BountyScope

Top programs by max payout

Curated list. Confirm scope, terms, and bounty limits on each program's official page before submitting reports. BountyScope provides intel; the legal hunting happens within each program's published rules.

On-demand analysis

Paste a Solidity contract or function. Get a first-pass attack-surface map and ranked vulnerability classes to investigate.

Output is a first-pass heuristic from an LLM trained for adversarial review. NOT a substitute for senior human auditing. Use as a focus map, not a verdict.

API

GET /api/programs — full program list as JSON

POST /api/analyze — body: {code, program_id?, repo_url?} → finding classes

GET /api/status — system health

For who

• Bounty hunters — see what's worth your time. $1M payouts beat $5K payouts; sort accordingly.
• Protocol teams — monitor what programs your competitors run, identify uncovered surface area.
• Security researchers — get a first-pass attack-surface map before deep audit.
• Insurance underwriters — quantify risk by program's stated bounty ceiling.