Search & answer engines
Frequently asked questions
Short, citation-friendly answers. Structured data on this page mirrors the same Q&A for machines — no hidden paywalled answers.
📖 Categories
Product basics — 2 questions
Scope, validation & trust — 2 questions
Running hunts — 2 questions
Comparisons & pricing — 2 questions
Product basics
What is RaSEC Hunt?
RaSEC Hunt is a bug bounty co-pilot: you define the target and paste your program scope, and the product streams agent activity back to you with clear lifecycle states. The interface is built so scope boundaries stay visible and high-severity findings are not treated as “confirmed” until they pass validation—matching how serious hunters actually work.
Who is this for?
It is for hunters who already run on HackerOne, Bugcrowd, and similar programs and want a guided, real-time workflow—not a black box that fires alerts with no accountability. If you need fully automated pentesting with no human review, this is not the right fit.
Scope, validation & trust
How does scope safety work?
You import or paste scope rules; the hunt experience keeps a persistent scope bar and trust-oriented messaging so it is obvious when actions stay inside the program. Out-of-scope attempts are blocked and surfaced in the UI rather than silently continuing.
What does “validated” mean for a finding?
A finding is not presented as validated until the product’s validation path marks it as confirmed. Until then, you should expect a pending state and explanatory UI—not a fake green checkmark. End-to-end validation against your live environment is your responsibility before submission.
Running hunts
Can I pause or run a long session?
The product supports pausing and resuming a hunt from the control surface, and the stream is designed to reconnect when the network drops—so you are not locked to a single browser tab for the entire run. Exact limits depend on your deployment and queue configuration.
What happens if my connection drops?
The client is built to reconnect with exponential backoff and to use Last-Event-ID style replay so you can catch up on events after a blip. If retries are exhausted, you should see a failed state in the UI rather than a silent stall.
Comparisons & pricing
How is this different from Burp Suite, Nuclei, or a chat-only assistant?
RaSEC is agent-driven with streaming progress, scope visibility, and structured finding/PoC presentation—not a raw terminal or a generic chat. Comparisons to other tools depend on your workflow; we document UX criteria in our product materials without claiming formal benchmark winners.
Is pricing available?
Public pricing tiers are [TBD]. Use the pricing page for the latest placeholder or contact your team for enterprise arrangements—we do not list fictional dollar amounts.