Tumar

Tumar is a program for rewarding the discovery of vulnerabilities in information systems and resources.

Learn more

What is Tumar?

Tumar is a program used by a company to engage independent researchers (called “white hats”, “bug hunters” or “researchers” in the industry) to identify vulnerabilities in information systems and resources for a monetary reward.

The company publicly announces the reward scope and level, after which the volunteers can register on the platform and take part in the program.

Approach to resolving vulnerability in government and business information systems

Use cash flow underwriting to accurately predict credit default risk, evaluate missing and low-income consumers.

Everything you don’t see

Researchers can discover what your specialists may have overlooked or missed in ensuring the information security of your systems and resources

Conduct research

You can create a private project and invite researchers to solve your problem

Get a report

By participating in the program, you will be able to receive a vulnerability report with elimination recommendations confirmed by TSARKA analysts

Start your research now

To participate in the program, you should act ethically and strictly adhere to the established rules. Be sure to read all the rules before you start discovering vulnerabilities.

Learn more

Reliable and safe

Our infrastructure is built to ensure privacy, security and protection of our clients, partners and researchers.

Compliance

Compliance is a top priority and we guarantee that our solutions, systems and processes comply with applicable laws and regulations.

All is confidential

For consumer safety and compliance with customer requirements, we use AWS-managed disk-level encryption and do not collect, sell or store platform member data.

Independent audit

Our processes and systems are regularly audited for compliance with industry standards by independent third parties.

Feedback

Made Qaznet a little safer

Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Фотография автора отзыва

Stanislav (aka @clevergod)

vice-captain of the Codeby team

Something new for Qaznet

Hey ! My name is Danila, I've been into bug bounty for the last 4 years - https://hackerone.com/danila In the vastness of the Internet in Kazakhstan, after finding a vulnerability, it was not so often possible to send a report, wait for a fix and receive a reward, risking more likely to receive threats - through this platform, you can send a vulnerability and count on a reward and fix a serious problem - something new for Qaznet.
Фотография автора отзыва

Danila Chalykin

Bughunter

Finding vulnerabilities and getting money is now even more enjoyable!

Hello! I'm Nurlan (Nullrun), a bug bounty enthusiast who has been researching vulnerabilities for several years now :). I can’t help but express my deep gratitude for the unique opportunity to submit vulnerabilities in the treasury and contribute to the security of the network. This not only allows me to participate in the collection of vulnerability identification, but also actively contributes to the development of the bug hunter community. The process of submitting vulnerabilities becomes fun and productive thanks to the features that appear on the platform. The emergence of various companies and the public sector on the tumar.one platform is very encouraging; submitting vulnerabilities and receiving money is now even more pleasant! I cannot help but note the efficiency and professionalism of the team. Triage of reports is carried out within strictly established time frames, which significantly facilitates interaction and helps maintain a high level of efficiency. I look forward to continuing fruitful cooperation and new opportunities for joint development. Thank you for the dynamic and positive development of the platform!
Фотография автора отзыва

Nullrun

TOP-1 BugHunter tumar.one 2023

Made Qaznet a little safer

Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Фотография автора отзыва

Stanislav (aka @clevergod)

vice-captain of the Codeby team

Something new for Qaznet

Hey ! My name is Danila, I've been into bug bounty for the last 4 years - https://hackerone.com/danila In the vastness of the Internet in Kazakhstan, after finding a vulnerability, it was not so often possible to send a report, wait for a fix and receive a reward, risking more likely to receive threats - through this platform, you can send a vulnerability and count on a reward and fix a serious problem - something new for Qaznet.
Фотография автора отзыва

Danila Chalykin

Bughunter

Finding vulnerabilities and getting money is now even more enjoyable!

Hello! I'm Nurlan (Nullrun), a bug bounty enthusiast who has been researching vulnerabilities for several years now :). I can’t help but express my deep gratitude for the unique opportunity to submit vulnerabilities in the treasury and contribute to the security of the network. This not only allows me to participate in the collection of vulnerability identification, but also actively contributes to the development of the bug hunter community. The process of submitting vulnerabilities becomes fun and productive thanks to the features that appear on the platform. The emergence of various companies and the public sector on the tumar.one platform is very encouraging; submitting vulnerabilities and receiving money is now even more pleasant! I cannot help but note the efficiency and professionalism of the team. Triage of reports is carried out within strictly established time frames, which significantly facilitates interaction and helps maintain a high level of efficiency. I look forward to continuing fruitful cooperation and new opportunities for joint development. Thank you for the dynamic and positive development of the platform!
Фотография автора отзыва

Nullrun

TOP-1 BugHunter tumar.one 2023

Made Qaznet a little safer

Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Фотография автора отзыва

Stanislav (aka @clevergod)

vice-captain of the Codeby team

Why us?

Our company tries to create a bridge between large companies and IT community. Collectively, we will get a more profitable and effective mechanism for ensuring a high-level security of information systems and resources.

2000+
researchers
Researchers from all over the world find vulnerabilities in information systems and resources every day
700 000$
allocated for rewards
Budget allocated for reward payments for the current year
14+
programs
New public and private programs and increased rewards are expected by 2024!

FAQ

© Tumar one / 2020-2024, All Rights Reserved

Социальные сети