How to sell us your 0 Days

We constantly buy 0 day and N day vulnerabilities and exploits. We do not pay for hypothetical vulnerabilities. Please provide a brief technical description of the vulnerabilities and exploits on our form to our e-mail: sales@0-sec.net

Your vulnerability will be analyzed and evaluated by our internal team within 48 hours. Remuneration can be paid in cash, bank transfers or anonymous transfers using crypto conversions.

We are considering an additional premium for exclusive conditions for us in the form of additional quarterly payments to researchers before disclosure of the vulnerability.

Prices 0 days can be higher depending on the quality of the exploits, we are ready to negotiate the price on a bilateral basis.

What is a 0 Day?

In the world of cyber security, vulnerabilities are unintended flaws found in software, hardware or operating systems. Vulnerabilities can be the result of improper computer or security configurations and programming errors. If left unaddressed, vulnerabilities create security holes that can be exploited.

Why is this a security risk?

Hackers write code to target a specific security weakness. They package it into malware called a zero-day exploit. The malicious software takes advantage of a vulnerability to compromise a computer system or cause an unintended behavior. In most cases, a patch from the software developer can fix this.

Exploit malware can infiltrate allowing hackers to take unauthorized control of your computer. Software can also be used in ways that were not originally intended — like installing other malware that can corrupt files or access your contact list to send spam messages from your account. It could also install spyware that steals sensitive information from your computer.

Join our team of researchers?

Our exploitation techniques exceed the capabilities of today’s malicious actors which means our customers are prepared for future threats. Our tools allow users to prove or disprove claims made by defensive products while always being mindful of evasiveness.

We focus heavily on discovering and exploiting vulnerabilities in business-critical software like enterprise solutions, browser, operating systems, mobile devices and email clients/servers.