Try our new research platform with insights from 80,000+ expert users

Bitsight vs Bugcrowd comparison

BitSight and Bugcrowd are both solutions in the Attack Surface Management (ASM) category. BitSight is ranked #13 with an average rating of 8.8, while Bugcrowd is ranked #10 with an average rating of 8.5. BitSight holds a 3.3% mindshare in ASM, compared to Bugcrowd’s 4.9% mindshare. Additionally, 100% of BitSight users are willing to recommend the solution, compared to 100% of Bugcrowd users who would recommend it.
Bitsight
Read 6 Bitsight reviews
  • 374 Views
  • 272 Comparison Views
100% willing to recommend
Bugcrowd
Read 4 Bugcrowd reviews
  • 748 Views
  • 709 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Bitsight and Bugcrowd based on real PeerSpot user reviews.

Find out in this report how the two Attack Surface Management (ASM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Bitsight vs. Bugcrowd Report (Updated: February 2025).
Buyer's Guide
Bitsight vs. Bugcrowd
February 2025
Download the complete report
Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Bitsight
Ranking in Attack Surface Management (ASM)
13th
Average Rating
8.6
Reviews Sentiment
7.8
Number of Reviews
6
Ranking in other categories
IT Vendor Risk Management (4th)
Bugcrowd
Ranking in Attack Surface Management (ASM)
10th
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
4
Ranking in other categories
Managed Security Services Providers (MSSP) (10th), Bug Bounty Platforms (2nd), Penetration Testing Services (3rd), AWS Marketplace (37th)
 

Mindshare comparison

As of April 2025, in the Attack Surface Management (ASM) category, the mindshare of Bitsight is 3.3%, up from 0.1% compared to the previous year. The mindshare of Bugcrowd is 4.9%, up from 3.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Attack Surface Management (ASM)
 

Featured Reviews

Marc Chapel - PeerSpot reviewer
Stable product with efficient features for listing vulnerabilities
I recommend BitSight because it is very convenient to use. It has become a standard tool used in many companies. It is easy to share a few components of an algorithm for users. It is not ideal as it only reflects some of the reality of Internet-facing applications. However, it is the best solution at the moment. I rate it an eight out of ten.
Read full review
George Devasia - PeerSpot reviewer
Efficient reports simplify tracking and feedback for cybersecurity submissions
I am a developer working in cybersecurity, and I use Bugcrowd to help companies remove vulnerabilities from their websites. I report vulnerabilities found in applications or customer platforms through Bugcrowd's cloud platform. This allows the cloud team to track submissions, and then the client…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Offers open ports from an external point of view."
"I prefer BitSight due to its patch management capabilities. The score is a valuable feature. I have contacted the customer support through e-mail and their response rate is fast. I rate the solution a nine out of ten."
"Its customer service team responds quickly."
"The solution is user-friendly."
"The product helps us identify the vulnerabilities of internet-facing applications."
"The best thing about BitSight is the comprehensive list of risk vectors, covering compromised systems, diligence failures, and behavioral anomalies."
"Bugcrowd has programs that disclose rewards and invite researchers to new programs."
"Working on Bugcrowd has made me a better security engineer since it provides a competitive environment to report successful vulnerabilities."
"I would rate Bugcrowd a ten out of ten."
"The most valuable aspect of Bugcrowd is that it provides a long list of different websites or web applications where I can report vulnerabilities."
"I believe Bugcrowd is highly stable."
"Bugcrowd's support team is very active and supportive."
"One of the features I like most about Bugcrowd is the ability to create a report in a very easy way."
 

Cons

"Data enrichment is the major issue."
"BitSight could improve the classes and lower-level detections of anomalies that compound the information used to compute the rating."
"Its factor analysis feature could be better."
"There may be room for improvement in the methodology for identifying findings, as occasional errors occur on the technical side."
"The solution’s benchmarking should be improved."
"At the moment, when the vulnerability score decreases, it remains the same for quite a while, even though issues are resolved in 24 hours."
"Bugcrowd should provide more access to the reports, similar to HackerOne, allowing for full disclosure once a bug is resolved, so researchers can learn from them. They should improve the responsibility type and response time of their customer support, especially when the issue is urgent."
"There is room for improvement in Bugcrowd's response time when customer input is needed for resolving tickets. If this time could be minimized, it would be very helpful."
"Bugcrowd should provide more access to the reports, similar to HackerOne, allowing for full disclosure once a bug is resolved, so researchers can learn from them."
"The triaging process has slowed down compared to three years ago."
"There is room for improvement in Bugcrowd's response time when customer input is needed for resolving tickets."
"The triaging process has slowed down compared to three years ago. It now takes more time to resolve a reported vulnerability and receive the payout."
 

