Overview
Service Information on YesWeHack
What is YesWeHack?
YesWeHack Pricing
Overall experience with YesWeHack
“Smooth Experience With Effective Support and Skilled Security Researchers Reported”
About Company
Company Description
YesWeHack is a global Bug Bounty and Vulnerability Management Platform. Founded by ethical hackers in 2015, YesWeHack connects organisations worldwide to tens of thousands of ethical hackers, who uncover vulnerabilities in websites, mobile apps, connected devices and digital infrastructure. The YesWeHack platform offers a range of integrated, API-based solutions: Bug Bounty (crowdsourcing vulnerability discovery); Vulnerability Disclosure Policy (creating and managing a secure channel for external vulnerability reporting); Pentest Management (managing pentest reports from all sources); Attack Surface Management (continuously mapping online exposure and detecting attack vectors); and ‘Dojo’ (ethical hacking training). YesWeHack’s services are ISO 27001- and ISO 27017-certified and accredited by CREST. YesWeHack’s infrastructure uses EU-based, GDPR-compliant private hosting that meets the most stringent standards: ISO 27001, ISO 27017, ISO 27018, ISO 27701 and SOC II Type 2.
Company Details
Do You Manage Peer Insights at YesWeHack?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
Reviewer Insights for: YesWeHack
Performance of YesWeHack Across Market Features
YesWeHack Likes & Dislikes
The support from them that help us a lot.
Bug Bounty Platform Pentest Management (Will Be Confirmed With Our Internal Team) Attack Surface Management
1. easy to use features 2. a very experienced triage team 3. attractive price offers
None so far.
Nope, but the attack surface management service only scan the assets we have in public environment and vulnerability software.
i have not found anything to dislike in the product
Top YesWeHack Alternatives
Peer Discussions
YesWeHack Reviews and Ratings
- IS DEPT. HEAD50M-1B USDBankingReview Source
Smooth Experience With Effective Support and Skilled Security Researchers Reported
Overall the experience is very good, we don't have any issues so far, and the expertise of their security researchers are very good, even a lot better compared to what we usually get from the local penetration testing vendors. - IT Security & Risk Management Associate1B-10B USDBankingReview Source
Collaboration With YesWeHack Revealed Unexpected Vulnerabilities And Security Improvements
When we collaborated with the YesWeHack service, we discovered many vulnerabilities that we had not anticipated, which greatly helped us improve our security posture. - Manager, IT Security and Risk Management<50M USDBankingReview Source
YesWeHack is the best solution for Bug Bounty Program
YesWeHack provides the best solution for Bug Bounty Program and Vulnerability Disclosure Program. With a very ckear Bug Bounty Process flow and easy to use features and also support provided can support the company's goals for this program - Cyber Security Specialist50M-1B USDTransportationReview Source
Don't bother with other platforms - YWH is the real deal
We began looking seriously into Bug Bounty programs after receiving random vulnerability reports through various channels. We didn't know how to manage them, like how much we should pay, how much to pay, amongst other worries. Before this, we already had some interest in it, as it seems more outcome-driven/actionable, compared to pentests which are simply based on inputs like man days, scopes or applications.We started our exploration by running a short POC with a local vendor, but they didnt offer triage services.The triage service from YesWeHack is next level! It's so much more than just validating reports - they go really deep. This makes it super easy for us to communicate with our development and application teams. The insight the triage team provides is seriously game-changing and shows that they care... It's like they're holding our hand through the entire process.It's only been a few weeks in, but we're already getting a lot of high-impact and critical vulnerability reports that were totally missed by previous Bug Bounty Programs and Penetration Testing. The quality of hunters on this platform is unbelievable. They've found vulnerabilities that could've had a massive impact on our reputation and systems. We're so relieved and can't even imagine what would have happened otherwise. We also don't pay much for low impact reports.Our Customer Success Manager has been an absolute star! From day one, they've been super proactive, keeping everything running smoothly with the hunters, helping us manage communication, and even following up throughout the entire process - right through to when the fixes are implemented. At first, we were a bit worried because there's no local support in Indonesia, but the team has been so quick to respond. - Lead Security Engineer<50M USDBankingReview Source
YesWeHack Platform Helps Making our Product More Secure
The YesWeHack platform has been helping our company secure our product. They have already helped us find and mitigate problems that for sure made our product more resilient to attacks. The platform is well organized, the triage team is top notch, and the support is just stellar.