Contribuidores a la investigación de seguridad

Nos tomamos muy en serio la seguridad de nuestros clientes y apreciamos a quienes comparten con nosotros la idea de que la confianza es nuestro valor primordial.

Appy con un uniforme de scout, saludando en el bosque

Para compartir la información de manera responsable, consulte nuestra Política de divulgación responsable. Salesforce, nuestros clientes y nuestros usuarios quieren mostrar su agradecimiento a los siguientes investigadores por su colaboración.

Contribuciones más destacadas a la investigación

Appy_Thank_You_1200x675.png

Cazarrecompensas de los errores más graves

Enhorabuena a nuestros cazarrecompensas de los errores más graves; los buscadores de errores que han contribuido a identificar las vulnerabilidades más graves de las incluidas en el programa Bug Bounty de Salesforce a lo largo del año. El personal de seguridad de Salesforce participó en la votación de este distinguido galardón, que es un reconocimiento a estos investigadores por mantener el valor n.º 1 de Salesforce, la confianza.

2023

none_of_the_above

82af5ddffbb795

shubs

arneswinnen

luqii

2022

afewgoats

ajxchapman

arneswinnen

madinmars

none_of_the_above

2023

Bug Bounty Researchers

try_to_hack, g4mb4, micr0mind, d0xing, luckz, mmdz, 0x4m, honoki, d0nut, bugtriage-locke, gammarex, d3f4u17, amalyoman, holybugx, sim4n6, securitythinker, arneswinnen, damian89, val_brux, analyz3r, naaash, djurado, todayisnew, zeb0x01, yuvraj_dighe, hazimaslam, snorlhax, rg0x01, savik, none_of_the_above, juji, mateuszek, testingforbugs, youstin, fr4via, sumgr0, hafolife, lm_davidcburke, bustinjieber, foorw1nner, jin0ne, m0chan, protoneko, me9187, k57447, sachin_kr, afewgoats, ozgur, luqii, tolo7010, iqimpz, svennergr, w-, exploitmsf, kjsman, theokeen, c4rrilat0rr, zhongquanli, 0xdln, ngocdh, imgnotfound, 3th1c_yuk1, lowtechnaut, r3veal, darkdream, f6x, pesticide, jdchbdxmz, brdoors3, s3rdz0, pt200, 0xd0m7, lammy, mclaren650sspider, p4fg, daniel_v, mikey96, jaleel_khan_98, andrewrusso, indoappsec, mxnd, bonsoird, inhibitor181, arsene_lupin, hx01, jackds , shubs, nbabii, godiego, encryptsaan123, krevetk0, cache-money, alittleninja, imnarendrabhati, egrep, ibruteforce, rez0, ryotak, corb3nik, 82af5ddffbb795, archangel, spaceraccoon, rhynorater, gemini, corraldev, adi-agrawal, mooimacow, kcho, sowhatsec, dz_samir, dkd, ajxchapman, tess, proabiral, krynos, huyngoc, zhutyra, th3g3nt3lman, lukeberner, tuukkeli, segfo, akshyy, batee5a, ansariosama, renekroka, xsam, securify-bv, moti-h, bagipro, zere, 0xwise, anupamas01, thajeztah, o-siman, mheranco, 0x777, super-cert2, ian, norwegianwood, m4ll0k, pablofacciano, daik0n, hulk, jesus_pwn3d_u, gaurav-bhatia, goldenstone, le0w4ng, michael1026, bradleyjkemp, guyinhsv, mrrajputhacker2, freesec, s1ber, rz01, nickslow, hipotermia, jatindhankhar, fozgrkuggs3t, jusertestedd

