Synack

Synack relies on a completely different business model from all the other programs we've discussed.

As a private program that prides itself on its quality and exclusivity, Synack requires more than just an email to become a researcher. The company asks for personal information, requests a video interview, initiates a background and ID check, and conducts a skills assessment to ensure their researchers are capable and responsible enough to audit programs where they might come into contact with sensitive data (one of Synack's specialties).

Fewer than 10% of applicants to their Red Team are accepted. And unlike the other programs, Synack doesn't publish a leaderboard or any sort of researcher ranking publicly (though they do keep internal rankings as the basis for rewards and invitations to select campaigns).

Intermediaries such as Synack are great if you're looking for more of the private program-type of engagements you're already being invited to on Bugcrowd or HackerOne , where researchers receive exclusive, limited access to the target application. It's also great if you need a quick payout time, or want access to the professional development materials the company only makes available to member researchers.

The fact that Synack keeps its researchers' identities secret is also a benefit, as – though adhering to the Rules of Engagement (ROE) is always important – it offers the researcher some protection from legal action by companies trying to discourage aggressive auditing, or who interpret their own RoE differently than you do.

In general, Synack is a good option if you've already cut your teeth on bug bounty marketplaces where the cost to join isn't as high, and are looking to make a bigger commitment to security research. If you're willing and able to get passed their screening process, working as part of their red team will secure you less-trafficked targets, exclusive engagements, and quicker payouts.