Coming soon — Join the waitlist

Never lose a vulnerability
report again

The dead-simple drop-in replacement for security@domain.com. A proper dashboard, structured reports, severity ratings, and real-time status tracking. All in one link.

Join the Waitlist See how it works

dashboard — zeroday.report

>0 new vulnerability reports

criticalSQL Injection in /api/users endpointjust now

highXSS via profile bio field2m ago

mediumOpen redirect on OAuth callback14m ago

lowInformation disclosure in error pages1h ago

criticalSSRF in image proxy endpoint2h ago

$ Waiting for your response...

Features

Everything security@domain.com isn't

A purpose-built platform for receiving, tracking, and managing vulnerability reports. No more lost emails, no more spreadsheets.

One link, infinite reports

Create a project, get a unique reporting URL. Share it in your README, security.txt, or anywhere. That's it.

Real-time dashboard

See every report as it comes in. Severity ratings, statuses, response tracking — no more digging through email threads.

Filter, search, triage

Sort by severity, status, reporter, or date. Full-text search across all reports. Find anything in seconds.

Structured severity ratings

Every report gets a proper CVSS-style severity rating. Critical, high, medium, low — at a glance.

Never miss a report

Instant notifications when new reports come in. Track which ones need your response. Zero reports lost.

GitHub-native auth

Reporters can sign up with GitHub or email. You know exactly who's reporting. Block bad actors instantly.

How it works

Three steps. That's it.

No complex setup. No procurement process. No sales calls. Just create, share, and start receiving properly structured vulnerability reports.

Create a project

Link a GitHub repo or name a project. Takes 30 seconds. We generate a unique reporting URL for you.

https://zeroday.report/r/your-project

Share your link

Drop it in your security.txt, README, or wherever you currently point people to security@. Done.

# security.txt
Contact: https://zeroday.report/r/your-project

Receive & manage reports

Reports come in structured with severity, details, and reproduction steps. Triage, respond, and resolve — all from one dashboard.

$ 3 new reports → 1 critical, 1 high, 1 medium

Comparison

You already know email sucks for this

We're not competing with HackerOne. We're replacing the inbox you're already ignoring.

zeroday.reportsecurity@

Structured reports with severity

Dashboard & search

Status tracking

Reporter authentication

Block bad actors

Response time tracking

Setup time

30 seconds

Already done

Cost

Free to start

Free but painful

Pricing

Simple, transparent pricing

Start free for open source. Scale when you need to. No surprise fees, no per-researcher pricing.

Open Source

Free

For individual developers and open source projects.

1 project
Unlimited reports
Dashboard & search
Severity ratings
Email notifications

Get Started

Popular

Team

$29/mo

For teams that ship software and take security seriously.

Unlimited projects
Unlimited reports
Priority support
Team members
API access
Custom branding

Join Waitlist

Enterprise

Custom

For organizations with advanced security requirements.

Everything in Team
SSO / SAML
Audit logs
SLA guarantee
Dedicated support
Email-to-report ingestion

Stop losing vulnerability reports
in your inbox

Join the waitlist and be the first to replace security@domain.com with something that actually works.

Join the Waitlist

Free for open source. Always.

Never lose a vulnerabilityreport again