2022 

Bug Bounty Researchers

0ang3el, 0x01alka, arneswinnen, d0xing, derision, djurado, dz_samiredivan, hazimaslam, honoki, inhibitor181, jinOne, krevetk0, m0chan, madinmars, melar_dev, michael1026, nadino, nagli, nbabii, ngocdh, p4fg, proabiral, ramsexy, ras-it, rz01, seifelsallamy, stealthy, svennergr, thecaffeinefix, todayisnew, tolo7010, try_to_hack, wirtha, youstin, zonduu 0xd0m7, 0xelkot, afewgoats, ahmedehane, ajxchapman, ak1t4, akshyyaksl337amad3u6, amaljacob, amsda, analyz3r, anandpingsafe, andi, andrewrusso, ansariosama, anupamas01, assassin_marcos, avezkhan, avram, bombon, brdoors3, bugra, caffeinefix, cakiki, chermysl, cocoh__23, codermak, comwrg, cyb3rz0n3, cygut, d0nut, d3f4u17, dirtycoder, dkd, dragonjar, egrep ehshahid, en_ahsanali, enzyro, fr4via, fracturedninja, fransrosen, freesecgofunch4x0r_dz, hackit0, hafolife, hailstorm1422, hk755a, hoangn14, holybugx, holyfield, homosec, hulk, huyngoc, hx01, ian, ignaciosarobe, imajes, imgnotfound, imnarendrabhati, iqbal_007, isimsiz, juji, kadusantiago, kotko, krynos, lehtu, m7mdharoun, malcolmx, manish_adz, mateuszek, melbadry9 michau, micr0mind, mikey96, mikkocarreon, mitchellwright, mr-hakhak, musab_alharanynaaashnaif_ksa, niraeth, none_of_the_above, not_stoppable, oxbo, pablofacciano, pankaj_kumar, paulcalabro, pesticide, polem4rch, realtess, recon_ninja, renekroka, rg0x01, rijalrojan, roberto99, rreiss, s3rdz0, s_p_q_r, salh4ckr, samlyhin, samux, shaikhyaser, sheikhimmi, sheikhrishad0, simontang, smaul, smitgharat0001, snorlhax sp00ka7x, spaceraccoon, stevenandres, th3g3nt3lman, txt3rob, villagelad, violet, vp40, w--, w2w, xsam, yuvraj_dighezanderziot


Investigadores independientes

2021

Bug Bounty Researchers

0ang3el4lemonafewgoatsahmedehane, ak1t4, ali, amalyoman, amsda, ankitsingh, ansariosama, arneswinnen, asad0x01, ateek, bitsscramblerbobrov, bubbounty, cdl, d0xing, d4rkm4tter, debsec, discodamone, diskodingo85, djurado, dkd, dz_samir, egrep, erbbysam, g003e, hazimaslam, honoki, hritiksh, indoappsec, inhibitor181, kaktaktoa, kcho, kirtan_patel, kotko, krevetk0, lucio, m0chan, m1s13ksnk, melar_dev, metnew, michael1026, mikee, nadino, nagli, nanwn, ngocdh, niemand_sec, nnez, node1, none_of_the_above, not_stoppable, p4fg, patrik, pnig0s, preben, proabiral, ramsexy, randomdeduction, ras-it, rhynorater, securitybreaker, sergeym, sheikhimmi, shubs, skavans, sml555, smsecurity, spaceraccoon, stuxnite, svennergr, tbehroz, the_arch_angel, todayisnew, tolo7010, try_to_hack, w--, w2w, wirtha, yaworsk, zonduu

Investigadores independientes

2019 -2020

0xd0m7, 0xcaptainfreak, 4bg0p, 0ang3elakhilmm, alexeypetrenko, alfazero, alittleninja, amontes, ankitkrdixit, ankitsingh, annunaki, anonym0us_py, anshuman_bh, apox, appsecure_in, arl_rose, arneswinnen, asad0x01_, ashish_r_padelkar, ateek, bejaminkm, bobrov, brdoors3, bubbounty, bugbasher, bughunterboy, c1231665, cdl, charityhackers, charlieeriksen, chernobyl, cmd-0_0, constructor2019, cr4xerbik4sh, cyb1, d0nut, d3n0, dataalchemist, delisyd, derision, dhakal_ananda, dkd, dvl, dz_samir, edoverflow, eelsivart, egrep, erbbysam, fishofprey, foobar7, frozensolid, goravseth, gujjuboy10x00, hack_all_things, hackdev16, harisec, hazimaslam, hdbreaker, httpsonly, indoappsec, inhibitor181, intidc, isecurity, jackds, jahin0x01, jepatel, jllis, jong_jong, jsadler01, kapytein, kasperkarlsson, kazan71p, kcho, khizer47, kusl, lagertha, lfb, linkks, luied1920, m7mdharoun, mantis, mattaustin, metnew, michael1026, mikee, mlitchfield, moshemiz, mr_r0w07, narenp, neema, ngalog, ngocdh, nih8l, none_of_the_above, nullboy, p4fg, paresh_parmar, pcastagnaro_sfdc, pen3t3r, piyushmalik, pnig0s, poutine_hero, prateek_0490, protector47, psaux, pufo, pxh3, quanyang, r0x33d, ramsexy, randbug101, randomdeduction, randomusername, ras-it, redguard, rijalrojan, ris, rubyroobs, rudnkh, ruvlol, rz01, samux, securitybreaker, securitythinker, sergeym, shahmeer-amir, shailesh4594, shepard, silenthunter, skavans, slechjke, smaury, smiegles, smsecurity, sniper302, sp1d3rs, stok, streaak, strukt, sub_super, suhas_gaikwad, sunil_yedla, sysecure, ta8ahi, tahaismail9, techguynoob, todayisnew, tolo7010, tophersmith116, try_to_hack, trying_to_hack, txt3rob, ubepkr, vinothkumar, vp40, vulnh0lic, wh11tew0lf, whitehatter, wirtha, yashrs, yotamc19899, z0mb13, zapprising, zephrfish, zeroflaw, zigoo0, ziot

