Meta Bug Bounty
Tools
Leaderboard
Learn
Blog
Submit a report
Meta Bug Bounty tools
We have created tools to help security researchers find and confirm vulnerabilities in our services.
SSRF validator
Confirm potential server-side request forgery vulnerabilities via URLs only reachable internally.
Test accounts
Create & manage test Facebook accounts.
FBDL
Quickly set up complex test environments using Facebook bug description language.
Access token debugger
Look up details of access tokens and their owners.
Graph API explorer
Make calls to Facebook’s GraphAPI via an easy to use UI.
m.facebook.com request logger
Log HTTP requests made on your behalf in the JavaScript console when browsing m.facebook.com.