Blockchain security firm CertiK has introduced CertiK Hunt, an invite-only platform designed to connect vetted security researchers with Web3 projects, marking a broader push toward continuous security testing across the digital asset ecosystem. Announced on July 1, 2026, the platform enables blockchain projects to conduct bug bounty programs, audit competitions, and artificial intelligence-based security challenges while aiming to reduce the low-quality submissions that have long hindered traditional bug bounty initiatives.
The new platform adopts an invitation-only model, allowing participation only from researchers who meet predefined standards based on technical expertise, previous vulnerability discoveries, professional track records, and standing within the cybersecurity community. Projects seeking to launch programs on the platform also undergo a review process before being accepted, creating a curated environment for both researchers and participating organizations.
According to CertiK, every vulnerability submitted through CertiK Hunt is independently reproduced, verified, and assigned a severity rating before it reaches the project’s security team. The company said this neutral review process is intended to reduce disputes over vulnerability severity and bounty payouts by ensuring that assessments are conducted independently rather than by the protocol offering the reward.
Addressing Long-Standing Bug Bounty Challenges
The platform has been developed to tackle one of the biggest operational challenges associated with open bug bounty programs: the overwhelming volume of spam and low-value reports that security teams must review. By restricting access to experienced researchers, CertiK expects projects to receive fewer but more meaningful vulnerability reports, reducing the time and resources spent filtering irrelevant submissions.
Accepted vulnerabilities will qualify for rewards under responsible disclosure practices after completing the independent verification process. CertiK believes this structure can improve trust between researchers and projects by minimizing disagreements over the significance of reported issues and the compensation awarded for valid findings.
Margarita Kadochnikova, Head of Communications at CertiK, said the company had observed numerous cases across the cybersecurity industry in which legitimate security researchers encountered disagreements or payment delays despite reporting valid vulnerabilities. She stated that CertiK Hunt was created to establish a trusted environment where researchers could focus on identifying critical security issues while projects received reliable security intelligence under transparent and consistently applied rules.
The independent assessment model also seeks to eliminate incentives for projects to reduce the reported severity of vulnerabilities in order to lower bounty payments, a concern frequently raised by researchers participating in self-managed bug bounty programs.
Today, we're excited to announce the launch of CertiK Hunt – our new invite-only platform connecting elite security researchers with trusted Web3 projects.
CertiK Hunt brings together bug bounty programs, audit competitions, and AI security challenges in one place.
🧵👇 pic.twitter.com/RNnGgLmGl2— CertiK (@CertiK) July 1, 2026
Expanding Beyond Traditional Security Audits
CertiK said the platform represents a shift from one-time security audits toward continuous, researcher-driven security testing throughout a project’s lifecycle, combining formal audits with bug bounty programs, audit competitions, and AI-powered security initiatives. The company believes ongoing assessments are increasingly necessary because vulnerabilities may emerge after deployment through software updates or newly discovered attack techniques that were not present during initial audits.
Hudson Jameson, Head of Ecosystem at CertiK, said the launch represented the next stage of the company’s effort to improve Web3 security. He indicated that the platform was designed to prioritize quality over submission volume, enabling leading researchers to identify impactful vulnerabilities while giving blockchain projects greater confidence in the security of their software.
Growing Demand for Continuous Security
The launch comes as the Web3 industry continues to face significant financial losses from cyberattacks and exploits. As blockchain protocols become more sophisticated and regulatory oversight expands, organizations are placing greater emphasis on continuous security monitoring rather than relying solely on pre-launch audits.
CertiK‘s previous research has highlighted the changing cybersecurity landscape. Its 2026 Skynet stablecoin threat report identified wallet compromises as the leading attack vector, surpassing software code vulnerabilities. Another regulatory-focused study found that infrastructure-related compromises accounted for 76% of on-chain losses by value during 2025.
The introduction of CertiK Hunt also expands the company’s broader security portfolio beyond conventional auditing services. Alongside recent offerings such as Skill Scanner for AI agents, the platform reflects CertiK’s strategy of providing security solutions that support blockchain applications throughout their operational lifecycle, rather than limiting protection to initial code reviews.







