Platform Overview

Learn how NidFul’s workflow, trust model, and community safeguards map to the African security landscape.

7 min readUpdated Oct 5, 2025Getting Started

Platform Overview

NidFul delivers end-to-end vulnerability collaboration tailored to African teams, regulators, and researchers. This overview highlights the core components you will interact with day-to-day.

Core Modules

Program Workspaces

Each program—bug bounty or VDP—lives inside a workspace. Workspaces bundle:

Policy & Scope definitions with version history.
Submission Inbox for triage and collaboration.
Automation Rules such as auto-acknowledge, SLA reminders, and bounty templates.

Researcher Network

NidFul curates an invite-only pool of African security researchers. Profiles surface:

Specialisations (fintech, telecommunications, public sector).
Reputation metrics (signal, impact, response quality).
Compliance status (KYC/KYB checks, NDA acceptance).

Analytics

Leadership dashboards provide:

Resolution and acknowledgement SLAs.
Bounty spend distribution.
Risk categories mapped to MITRE ATT&CK and OWASP Top 10.

Privacy by design

NDPR, POPIA, and GDPR controls are baked into data flows. Sensitive report data is encrypted at rest and audit logs retain access history for 18 months.

Role-Based Access Control

Program Owners manage policy, invitations, and integrations.
Triage Analysts collaborate with researchers, set severity, and request clarifications.
Finance Leads control payouts, payment rails, and tax documentation.
Researchers only see submissions and communications relevant to their reports.

Automation & Integrations

Webhooks fire on submission lifecycle transitions, bounty approvals, and scope changes.
Native connectors sync with GitHub, Jira, Linear, and Slack.
API tokens include fine-grained scopes so you can enforce least privilege.

Trust & Safety Features

Safe-harbor text and legal disclaimers localised for African jurisdictions.
Detections for duplicate reports and suspicious activity.
Optional managed triage by the NidFul security team.

Where to Explore Next

Dive into the Quick Start Guide for an actionable walkthrough.
Assign responsibilities with Roles & Permissions before inviting collaborators.
Researchers should bookmark the Researcher Profile & Reputation guide.
Organizations can evaluate automation options in Triage & Remediation Workflow.

With these building blocks in mind you can grow from pilot programs to continent-scale disclosure operations, guided by the lessons learned across the NidFul community.