Read full review	YesWeHack No answers on this topic
Cons	HackerOne A lot of duplicate bugs get reported, although it does offer automatic suggestion of previously reported bugs that may be duplicates, it is far from perfect. Anyone can report bugs, a lot of them are not verified before submission. This sometimes leads to a lot of time spent in verifying if the bug is really actionable. Each submission has to be treated with equal potential, a lot of time, some time gets invested in vulnerabilities that aren't as important as some others. Incentivized Jugpreet Talwar Technical Intern Read full review	YesWeHack No answers on this topic
Alternatives Considered	HackerOne These were very close and we liked HackerOne better. For a time we did have both and we felt the need to consolidate the information into one platform and end of life our internal offering. Overall we've been fairly happy with HackerOne. Incentivized Verified User Anonymous Read full review	YesWeHack No answers on this topic
Return on Investment	HackerOne Bugs that can't be tracked internally are submitted by external researchers, which is an important factor for security vulnerabilities. Even if the bugs reported are duplicates, there still is provision to award reputation points, that keep the researchers engaged. It also requires a lot of verification and validation, as a lot of the submissions are unverified to begin with. Incentivized Jugpreet Talwar Technical Intern Read full review	YesWeHack No answers on this topic
ScreenShots		YesWeHack Screenshots