how it works · sign in · sign up
Chaos Monkies — QA Bounty Hunters For Hire. Post A Target. 8 Specialist Hunters, 24h First Report, 0 Bugs Left Behind.
accepting contracts

Your bugs have bounties.

Chaos Monkeys is QA-as-a-service with teeth. A crew of specialist hunters finds what your test suite misses. Bug reports arrive as bounty bills. Every bug caught, tagged, and claimed.

Post a Target — $99 to start

Free teaser scans first. $99 for a 4-LOM static-analysis report, $249 per live monkey, or grab the full crew for $1,499. How it works →

8
specialist hunters
24h
first report
0
bugs left behind
the bounty board

Meet the crew.

Every Monkey has a specialty. When you post a target, we dispatch the right hunters for the job. They work independently, report independently, and don't pull punches.

☎ ON THE LINE Silverback
Silverback
The Fixer — runs the room
"Right monke. Right target. No excuses."
API Boba
Boba
API Endpoint Hunter
"Every endpoint has a price. I find the ones that can't pay it."
UI/UX Mando
Mando
UI/UX Flow Tester
"This is the way. And your modal isn't closing on escape. That's not the way."
Smoke Han
Han
Smoke Tester
"I've got a bad feeling about this prod build. Let me click everything once and prove it."
Security Cad
Cad
Security Probe
"Rules are what other testers follow. I find the cracks they're designed to hide."
Edge Cases Predator
Predator
Edge Case Hunter
"If it bleeds, it can be broken. I find what nobody else sees."
Regression Bossk
Bossk
Regression Hunter
"I caught this bug last sprint. You said it was fixed. It's not fixed."
Chaos IG-88
IG-88
Fuzzer / Chaos Engineer
"Randomness is not a flaw. It is a weapon. Your input validation disagrees."
Performance Aurra
Aurra
Performance & Latency Assassin
"Your p99 is lying to you. I'll show you what it looks like under real pressure."
$99 SAST 4-LOM
4-LOM
Static Analysis — auth holes, secrets, injection sinks, CVE deps
"Black-box probing can't see auth checks that are never reached. I read the source."
+$999 ADD-ON Cloud
Cloud
AWS Config Audit — prowler
"Looks at the keys before the locks."
+$499 ADD-ON Gunslinger
Gunslinger
Active Testing — Metasploit + nmap
"Verified target only. Boots on the ground when you're ready for live fire."
how a hunt works

Three steps. Zero politics.

No onboarding calls. No 47-page SOWs. Post your target, we dispatch the crew, you get bounty bills.

01

Post your target

Hand us the URL, the API docs, the staging creds. Tell us what scares you. We'll figure out the rest.

02

Crew is dispatched

We assign the right Monkeys based on your stack and risk profile. They work in parallel, independently, with no groupthink.

03

Bounty bills arrive

Every bug comes back as a structured bounty bill: severity, repro steps, hunter tag, and a recommended fix. No fluff.

BOUNTY-2026-0847 SEVERITY: HIGH
Target api.example.com/v2/users
Hunter Boba
Finding PUT /users/{id} accepts negative integers for age field. No server-side validation. Upstream analytics pipeline chokes on negative values, causing silent data corruption in cohort reports.
Repro curl -X PUT api.example.com/v2/users/42 -d '{"age": -1}' -H 'Authorization: Bearer ...'
Fix Add server-side integer range validation (0-150) on age field. Client-side validation alone is insufficient.
Collected by Boba — API Endpoint Hunter — Bounty claimed.
pricing

Three modes. Pay only for the reports you want.

Free teaser scans always run first. You pay after seeing what the crew turned up. Pick the mode that fits your target.

How does the unlock work?

Everyone gets free teaser scans first. Each monkey takes ~60-90s, surfaces the single most interesting issue they spot, and writes a public-safe one-liner. You only pay for the full report on monkeys whose teasers turned up something worth claiming. Read the full guide →

Repo-only (4-LOM)
Connect a GitHub App, paste a PAT, or drop a public GitHub URL. 4-LOM clones, walks the AST, files findings with file:line precision.
$99
flat · single 4-LOM report
  • Static analysis: auth holes, hardcoded secrets, injection sinks, dependency CVEs
  • file:line citations so the fix prompt patches directly
  • No live target needed
  • Public-repo path: any github.com URL, no install
Run a code review →
Live + Repo
Both. The live crew probes from the wire while 4-LOM reads source. 4-LOM's findings become leads for the live crew to validate.
$99 addon
+ live unlocks above
  • Full live crew (priced as Live target above)
  • 4-LOM static analysis runs in parallel for $99
  • Directed-turn pipeline: Mando validates auth-bypasses Cad finds in source, etc
  • Black-box and white-box coverage on the same target
  • Apply-as-PR: one click opens a real GitHub PR with the fix
Run live + repo →
your move

Your users are already testing in production.
We'd rather the Monkeys find it first.

Post your target. The crew is ready. Bug reports arrive as bounty bills, every finding tagged, every hunter accountable.

Post a Target — $99 to start

Specialty
Style
Tools of the trade