# BugBase Documentation ## BugBase Docs - [Welcome to BugBase Docs](https://docs.bugbase.ai/welcome-to-bugbase-docs.md): If you want to know how things work at BugBase, these docs will help you to understand the product so that you can easily navigate through your hacker-powered security program. - [What we do](https://docs.bugbase.ai/overview/what-we-do.md): BugBase is a curated marketplace for ethical hackers that helps businesses and startups set up bug bounty and vulnerability disclosure programmes. - [Changelogs](https://docs.bugbase.ai/overview/changelogs.md): BugBase pushes out features continuously, here's all the updates in the platforms at one place. - [Our Features](https://docs.bugbase.ai/overview/our-features.md): BugBase keeps businesses safe by providing an all-in-one platform to perform continuous and comprehensive security testing. - [Programs at BugBase](https://docs.bugbase.ai/overview/programs-at-bugbase.md): BugBase helps you host various crowdsourced security operations in one comprehensive dashboard where you can track, identify and mitigate vulnerabilities with ease. - [Vulnerability Disclosure Program (VDP)](https://docs.bugbase.ai/overview/programs-at-bugbase/vulnerability-disclosure-program-vdp.md): Hosting a VDP is a great way to keep your application well protected and secured. - [Bug Bounty Program](https://docs.bugbase.ai/overview/programs-at-bugbase/bug-bounty-program.md): An active crowdsourced security initiative. We filter bug reports so you do not waste time on distinguishing signal from noise - [Private Bounty Program](https://docs.bugbase.ai/overview/programs-at-bugbase/private-bounty-program.md): Private Bug Bounty program is an invite only bug bounty program where companies can choose to invite particular ethical hackers to test their application. - [Pentest Program (VAPT)](https://docs.bugbase.ai/overview/programs-at-bugbase/pentest-program-vapt.md): Get an in-depth analysis of the security of your application and reduce any probability of a security breach. - [Bug Report](https://docs.bugbase.ai/report-lifecycle/bug-report.md): A Report that is submitted on BugBase has comprehensive information about a vulnerability. Below are a few pointers that may help you to understand on how to analyse a report on BugBase - [Report Status](https://docs.bugbase.ai/report-lifecycle/report-status.md): Each Report on BugBase has a status associated with it to identify the stage of a particular vulnerability from submission to resolution - [Invite Organization Members to BugBase (RBAC)](https://docs.bugbase.ai/how-to/invite-organization-members-to-bugbase-rbac.md): Learn how to set up Role-Based Access Control on your BugBase Dashboard and invite your team members. - [Setup a Campaign for better program engagement](https://docs.bugbase.ai/how-to/setup-a-campaign-for-better-program-engagement.md): Learn how to set up a Time-Based Campaign on your BugBase Bug Bounty Programs to improve engagement. - [Submit a Bug Report on BugBase](https://docs.bugbase.ai/how-to/submit-a-bug-report-on-bugbase.md): Learn how to submit a bug report for a program listed on BugBase as a security researcher. - [Create a Bug Bounty Program on BugBase](https://docs.bugbase.ai/how-to/create-a-bug-bounty-program-on-bugbase.md): Learn how to create and setup a Bug Bounty Program on BugBase - [Download the mobile app](https://docs.bugbase.ai/how-to/download-the-mobile-app.md): Bugbase offers a mobile app that can be installed directly from your browser - [Create a Company Account](https://docs.bugbase.ai/company-guide/create-a-company-account.md): We at BugBase have made it really easy to create a company account. All you need to do it fill a 2 step form to register your account with BugBase - [Navigation](https://docs.bugbase.ai/company-guide/navigation.md): Here is an overview for navigation that can be found in the Bugbase platform - [Assets Dashboard](https://docs.bugbase.ai/company-guide/assets-dashboard.md): The Assets Dashboard in Bugbase allows program managers to easily manage and track their assets, with features like adding, editing, deleting, and labeling assets to improve understanding. - [Credential Vaults](https://docs.bugbase.ai/company-guide/credential-vaults.md): BugBase enables importing testing credentials for assets and assigning them to program members and Bug Hunters. - [Creating a Credential Vault](https://docs.bugbase.ai/company-guide/credential-vaults/creating-a-credential-vault.md): Learn how to create a Credential Vault - [Adding Credentials to Vault](https://docs.bugbase.ai/company-guide/credential-vaults/adding-credentials-to-vault.md): Learn how to add Credential Sets to a Credential Vault - [Connect Credential Vault to an Asset](https://docs.bugbase.ai/company-guide/credential-vaults/connect-credential-vault-to-an-asset.md): Learn how to connect a Credential Vault to a Company Asset - [Require Whitelisting for a Credential](https://docs.bugbase.ai/company-guide/credential-vaults/require-whitelisting-for-a-credential.md): Enable the "Require Whitelisting" feature on Dynamic Credential Vaults to ensure only authorized