The Most Trusted Crowdsourced Cybersecurity Testing Platform in Asia

Promising startups and SMEs trust Secuna to find security bugs on their applications with the help of vetted cybersecurity professionals from around the world.

Trusted by these Awesome Clients

Kalibrr
InvestEd
Uploan
Synergy88
Gengo
Paylance
Cybertoolbelt
AliveShoes
ThanksBox (Mo Work)
Sigrid
Sigrid
Sigrid

What is Secuna?

Services

Secuna follows the ISO-29147 (Vulnerable Disclosure) and ISO 30111 (Vulnerability Handling Process). ISO-29147 defines the techniques and policies for vendors to receive vulnerability reports and publish remediation information. ISO 30111 gives guidelines for how to process and resolve potential vulnerability information in a product or online service.

Self-Managed Service

Public by default

Free

Establish a compliant vulnerability assessment and penetration testing process for receiving and handling of security vulnerabilities discovered by third-parties.

Unlimited Scopes
Vulnerability Disclosure Policy Assistance
Free re-tests & fix validation
Secuna will triage and validate bug reports
Remediation Advice via Keybase
Managed by Secuna badge
Penetration Testing Report in PDF (For Compliance Purposes)
Exclusive to Secuna Infosec Team Only
Learn More
Fully-Managed Service

Public or Private

$250/mo (min of 3 mos)

Our internal experts will design, manage, and support your security program from end to end. You’ll only receive valid findings from our vetted hackers.

Unlimited Scopes
Vulnerability Disclosure Policy Assistance
Free re-tests & fix validation
Secuna will triage and validate bug reports
Remediation Advice via Keybase
Managed by Secuna badge
Penetration Testing Report in PDF (For Compliance Purposes)
Exclusive to Secuna Infosec Team Only
Learn More
Secuna Infosec Team Service

Private by default

$5,000/app/mo
$3,000/app/mo

A comprehensive vulnerability assessment and penetration testing is designed to surface security vulnerabilities to reduce the risk of a security threat and comply with the regulation.

Unlimited Scopes
Vulnerability Disclosure Policy Assistance
Free re-tests & fix validation
Secuna will triage and validate bug reports
Remediation Advice via Keybase
Managed by Secuna badge
Penetration Testing Report in PDF (For Compliance Purposes)
Exclusive to Secuna Infosec Team Only
Learn More

Our Features

Trusted Cybersecurity Professionals

All the cybersecurity professionals in our platform go through a thorough screening procedure to ensure only the best get to work with you.

Flawless Vulnerability Management

Handling of security vulnerability is now easier and flawless. Secuna enables program owners to manage security vulnerability reports on their own.

Continuous Cybersecurity Assessment

Cybersecurity professionals continuously run tests to discover vulnerabilities in your product while also working to remediate any found issues.

Vulnerability Patch Verification

Right after you deploy a patch, cybersecurity professionals can re-test the reported vulnerability to validate the effectivity of the patch.

Hacker Reputation

Hacker's reputation will go up and down depending on their reported security vulnerability's validity, severity, and bounty. Only the best will rise to the top.

Seamless Bounty Payments

Cybersecurity Professionals loves any method of payment, and we got it all from bank transfers, PayPal payments, to bitcoin payments.

Frequently Asked Questions

What is the relationship between the customer and hackers?

The hackers are non-employee independent contractors of Secuna and have no contractual relationship with a customer. The terms that govern Secuna's relationship with the hackers is the Vulnerability Disclosure Policy.

Are the bugs found by security researchers kept confidential?

The default provision of all Security Programs is that all discovered security vulnerabilities must be kept confidential. The default provision of all Security Programs is that all discovered security vulnerabilities must be kept confidential. Customers may permit hackers in publicly disclosing security vulnerabilities for general interest. Secuna encourage every customer to consider this option but are not compelled to do so.

Does Secuna comply with ISO standards?

Yes. Secuna adheres to ISO 29147 and ISO 30111. In accordance with ISO 29147, Secuna has an established process through which disclosed security vulnerabilities by a security researcher are reviewed and triaged by the customer with the appropriate resolution information. With regards to ISO 30111, Secuna provides remediation advice on your team with the information necessary to begin resolving vulnerabilities that have been both triaged and validated.

Which payment options are available?

PayPal is our default payment method, but occasionally we process bounties through Bitcoin. If for some reason we can’t process your bug bounty via PayPal, please do contact our support and we’ll find another way to pay your bug bounty to hackers.

How do you screen cybersecurity professionals?

As of now, we are performing a background checking and ID verification before we allow hackers to participate in any security programs. We are also planning to perform a Video Interview and Technical Assessment soon. Hackers from around the world may participate, except for hackers from countries the U.S. has issued export sanctions or other trade restrictions against (ex. North Korea, Iran, etc.).

Latest News

Image

Taxpayer Guide to Tax-related Identity Theft as Deadline Approaches

The Bureau of Internal Revenue’s tax deadline is on April 15, 2018, and Black Hat Hackers targeted taxpayers by ...

Image

The “I LOVE YOU” Virus

One of the most destructive and well-known virus, bearing the sweetest alias there is.

Image

The Trouble with Strong Passwords

In making a new account, have you ever experienced having a hard time meeting a site’s password requirement? ...