Decentralized Vulnerability Database & Bug Bounty Platform
dVulnDB is a next-generation, blockchain-powered vulnerability disclosure and bug bounty platform for cybersecurity professionals. It combines industry-standard CVSS scoring (4.0/3.0), blockchain-native CVE storage, cyberpunk UI, and seamless wallet integration to deliver a transparent, tamper-proof, and community-driven security ecosystem.
- Decentralized CVE Registry: Store vulnerability records (CVEs) and their CVSS scores directly on-chain for transparency and immutability.
- CVSS 4.0 & 3.0 Support: Full support for official Common Vulnerability Scoring System standards. No custom scoring—only industry standards.
- Blockchain-Native Severity Matrix: Hacken-style severity mapped to CVSS for blockchain-specific findings.
- Wallet Integration: Connect with Phantom wallet for authentication and rewards.
- Bug Bounty Automation: Smart contract escrow, multi-sig validation, and automatic reward payouts.
- Cyberpunk UI: Matrix-inspired, high-contrast design with animated backgrounds and terminal vibes.
- Tooling & API: Upload outputs from Nmap, Nikto, Burp Suite, or use our PowerShell module for automated submissions.
- Community & Reputation: NFT-based researcher profiles, leaderboards, and transparent validation/voting.
- Frontend: Next.js 14, TypeScript, Tailwind CSS
- Web3: Phantom wallet adapter, Solana web3.js
- Smart Contracts: Solana (simulated; mainnet support planned)
- Storage: IPFS for decentralized file storage
See docs/dvulndb-documentation.md for:
- Full platform overview
- Severity scoring methodology (CVSS, blockchain matrix)
- User journeys (researchers, maintainers, validators)
- Roadmap & innovation highlights
Clone, install, and run locally:
npm install
npm run devVisit http://localhost:3000 in your browser.
Pull requests, feature suggestions, and bug reports are welcome! Please see the documentation for contribution guidelines and project structure.
DVulnDB is built by and for security researchers. Our mission: bring transparency, trust, and decentralization to vulnerability disclosure and bug bounty programs through open standards and blockchain technology.