YesWeHack is delighted to unveil a new-and-improved User Experience (UX) that better aligns with users’ workflows and the platform’s fast-evolving capabilities.
Launched today, the redesign reconfigures the layout and gives important elements greater salience in ways that will help customers and hunters track metrics and take actions more efficiently.
The revamp has, for instance, removed friction from sorting, filtering, tracking and commenting on findings or vulnerabilities. For hunters, meanwhile, there’s a RANKINGS facelift, while it’s now easier to find Bug Bounty Programs matching their criteria.
The more intuitive and attractive interface builds on design changes introduced with the launch last year of YesWeHack’s Attack Surface Management (ASM) product. The latest overhaul further simplifies the handling of assets, findings and reports, however numerous.
Vulnerability reports more aligned with workflows
Making it easier to view and take actions, changes to the vulnerability report page (see image below) should produce a more seamless remediation process.
Crucially, BUG DESCRIPTION, COMMENTS and ACTIONS tabs are now always visible near the top of the page; previously users may have had to click or scroll down the page to reach them. Moreover, some dropdowns have been replaced with tabs for even quicker access.
Report details like scope, affected endpoints and patch status have been moved to a more logical position beneath the CVSS and asset value metrics on the right-hand side. By clicking on a new ‘workflow’ link, users can see a visualisation of the workflow for processing vulnerability reports.
Condensed filtering layout
The filtering menu on the VULNERABILITY CENTER and ATTACK SURFACE modules is much more compact – elevating the list of findings and reducing the need for scrolling. Notice also how the headline metrics are more conspicuous thanks to a simple dash of colour.
Enhanced 'MY PROGRAMS' browsing
The revamped programs list makes choosing your next hacking engagement a quicker, more informed process with a multi-column layout, enhanced colour coordination and addition of useful program details (namely: country, sector, number of reports and 1st response).
As for the program page itself, a new HTML anchor menu means hunters can save time by navigating with a single click to the most relevant sections.
RANKINGS refresh adds Olympic-style podium
An eye-catching new podium design gives due prominence to the achievements of the top three performing Bug Bounty hunters (whether of all-time, during the current month/quarter/year or of previous quarters/years).
Gilles Yonnet, CTO at YesWeHack, says: “Our design refresh enhances the user experience, whether you’re a hunter or Bug Bounty Program manager, and whether you oversee just a Bug Bounty Program or combine it with ASM, Pentest Management and a Vulnerability Disclosure Policy (VDP).
“The revamp should facilitate the vulnerability remediation process to the benefit of hunters and organisations alike, and enhance the platform’s utility as a 360-degree cockpit combining unified vulnerability management with continuous threat exposure management.”
Forthcoming features
A raft of new features will be launched throughout 2024.
The first will be an Advanced Program Search that gives hunters more granularity in finding suitable hunting opportunities. Search filters will include scope types, reward grids, program type, collaboration allowed/not allowed, supported languages, countries and activity areas (sectors).
As with the recent Video Attachments feature, this functionality is being introduced in response to hunter demand.