ANSSI Benin launches a national bug bounty program open to ethical hackers and Beninese cybersecurity experts. This first iteration lasts one month.
The goal is to assess the level of security by detecting vulnerabilities in the websites of Public Administrative Establishments in Benin (EPA), the websites of Public Industrial Establishments (EPIC), other websites except EPA and EPIC in *.gouv.bj.
As soon as a vulnerability is detected, the researcher must send a detailed technical description of the steps required to reproduce the vulnerability, including a description of all the tools required to identify or exploit the vulnerability.
The program offers remuneration and is also based on the awarding of points. For each vulnerability, only the researcher who first submits the vulnerability report will be rewarded. The researchers will be rewarded with a bonus paid according to a predefined grid within the program: the severity level of the vulnerability and the classification of the target determine the amount of this bonus.
For the most critical vulnerabilities, the amount of the bonus is up to 60 000 FCFA.
You can get more info on the program's Discord server.
Africa Cybersecurity Mag Editorial Board
Leave a Reply