Why should I go to TippingPoint with my vulnerability discovery rather than somewhere else?
TippingPoint has invested considerable resources to ensure the Zero Day Initiative is successful. We believe you will find our rewards program is the most lucrative to any researcher. Besides the obvious benefit of more compensation and higher incentives, the ZDI’s approach to the acquisition of vulnerability information is different than any program to date. No technical details concerning the vulnerability are sent out publicly until the vendor has released a patch. Any protection filters written for submitted vulnerabilities that TippingPoint distributes to its IPS customers are obscured by being described only in very general terms and are encrypted to prevent reverse engineering.
Related Questions
- Once I agree to assign a vulnerability to TippingPoint, am I allowed to distribute it, assign or sell it elsewhere, discuss it, or leak details about it?
- Since TippingPoint customers are protected prior to the disclosure, are they aware of the vulnerability?
- Why should I go to TippingPoint with my vulnerability discovery rather than somewhere else?
