 do not use idefense for your critical bugs
After comparing some research price with the help of some anonymous idefense or zdi contributors, even if the people think because behind idefense
there is a big industry called VeriSign, they won't pay you much than zdi, as an approximation , they will pay you half the price of it.
for example, they have so much contributions so that they don't really care of loosing the ownership of a critical office flaw, so it doesn't sound like a responsible program here but much something trying to catch your work at the lower price.
I just recommand to use idefense for low, small, risks discoveries because tippingpoint does IPS, offers defcon, and remunerate you like it should. |