users can request or claim credentials - [Resolving Issues on Credentials](https://docs.bugbase.ai/company-guide/credential-vaults/resolving-issues-on-credentials.md): Security Researchers raise issues on credentials - [VPN Servers](https://docs.bugbase.ai/company-guide/vpn-servers.md): BugBase enables companies to create and manage VPN servers for secure testing of sensitive assets by Bug Hunters. - [Create, Configure and Deploy VPN server](https://docs.bugbase.ai/company-guide/vpn-servers/create-configure-and-deploy-vpn-server.md): Learn how to configure and deploy a VPN server with all your assets on BugBase - [Monitor Live Statistics and Logs](https://docs.bugbase.ai/company-guide/vpn-servers/monitor-live-statistics-and-logs.md): Monitor all the activities through the VPN server - [Programs Dashboard](https://docs.bugbase.ai/company-guide/programs-dashboard.md): An overview of all the programs hosted on BugBase - [Create a Program](https://docs.bugbase.ai/company-guide/programs-dashboard/create-a-program.md): How to go about creating a program - [Customer Support](https://docs.bugbase.ai/company-guide/customer-support.md): 24/7 Support Channel for Issues and Doubt resolution - [Bounty Bin](https://docs.bugbase.ai/company-guide/bounty-bin.md): BugBase Bounty Bin helps you track and manage bounties paid to hackers across the globe! - [Company Settings](https://docs.bugbase.ai/company-guide/company-settings.md): Manage your company account from here - [Profile](https://docs.bugbase.ai/company-guide/company-settings/profile.md) - [Organisation](https://docs.bugbase.ai/company-guide/company-settings/organisation.md): Add members to your organisation and track all activities. - [Roles and Permissions](https://docs.bugbase.ai/company-guide/company-settings/roles-and-permissions.md): Create, View and Modify Roles and Permissions - [Security & Authentication](https://docs.bugbase.ai/company-guide/company-settings/security-and-authentication.md): We offer various Security & Authentication Methods for extra security. - [Multi-Factor Authentication](https://docs.bugbase.ai/company-guide/company-settings/security-and-authentication/multi-factor-authentication.md): Secure your account with Multi-Factor authentication - [SSO with SAML](https://docs.bugbase.ai/company-guide/company-settings/security-and-authentication/sso-with-saml.md): BugBase offers Single Sign-on through SAML ( Security Assertion Markup Language ) Integration with Okta and Google. - [Okta SSO setup via SAML](https://docs.bugbase.ai/company-guide/company-settings/security-and-authentication/sso-with-saml/okta-sso-setup-via-saml.md): You can use your Okta credentials to sign in to BugBase. - [Google SSO setup via SAML](https://docs.bugbase.ai/company-guide/company-settings/security-and-authentication/sso-with-saml/google-sso-setup-via-saml.md): You can use your Google credentials to sign in to BugBase. - [Customization](https://docs.bugbase.ai/company-guide/company-settings/customization.md): At BugBase we provide customization options to make your workflows easy - [Automations](https://docs.bugbase.ai/company-guide/company-settings/customization/automations.md): Automations provide the ability to automate your processes in BugBase. - [Report Tags](https://docs.bugbase.ai/company-guide/company-settings/customization/report-tags.md): Effortlessly organize and manage reports using Report Tags, a feature designed for easy categorization and filtering of bug reports. - [Manage Access](https://docs.bugbase.ai/company-guide/company-settings/manage-access.md): Invite users in your organization and give them roles to manage certain parts of your BugBase Company Account - [Insights Dashboard](https://docs.bugbase.ai/company-guide/insights-dashboard.md): The insights dashboard provides a comprehensive program overview - [Campaigns](https://docs.bugbase.ai/company-guide/campaigns.md): Start a Campaign for better outreach to bounty hunters! - [Understanding Currencies Used in BugBase](https://docs.bugbase.ai/company-guide/understanding-currencies-used-in-bugbase.md) - [Whitelist](https://docs.bugbase.ai/company-guide/whitelist.md): Enabling, managing, and processing whitelist requests for in-scope assets. - [Bug Bounty Dashboard](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard.md): Bug Bounty or VDP Dashboard allows program managers to view important information about the status of their bug bounty program, helping them to easily track and manage the program. - [Program Reports Section](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section.md): The Reports section in BugBase acts as an inbox for all the reports submitted to the program. - [Report Components](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section/report-components.md) - [Report Actions](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section/report-actions.md) - [Duplicating Reports](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section/duplicating-reports.md) - [Assigning Swags](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section/assigning-swags.md) - [Assigning