What program invites ethical hackers to find vulnerabilities for rewards?

Bug bounty programs exist to invite ethical hackers to hunt for security flaws and earn rewards for responsibly disclosed vulnerabilities. Organizations define the scope, rewards, and disclosure rules, and researchers submit findings through approved channels; payouts typically scale with the severity and impact of the vulnerability. This crowdsourced approach is distinct from other options: penetration testing is a one-time contracted assessment performed by hired testers; a security audit evaluates controls and processes through formal reviews; red team engagements simulate adversary activity to test detection and response. The bug bounty model hinges on ongoing vulnerability discovery with monetary incentives, leveraging the broader community to improve security continuously.