Hero

disclose.io

Disclose.io is a cross-industry, vendor-agnostic standardization project for safe harbor best practices to enable good-faith security research.

Let's get started...

Getting Started

Learn about The disclose.io Project, how it works, and how to get started for vendors, finders, and contributors

The List

Search vulnerability disclosure and bug bounty programs in our database, get details on where to submit security findings, and understand their safe harbor status.

The Terms

Open-source Vulnerability Disclosure Program (VDP) policy boilerplates with Safe Harbor

Projects

Dig in to our Core projects and discover up-and-coming projects and opportunities to collaborate

Community

Get help finding security contacts, and collaborate with like-minded folks working on making the Internet a safer place

Internet superheroes

Some of the legends working on disclose.io who eat, sleep, and breathe making the Internet safer

caseyjohnellis
caseyjohnellis
amitelazari
amitelazari
chloemessdaghi
chloemessdaghi
jack
jack
harleygeiger
harleygeiger
esquiring
esquiring
beauwoods
beauwoods
andrewmohawk
andrewmohawk
sickcodes
sickcodes
dantrauner
dantrauner
infosecjen
infosecjen
jhaddix
jhaddix
its-a-lisa
its-a-lisa
max
max
hakluke
hakluke
jonathan
jonathan
borski
borski

Frequently asked questions

Got a quick question? Let's get you a quick answer

Why does The disclose.io Project exist?

A couple of talks to get you started...

An intro to disclose.io and hacker safety

caseyjohnellis at HackerCon 2021

Hacking the Law - Are Bug Bounties a True Safe Harbor?

Amit Elazari at BSidesSF 2018

Didn't find what you were looking for?

Contact Us
Introduction
Getting started
Projects
Community