Bounties](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section/assigning-bounties.md) - [Assigning Thanks to Reporters](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section/assigning-thanks-to-reporters.md): Acknowledge Efforts & Valuable Contributions of Bug Reporters by sending them a Thanks Message - [Assigning Bonus Bounty](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section/assigning-bonus-bounty.md) - [Automatic Response Generator using ChatGPT](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-reports-section/automatic-response-generator-using-chatgpt.md): The Automatic Response Generator is a new feature in our app that allows to generate automatic responses using ChatGPT. - [Program Policy](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-policy.md) - [Editing Program Policy](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-policy/editing-program-policy.md) - [Best Practices For Designing Policy](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-policy/editing-program-policy/best-practices-for-designing-policy.md) - [Best Practices For Bounty Tables](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/program-policy/editing-program-policy/best-practices-for-bounty-tables.md) - [Payouts](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/payouts.md): View and Track Payments and Rewards assigned to researchers at one place - [Settings](https://docs.bugbase.ai/program-guide/bug-bounty-dashboard/settings.md) - [Private Bug Bounty Dashboard](https://docs.bugbase.ai/program-guide/private-bug-bounty-dashboard.md): Private Bug Bounty Dashboard allows program managers to view important information about the status of their program, helping them to easily track and manage their program. - [Invite Hackers](https://docs.bugbase.ai/program-guide/private-bug-bounty-dashboard/invite-hackers.md): Only available on the Private Bug Bounty Programs - [Manage Credentials](https://docs.bugbase.ai/program-guide/private-bug-bounty-dashboard/manage-credentials.md): Only available on the Private Bug Bounty Programs - [VDP Dashboard](https://docs.bugbase.ai/program-guide/vdp-dashboard.md): VDP Dashboard allows program managers to view important information about the status of their program, helping them to easily track and manage their program. - [Pentest Dashboard](https://docs.bugbase.ai/program-guide/pentest-dashboard.md): The Pentest Dashboard on BugBase allows program managers to easily track and manage their ongoing pentests. - [Pentest Overview](https://docs.bugbase.ai/program-guide/pentest-dashboard/pentest-overview.md) - [Vulnerabilities Section](https://docs.bugbase.ai/program-guide/pentest-dashboard/vulnerabilities-section.md) - [Pentest Report Components](https://docs.bugbase.ai/program-guide/pentest-dashboard/vulnerabilities-section/pentest-report-components.md) - [Pentest Report Actions](https://docs.bugbase.ai/program-guide/pentest-dashboard/vulnerabilities-section/pentest-report-actions.md) - [Global Pentest Chat](https://docs.bugbase.ai/program-guide/pentest-dashboard/global-pentest-chat.md) - [Competition Dashboard](https://docs.bugbase.ai/program-guide/competition-dashboard.md): Host competitions to find out the best security talent from a pool of ethical hackers. - [Dashboard](https://docs.bugbase.ai/program-guide/competition-dashboard/dashboard.md): Create, manage and track all your competitions with our user-friendly interface. - [Creating a Competition](https://docs.bugbase.ai/program-guide/competition-dashboard/creating-a-competition.md): Find the best security talent from a pool of ethical hackers. Create and manage competitions with ease. - [Adding Challenges](https://docs.bugbase.ai/program-guide/competition-dashboard/creating-a-competition/adding-challenges.md): WIP - [Manage Competitions](https://docs.bugbase.ai/program-guide/competition-dashboard/manage-competitions.md): View insights and edit competition details - [Statistics](https://docs.bugbase.ai/program-guide/competition-dashboard/manage-competitions/statistics.md): View all Competition Statistics in one place - [Leaderboard](https://docs.bugbase.ai/program-guide/competition-dashboard/manage-competitions/leaderboard.md) - [Manage Users](https://docs.bugbase.ai/program-guide/competition-dashboard/manage-competitions/manage-users.md) - [Bounty Hunter Dashboard](https://docs.bugbase.ai/bounty-hunter-guide/bounty-hunter-dashboard.md): Logged in Successfully! - [Bounty Hunter Profile](https://docs.bugbase.ai/bounty-hunter-guide/bounty-hunter-profile.md): The Bugbase Hacker Profile Page is a comprehensive dashboard for cybersecurity researchers participating in bug bounty programs. - [Programs Directory](https://docs.bugbase.ai/bounty-hunter-guide/programs-directory.md): List of all Active Programs on BugBase - [Program Policy Page](https://docs.bugbase.ai/bounty-hunter-guide/programs-directory/program-policy-page.md): View Policy, Scope Groups, Credentials, Hall of Fame and Changelogs - [Credentials](https://docs.bugbase.ai/bounty-hunter-guide/programs-directory/credentials.md): Credentials are essential for gaining access to the program's assets and conducting any