2017 -2018

Ervin Weber, Priyanshu Sahay, Elamaran V(BHEL Trichy), TechguySarath, Fredrik Almroth, David Dworken, Karim Valiev, Ankit Mittal, Chris Bland, Ruby Nealon <rubyroobs>, Andrew Leonov, Arne Swinnen, Anand Prakash, Guilherme Cesar Leite, Moataz Jemni, Hussain Adnan Hashim, Peter Yaworski, Ben Buechner, Ian Bouchard, Jubaer Al Nazi, Missoum Said, Yaala Abdellah, Samir Hadji, Evgeniy Yakovchuk, Karl Aparece, Hazim Aslam, Daniel Ballinger, Deepak K, Pier-Luc Maltais, Sergey Bobrov, Deepanker Chawla, Ahsankhan, Mohammed Fayez Ahmed Albanna, Elamaran V, Muhammad Khizer Javed, Iordache Cosmin, Muhammad Hassham Nagori, Gujjuboy10x00(Vishal), Osama Ansari, Prakash Sharma, Marius Horatau, Johnny Nipper, Simon Bräuer, TechguySarath, Tomi Koski, Ashish Padelkar, Stanko, SPQR, Sandeep Singh, Jens Müller, Waleed Ezz Eldin (WIBF), SecuNinja, Darshit Varotaria (Krydence Technologies -Trusted Digital Security Ally), Ankit Mittal

2016

Hadji Samir, Char49, Eusebiu Blindu, Peter Yaworski, Abdul Haq Khokhar, Abdul Rehman, Mustafa "strukt" Hasan, Frans Rosén, Yassine ABOUKIR, Raghav Bisht, Nikhil Kumar Srivastava, Jay Patel, Sagar Shah, Stefano Vettorazzi, David Vieira-Kurz (@secalert), Sasi Levi, Sandeep Singh, Artur Czyż, Ajay chavda, Matvejs Mascenko, Max Prietzel, Nightwatch Cybersecurity, jay k patel, Muhammad Hassaan Khan, Stephen Sclafani, Kacper Kwapisz, Seif Elsallamy, Arie Timmerman, Abhinav Karnawat \/ w4rri0r \/, satish bommisetty, Noriaki Iwasaki, harisec, Max Moroz, Dzmitry Lukyanenka, Deepanker Chawla, Nassim Bouali, Jose Luis Zayas Banderas, Teemu Kääriäinen, Issam Rabhi, Vathsa, Abdullah Hussam, psych0tr1a, PsihoZ26, Mustafa Hasan (strukt), Luciano Corsalini, Fizer Khan, Paulos Yibelo, Avram Marius Gabriel, N B Sri Harsha, Mathias Karlsson, Arsiadi Sriyanto, Cîrja Florinel-Vasile (Quistertow), Darius Petrescu, Tomasz Bojarski, Pranav Hivarekar, Santiago "Mr Hack" López, Muhammad Asim Shahzad, karthickumar (Ramanathapuram), Yasir Altaf Zargar, Nitin Goplani, Hazim Aslam, Nicolas Grégoire, Jigar Thakkar (Akhani), SPQR, Benjamin Kunz Mejri, Jelmer de Hen, Ahmed Aboul-Ela, Arne Swinnen

Recordatorio: Tenga en cuenta que esta página se actualiza cada año. A partir de 2021, solo se reconocerá a aquellos investigadores que envíen informes válidos a Salesforce. ¿Cree que hay algún problema? Comparta por privado todos los datos de la posible vulnerabilidad con el equipo de Seguridad de Salesforce enviando un correo electrónico a security@salesforce.com.

Noticias de Salesforce

¿Cómo está dando sus frutos la inversión de 18,9 millones de dólares de Salesforce en hackers?

Puede parecer ilógico, pero en realidad los hackers ayudan a Salesforce a mantener los datos de sus clientes seguros. El programa Bug Bounty de Salesforce ha otorgado más de 18,9 millones de dólares en recompensas a sus hackers «éticos» por haber informado acerca de casi 30.600 posibles vulnerabilidades.

Dos personas trabajando en sus ordenadores portátiles