There is a number of tools and programs (free and paid) that you can use to scan your website or web server for weaknesses, the only problem is that at the end of the day these are just programs and will never be as smart as the human mind, even the best security programs seem to miss some critical vulnerabilities in many cases, therefore the best way to ensure that your web application is secure is to hire a professional to test it, professionals usually use both manual and automatic (using programs) methods to find weaknesses in your application, this way you get the best of both worlds.
Hiring security professionals however is not cheap and will cost you a good bit of money, this is a big issue to most website owners and start ups. Another issue is that if you change anything in your website after hiring the professional, the professional is not responsible for that so you could create new weaknesses as you update or add new features to your website.
Now there is a solution to that, using a new bug bounty service (provided by bug-bounty.com)
which allows you to add a bug bounty program to your website, this means that it will be tested by a number of professional hackers for FREE, you will only need to pay the bounty which you specify if somebody manages to find a weakness in your website.
To list your website in bug-bounty.com register as a company, and click on “add challenge” to add your website, after filling the challenge info you will be asked to upload a file to your website to ensure that you are the owner of the website. Then your challenge will be reviewed and listed in bug-bounty.com in less than 24 hours.
Its this simple, your website will be tested by a number of security professionals for FREE, you can keep your website listed in bug-bounty.com so that it keeps getting tested while you update it. Each bug report submitted about your website will be reviewed first by Bug Bounty team to ensure that it is correct , so you will only receive 100% valid reports.
Service URL: http://bug-bounty.com/en/