necessary testing. - [VPN Access](https://docs.bugbase.ai/bounty-hunter-guide/programs-directory/vpn-access.md): VPN is essential to access the specified assets in the program. It's important to note that these assets cannot be accessed without connecting to a VPN. - [Whitelist](https://docs.bugbase.ai/bounty-hunter-guide/programs-directory/whitelist.md): A step-by-step guide for hackers to request whitelisting for assets requiring credentials. - [Collaborate](https://docs.bugbase.ai/bounty-hunter-guide/programs-directory/collaborate.md): Allowing and managing collaboration amongst bounty hunters within private programs. - [Bounty Hunter Reports Section](https://docs.bugbase.ai/bounty-hunter-guide/bounty-hunter-reports-section.md): View all reports categorised at one place to focus on what matters the most - [Submitting Reports](https://docs.bugbase.ai/bounty-hunter-guide/bounty-hunter-reports-section/submitting-reports.md): A good report starts with a warm and cozy greeting - [Interaction with Program Representees](https://docs.bugbase.ai/bounty-hunter-guide/bounty-hunter-reports-section/interaction-with-program-representees.md) - [Collaboration](https://docs.bugbase.ai/bounty-hunter-guide/bounty-hunter-reports-section/collaboration.md): Splitting bounties and working as a team! - [Response Generation through ChatGPT on Report Chat](https://docs.bugbase.ai/bounty-hunter-guide/bounty-hunter-reports-section/response-generation-through-chatgpt-on-report-chat.md): The Response Generation is a new feature in our app that allows to generate responses using ChatGPT. - [Competitions](https://docs.bugbase.ai/bounty-hunter-guide/competitions.md): PwnTheWorld - [Discord Community](https://docs.bugbase.ai/bounty-hunter-guide/discord-community.md): GG! - [Leaderboard](https://docs.bugbase.ai/bounty-hunter-guide/leaderboard.md): Elite Hacker leaderboard - [Multi-Factor Authentication](https://docs.bugbase.ai/bounty-hunter-guide/multi-factor-authentication.md): Secure your account with Multi-Factor authentication - [Settings](https://docs.bugbase.ai/bounty-hunter-guide/settings.md): Manage your BugBase Bounty Hunter Account at once place - [Verify KYC](https://docs.bugbase.ai/bounty-hunter-guide/settings/verify-kyc.md): Hackers on our platform can now instantly verify their KYC. For seamless payments and instant transactions on bounties, companies require a certain level of KYC of the hacker to be verified. - [Email Alias](https://docs.bugbase.ai/bounty-hunter-guide/email-alias.md): On Bugbase, hackers are assigned an email alias that redirects any emails to the primary email address they used to register with the platform. - [Apollo Community](https://docs.bugbase.ai/bounty-hunter-guide/apollo-community.md): Join our private community of elite hackers and Enjoy access to exclusive private programs! - [Supported Integrations](https://docs.bugbase.ai/integrations/supported-integrations.md): Make BugBase a part of your SDLC! - [Webhooks](https://docs.bugbase.ai/integrations/webhooks.md): Webhooks are Trigger based, notifications will be sent when a particular event occurs - [JIRA](https://docs.bugbase.ai/integrations/jira.md): JIRA is a project management software that helps teams efficiently manage projects from start to finish. Our cross-sync integration lets you organize all your vulnerabilities data in one place - [Creating a JIRA Issue](https://docs.bugbase.ai/integrations/jira/creating-a-jira-issue.md): How to create an issue on JIRA from BugBase - [Slack](https://docs.bugbase.ai/integrations/slack.md): BugBase offers integration with Slack which is trigger based and will send a notification only when an event occurs on your BugBase program. - [Managing Integration](https://docs.bugbase.ai/integrations/slack/managing-integration.md) - [Microsoft Teams](https://docs.bugbase.ai/integrations/microsoft-teams.md): Microsoft Teams (MS Teams) is a trigger based integration. - [Github](https://docs.bugbase.ai/integrations/github.md): You can create issues on Github directly from BugBase - [Asana](https://docs.bugbase.ai/integrations/asana.md): You can create issues on Asana directly from BugBase - [Sumo Logic](https://docs.bugbase.ai/integrations/sumo-logic.md): Log Events from BugBase seamlessly using the SumoLogic integration - [PagerDuty](https://docs.bugbase.ai/integrations/pagerduty.md): PagerDuty Integration enables incidents to be created each time a new report is submitted on BugBase - [Running Automated Testing](https://docs.bugbase.ai/on-premise/running-automated-testing.md): BugBase includes an automated vulnerability detection tool called BATS (BugBase Automated Testing Suite) to identify common security vulnerabilities. - [Sandbox Environment](https://docs.bugbase.ai/on-premise/sandbox-environment.md): As part of our on-premises deployment option, we offer a dedicated sandbox instance with robust tools for testing and reproducing bug reports --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on a page URL with the `ask` query parameter: ``` GET https://docs.bugbase.ai/welcome-to-bugbase-docs.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.