Collaboration makes security stronger. Work with us to find and fix vulnerabilities—responsibly and with recognition.
At Nullforge, security is a partnership. By working with ethical hackers and researchers, we uncover and fix issues before they can be abused. We recognize valid reports with exclusive swag, our Hall of Fame, and collectible bug bounty badges. Your research strengthens our defenses—and builds your reputation.
In-scope targets
High-value vulnerability classes
Critical
Premium Nullforge Swag + Hall of Fame + Virtual Badge
High
Swag Pack + Hall of Fame + Virtual Badge
Medium
Hall of Fame + Virtual Badge
Low
Hall of Fame + Virtual Badge
Informational
Hall of Fame + Virtual Badge
Every valid report contributes to your badge progression.
Explorer
Submit your first valid web vulnerability report.
Trooper
Submit 10 valid web vulnerability reports.
Raider
Submit 30 valid web vulnerability reports.
Hydra
Submit 50 valid web vulnerability reports.
Centurion
Submit 100 valid web vulnerability reports.
Paladin
First critical severity (e.g., RCE, full ATO).
Obsidian
New vuln class or bypass of existing mitigations.
Elite
Sustained, high-impact contributions across the program.
We stand behind good-faith research. Follow the program rules and you’re authorized to test and report without fear of legal action.
Hall of Fame List »