AI triages your vulnerability reports.
You just approve.

VDP and bug bounty management that classifies, deduplicates, and drafts responses automatically. Free to start.

Intake triage dashboard showing vulnerability reports in a Kanban board with severity badges and SLA indicators

AI-powered triage

Every report is automatically classified by severity, checked for duplicates, and matched to a CWE. Intake drafts a response and suggests next steps — your team just reviews and approves.

Classify

Severity, priority, and CWE — extracted from the report text.

Deduplicate

Matches against existing reports so you never triage the same bug twice.

Respond

Drafts replies to reporters based on your policy and past responses.

Everything you need to run a VDP or bug bounty

Branded reporter portal

Your own submission page with your logo, scope, and policy — reporters know exactly where to submit.

Visual triage workflow

Drag-and-drop board to prioritize, assign, and track reports from submission to resolution.

Email intake

Reporters can submit via email too — reports land in the same workflow, fully parsed and tracked.

Team collaboration

Role-based access, assignments, internal comments, and SLA tracking across your security team.

Compliance-ready audit trail

Every action logged in OCSF format — ready for SOC 2, ISO 27001, and regulatory audits.

Multi-tenant isolation

Row-level security, encrypted secrets, and full data isolation — even in a shared deployment.

SSO, RBAC, and audit logging on every plan — even Free.

See it in action

Create a free account and have your first program live in under five minutes.

Get Started Free

Simple, transparent pricing

Free

$0forever

Replace your security@ inbox

Starter

$25/mo

AI classifies every report

Pro

$250/mo

AI handles your reports

See full pricing

Frequently Asked Questions

What is a vulnerability disclosure program?: A vulnerability disclosure program (VDP) is a structured process for receiving, triaging, and resolving security vulnerability reports from external researchers. It gives security researchers a safe, legal way to report bugs they find in your systems.
How does Intake use AI to process security reports?: Intake uses AI to automatically extract structured data from researcher submissions — identifying affected assets, severity, CWE classifications, and potential duplicates. The AI suggests triage decisions, but your team always has final approval before any action is taken.
Is Intake free to use?: Yes. Intake offers a free plan with unlimited submissions, AI-powered report structuring, duplicate detection, and full security features including SSO, encryption, and audit logging. Paid plans add deeper AI capabilities like automated triage and action proposals.
How is Intake different from HackerOne or Bugcrowd?: HackerOne and Bugcrowd are managed bug bounty platforms that bundle researcher communities with expensive managed triage services. Intake is a self-service VDP platform that gives your team AI-powered tools starting free — you stay in control without paying for managed services you may not need.

Ready to launch your program?

AI-powered triage

Every report is automatically classified by severity, checked for duplicates, and matched to a CWE. Intake drafts a response and suggests next steps — your team just reviews and approves.

Classify

Severity, priority, and CWE — extracted from the report text.

Deduplicate

Matches against existing reports so you never triage the same bug twice.

Respond

Drafts replies to reporters based on your policy and past responses.

Everything you need to run a VDP or bug bounty

Branded reporter portal

Your own submission page with your logo, scope, and policy — reporters know exactly where to submit.

Visual triage workflow

Drag-and-drop board to prioritize, assign, and track reports from submission to resolution.

Email intake

Reporters can submit via email too — reports land in the same workflow, fully parsed and tracked.

Team collaboration

Role-based access, assignments, internal comments, and SLA tracking across your security team.

Compliance-ready audit trail

Every action logged in OCSF format — ready for SOC 2, ISO 27001, and regulatory audits.

Multi-tenant isolation

Row-level security, encrypted secrets, and full data isolation — even in a shared deployment.

Frequently Asked Questions

What is a vulnerability disclosure program?

A vulnerability disclosure program (VDP) is a structured process for receiving, triaging, and resolving security vulnerability reports from external researchers. It gives security researchers a safe, legal way to report bugs they find in your systems.

How does Intake use AI to process security reports?

Intake uses AI to automatically extract structured data from researcher submissions — identifying affected assets, severity, CWE classifications, and potential duplicates. The AI suggests triage decisions, but your team always has final approval before any action is taken.

Is Intake free to use?

Yes. Intake offers a free plan with unlimited submissions, AI-powered report structuring, duplicate detection, and full security features including SSO, encryption, and audit logging. Paid plans add deeper AI capabilities like automated triage and action proposals.

How is Intake different from HackerOne or Bugcrowd?

HackerOne and Bugcrowd are managed bug bounty platforms that bundle researcher communities with expensive managed triage services. Intake is a self-service VDP platform that gives your team AI-powered tools starting free — you stay in control without paying for managed services you may not need.

AI triages your vulnerability reports. You just approve.

AI-powered triage

Everything you need to run a VDP or bug bounty

Branded reporter portal

Visual triage workflow

Email intake

Team collaboration

Compliance-ready audit trail

Multi-tenant isolation

See it in action

Simple, transparent pricing

Free

Starter

Pro

Frequently Asked Questions

Ready to launch your program?

AI triages your vulnerability reports. You just approve.

AI-powered triage

Everything you need to run a VDP or bug bounty

Branded reporter portal

Visual triage workflow

Email intake

Team collaboration

Compliance-ready audit trail

Multi-tenant isolation

See it in action

Simple, transparent pricing

Free

Starter

Pro

Frequently Asked Questions

Ready to launch your program?

AI triages your vulnerability reports.
You just approve.

AI triages your vulnerability reports.
You just approve.