Pricing and Cost Advice

"The product has a reasonable price."
"The solution's price is average."
Information not available
report
See which vendors are best for you
Use our free recommendation engine to learn which Attack Surface Management (ASM) solutions are best for your needs.
See recommendations
845,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
18%
Computer Software Company
14%
Manufacturing Company
9%
Insurance Company
8%
Computer Software Company
12%
University
11%
Comms Service Provider
10%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What do you like most about BitSight?
The solution is user-friendly.
See all answers
What is your experience regarding pricing and costs for BitSight?
The product is a little expensive and very oriented to large companies.
See all answers
What needs improvement with BitSight?
BitSight could improve the classes and lower-level detections of anomalies that compound the information used to compute the rating. They could evolve to be a more powerful scanner of cyber hygiene...
See all answers
What is your experience regarding pricing and costs for Bugcrowd?
I understand the pricing, and it involves rewards of at least one thousand dollars.
See all answers
What needs improvement with Bugcrowd?
The tool itself could be improved. I hope to improve next time and perform better.
See all answers
What is your primary use case for Bugcrowd?
I use Bugcrowd ( /products/bugcrowd-reviews ) for finding bugs and vulnerabilities. I have been using it for two years. Besides Bugcrowd ( /products/bugcrowd-reviews ), I also use HackerOne ( /prod...
See all answers
 

Comparisons

SecurityScorecard vs Bitsight Logo
SecurityScorecard vs Bitsight
Compared 28% of the time
RiskRecon vs Bitsight Logo
RiskRecon vs Bitsight
Compared 11% of the time
Black Kite vs Bitsight Logo
Black Kite vs Bitsight
Compared 10% of the time
Tenable Lumin vs Bitsight Logo
Tenable Lumin vs Bitsight
Compared 7% of the time
Cortex Xpanse vs Bitsight Logo
Cortex Xpanse vs Bitsight
Compared 7% of the time
More Bitsight Competitors
HackerOne vs Bugcrowd Logo
HackerOne vs Bugcrowd
Compared 64% of the time
Synack vs Bugcrowd Logo
Synack vs Bugcrowd
Compared 20% of the time
YesWeHack vs Bugcrowd Logo
YesWeHack vs Bugcrowd
Compared 10% of the time
Intigriti vs Bugcrowd Logo
Intigriti vs Bugcrowd
Compared 7% of the time
More Bugcrowd Competitors
 

Product Reports

Buyer's Guide
IT Vendor Risk Management
March 2025
Bitsight reportDownload Bitsight product report
Buyer's Guide
Managed Security Services Providers (MSSP)
January 2025
Bugcrowd reportDownload Bugcrowd product report
 

Overview

BitSight transforms how organizations manage cyber risk. The BitSight Security Ratings Platform applies sophisticated algorithms, producing daily security ratings that range from 250 to 900, to help organizations manage their own security performance; mitigate third party risk; underwrite cyber insurance policies; conduct financial diligence; and assess aggregate risk. With over 2,100 global customers and the largest ecosystem of users and information, BitSight is the Standard in Security Ratings. For more information, please visit www.bitsight.com, read our blog or follow @BitSight on Twitter.

BitSight

By combining a vast and diverse workforce with a results-driven model, crowdsourced security programs outperform traditional methods-every time.

Bugcrowd
 

Sample Customers

Fannie Mae, Cabela's, BNP Paribas, PWC, AIR Worldwide, Con Edison, The Container Store, OshKosh, Steris, University of South Florida, Emblem Health, Lloyds Bank
Zephyr Health, Barracuda Networks, Western Union, Instructure, Aruba Networks, Pinterest, CARD.com, WINK, (ISC)2, StatusPage, WHMCS, Movember
Buyer's Guide
Bitsight vs. Bugcrowd
February 2025
Free Report: Bitsight vs. Bugcrowd
Find out what your peers are saying about Bitsight vs. Bugcrowd and other solutions. Updated: February 2025.
DOWNLOAD NOW
845,406 professionals have used our research since 2012.
See our Bitsight vs. Bugcrowd report.
See our list of best Attack Surface Management (ASM) vendors.

We monitor all Attack Surface Management (ASM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.