CBBH
HackTheBox

HTB Certified Bug Bounty Hunter

Intermediate Multi-day practical web bug-bounty style exam + report Pass: Report/objective quality based; exact threshold n… $210

CBBH is a practical bug-bounty oriented credential centered on modern web/API attack techniques and reproducible findings. For 2026, focus on authz logic, chaining medium-severity issues, and crisp PoCs.

Official Page
IssuerHackTheBox
FormatMulti-day practical web bug-bounty style exam + report
DurationUp to 7 days (indicative)
Pass ScoreReport/objective quality based; exact threshold n…
Overview Syllabus (5) Tools (7) Cheat Sheets (2) Labs (3)
Prerequisites
Recommended: HTTP/HTTPS fundamentals, web app architecture basics, JavaScript familiarity, and hands-on exposure to OWASP Top 10 style issues.
Syllabus Overview

5 exam domains — click "Syllabus" tab for full breakdown

Web Recon & Attack Surface Mapping 20%
Input Validation & Injection 25%
Authentication, Session & Access Control 25%
Business Logic & Modern Web Risks 15%
Reporting & Patch Verification 15%
More from HackTheBox
CPTS
HTB Certified Penetration Testing Specialist
Advanced
 CDSA
HTB Certified Defensive Security Analyst
Intermediate
 CWEE
HTB Certified Web Exploitation Expert
Expert