Certified Ethical Hacker (CEH v13) — Question 18

What is the common name for a vulnerability disclosure program opened by companies in platforms such as HackerOne?

Answer options

• A. White-hat hacking program
• B. Bug bounty program
• C. Ethical hacking program
• D. Vulnerability hunting program

Correct answer: B

Explanation

The correct answer is B, as a bug bounty program specifically incentivizes security researchers to find and report vulnerabilities in exchange for rewards. Options A, C, and D do not accurately describe this structured approach to vulnerability disclosure, as they refer to broader or different concepts in cybersecurity.