Our rewarding policy is simple. When you report a vulnerability you will know upfront what the reward will be. If it’s a valid (non-duplicate) vulnerability we directly fulfill the payment of your reward.
Fast and accurate Triage
Triaging submitted reports is normally done within 24 hours, but can take up to 72 hours max. in unusual cases. We manage to do triage efficiently because we believe in working with limited groups of researchers and a set duration per program.
Make big effort, in small groups
We believe that a concentrated group of researchers, able to discuss and collaborate on a program is the most productive way to work . That’s why we work with private programs where an average of 10 researchers are invited.
Improve your skills
Learn and earn at the same time. We believe working together with other skilled researchers on real programs, with real rewarding, is the best way to gain more knowledge and skills. As you improve, you’ll automatically get invited for more programs.
Good to know
Invite other researchers
We have an invite system in place that allows you to invite other researchers to Zerocopter.
Payments are distributed via PayPal & Bitcoin. To receive payments, make sure that you have a valid PayPal account or Bitcoin address.
Don’t share information
You're not allowed to share information about vulnerabilities. To share information about a vulnerability the program owner needs to give explicit permission.
You will be part of a carefully selected group of security researchers. We check your personal information, verify your identity and review your track record.
Live chat is available on every page on our website and on our platform. We offer support Monday to Friday from 9:00am to 6:00pm (CET).
Payment provider fees
Unfortunately some payment providers charge a fee for receiving money.
I am a researcher!
Do you have the right bug hunting skills as well as the skills to report issues in a structured way? Then you are the researcher we want!