BNB CHAIN BUG BOUNTY PROGRAM

Help secure the
BNB Chain ecosystem

Earn rewards for responsible vulnerability disclosure and help build a safer Web3 future.

Critical rewards up to $100,000
Responsible disclosureMulti-chain scopeResearcher-first triage
Up to $100,000
Critical rewards
Multiple Programs
Across BNB Chain
Fast Triage
Prioritized security review
Global Community
Security researchers worldwide

How It Works

Follow these steps to submit a vulnerability ticket and earn your reward.

01
LOG IN
Log in to your account to get started.
02
SUBMIT
Submit a detailed ticket.
03
REVIEW
Our team will verify and triage.
VALID
04
VALID
REWARD
Earn your reward with BNB token.
INVALID
04
INVALID
IGNORE
The ticket will be closed.

In Scope

Only the targets listed in the Scope & Policy are eligible for the BNB Chain Bug Bounty Program.

*.bnbchain.org
BSC client
Greenfield core + SDK
opBNB / op-geth
tss-lib cryptography
ledger-app-binance
bsc-genesis-contract
BSC dump tools
View full scope & policy

Reward Tiers

Cash rewards follow the P*-P4 tiers defined in the Scope & Policy.

TierPolicy summaryReward
P*Validator manipulation, Merkle proof bugs, or private key leaks$100,000
P1Fund safety, token economy, RCE, governance, or consensus impact$5,000 - $30,000
P2Validator DoS, trading disruption, consensus performance, or cross-chain impact$1,500 - $5,000
P3Explorer, seed node, BSC relayer, or oracle relayer denial of service$600 - $1,500
P4Stability, availability, or non-critical function denial of service$200 - $600
Every ticket makes a difference
Your discovery can help protect millions of users and build a more secure Web3 future.
Submit a Bug