MSRC Researcher Resource Center
Welcome!
Microsoft partners with the global security researcher community to surface and report security vulnerabilities to protect all end users of Microsoft products and services. This Resource Center will house educational content, including videos, blogs, and interviews, aimed at guiding and empowering Microsoft researchers in their efforts. Through researcher submissions, we address immediate threats while also identifying trends and insights to holistically improve the security of our attack surface. Through providing educational materials from both Microsoft employees and the MSRC’s top external researchers, we hope to support your security research growth!
Researcher Onboarding Video
Watch the Researcher Onboarding Video to learn about the Rules of Engagement, case process, available rewards through the Bounty Program, Recognition Program points and leaderboards, and our disclosure process.
Researcher Highlight Blogs
Read from the MSRC’s top researchers! How they got started and their research focus for the MSRC. To read more please visit
- https://msrc.microsoft.com/blog/2023/07/from-bounty-leaderboards-to-microsoft-security-researcher-meet-cameron-vincent/
- https://msrc.microsoft.com/blog/2023/06/breaking-barriers-aditis-journey-through-sight-loss-to-microsoft-ai-innovator/
- https://msrc.microsoft.com/blog/2023/09/journey-down-under-how-rocco-became-australias-premier-hacker/
Researcher BlueHat Podcasts and Webinars
Listen in as Top Microsoft Researchers and employees share their approach to security research.
Researcher Skill Development Resources
Ready to level up? Check out free research-focused educational resources offered by security research industry partners!
Hack The Box Labs
An online playground for cybersecurity students and enthusiasts, offering a wide range of hands-on labs that simulate real-world threats and attack scenarios. Platform members can test and enhance their skills across different domains – from beginner to advanced levels, from offensive to defensive – and collaborate with a global community. If you're looking to sharpen your hacking abilities and stay ahead in the constantly evolving world of cyber threats, you can start now for free here.
Hacker101
Hacker101 is a free class for web security. Whether you’re a programmer with an interest in bug bounties or a seasoned security professional, Hacker101 has something to teach you. Start learning!
Bugcrowd University
Welcome to Bugcrowd University! Join us for free and begin your journey to become a white hat hacker. Bugcrowd University was created to help you learn the basics of hacking and bug bounty hunting. Get started!