Start Exploring for Free

Bug Bounty Programmes

The following links are provided to various bug bounty programmes.

Title URL Offers Bounty
(ISC)2 https://bugcrowd.com/isc2 no
.nz Registry https://registry.internetnz.nz/about/vulnerability-disclosure-policy/ no
0x https://docs.0x.org/developer-resources/bounties yes
0xdata.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
123 Contact Form http://www.123contactform.com/security-acknowledgements.htm no
18F https://18f.gsa.gov/vulnerability-disclosure-policy/ no
1Password Game https://bugcrowd.com/agilebits yes
23andme https://www.23andme.com/security-report/ yes
24sessions https://www.24sessions.com/responsible-disclosure yes
3DS OUTSCALE https://en.outscale.com/reporting-vulnerabilities/ yes
3GPP https://www.3gpp.org/coordinated-vulnerability-disclosure-cvd no
3delight.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
4chan https://www.4chan.org/security no
4teamwork.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
84codes https://www.84codes.com/security/ yes
98 Point 6 https://www.98point6.com/responsible-disclosure-policy/ no
98point6 https://www.98point6.com/responsible-disclosure-policy/ no
ABB https://www.abb.com/cybersecurity no
ADP https://www.adp.com/about-adp/data-security.aspx no
ALSCO https://alscotoday.com/go/bug yes
AMD https://www.amd.com/en/corporate/product-security-incident-response-team no
AOL https://contact.security.aol.com/ no
ARM mBed https://tls.mbed.org/c-library-bug-bounty-program yes
ASN Bank https://www.devolksbank.nl/over-ons/kwetsbaarheden-melden no
ASUS https://www.asus.com/Static_WebPage/ASUS-Product-Security-Advisory/ no
AT&T https://bugbounty.att.com/ yes
AVG https://www.avg.com/en-ww/security no
Abbott https://www.abbott.com/policies/cybersecurity/cybersecurity-coordinated-product-disclosure.html no
Abn Amro https://www.abnamro.nl/en/personal/overabnamro/secure-banking/responsible-disclosure.html yes
Accellion https://bugcrowd.com/accellion-public yes
Accenture https://www.accenture.com/us-en/about/company/accenture-responsible-disclosure no
Accredible https://www.accredible.com/white_hat/ yes
Achmea https://www.achmea.nl/en/responsibledisclosure no
Acorns LLC https://bugcrowd.com/acorns yes
Acquia https://www.acquia.com/solutions/security no
Across Protocol https://docs.across.to/v/developer-docs/additional-info/bug-bounty yes
Actility https://www.actility.com/security/ yes
ActiveProspect https://activeprospect.com/security/ no
Ada Health https://ada.com/security-vulnerability-disclosure-policy/ no
Adafruit https://www.adafruit.com/reportingsecurityissues no
Adobe https://helpx.adobe.com/security/alertus.html no
Aerohive http://www.aerohive.com/support/security-center no
Agent Legend https://agentlegend.com/vulnerability-disclosure-policy/ no
Ahold Delhaize https://www.aholddelhaize.com/en/security/ yes
Aims360 https://www.aims360.com/vulnerability-responses/ no
Aion https://aion.network/terms-bounty/ yes
Air Miles https://www.airmiles.nl/responsible-disclosure yes
Air Miles Shop https://www.airmilesshop.nl/responsible-disclosure no
AirSwap https://blog.airswap.io/airswap-bug-bounty-4d7ec41f3ea7 yes
AirVPN https://airvpn.org/security_policy/ yes
Airbnb https://hackerone.com/airbnb yes
Airmap https://www.airmap.com/responsible-disclosure-policy/ no
Airship https://www.airship.com/legal/full-disclosure-security-policy/ no
Airtable https://hackerone.com/airtable yes
Alaska Air https://www.alaskaair.com/content/about-us/site-info/report-site-security-issues no
Alcatel Lucent https://www.al-enterprise.com/en/support/security-advisories no
Alcyon https://www.alcyon.nl/responsible-disclosure/ no
Algolia https://hackerone.com/algolia yes
Algorand https://bugcrowd.com/algorand yes
Alibaba https://security.alibaba.com/ yes
Alienvault https://cybersecurity.att.com/documentation/usm-appliance/system-overview/how-to-submit-a-security-issue-to-alienvault.htm no
Aliexpress https://security.alibaba.com/ yes
Aliter Technologies https://www.aliter.com/vulnerability-disclosure-policy/ no
Allegro https://hackerone.com/allegro yes
Altervista https://en.altervista.org/feedback.php?who=feedback no
Altilly https://www.altilly.com/page/security yes
AlwaysData https://www.alwaysdata.com/en/bug-bounty/ yes
Amara http://amara.org/en/security no
Amazon https://hackerone.com/amazonvrp yes
Amazon Web Services https://aws.amazon.com/security/vulnerability-reporting/ no
American Battle Monuments Commission https://www.abmc.gov/vulnerability-disclosure-policy no
American Express https://www.americanexpress.com/us/security-center/cybersecurity.html no
Amitree Inc https://hackerone.com/amitree_inc no
Analog Devices https://www.analog.com/en/support/technical-support/product-security-response-center/vulnerability-disclosure-policy.html no
Android https://www.google.com/about/appsecurity/android-rewards/ yes
Anomali https://www.anomali.com/security no
Antavo Loyalty Management Platform https://www.hacktify.eu/en/public-programs/ yes
Apache https://www.apache.org/security/ yes
Apache httpd https://www.apache.org/security/ yes
Apparmor https://www.apparmor.com/About/Security/Disclosure/ no
Appcelerator https://www.appcelerator.com/responsible-disclosure-of-security-vulnerabilities/ no
Apple https://developer.apple.com/security-bounty/ yes
Appoptics https://www.appoptics.com/security no
Appsmith https://docs.appsmith.com/product/security no
Apptentive https://www.apptentive.com/contact no
Aptible https://www.aptible.com/legal/responsible-disclosure no
Aqua Security https://www.aquasec.com/trust/security/responsible-disclosure-program/ yes
Aragon https://blog.aragon.org/aragon-network-bug-bounty/ yes
Arduino https://www.arduino.cc/en/Main/Security no
Ark https://ark.io/blog/ark-development-and-security-bounty-program-arkio-blog yes
Arkose Labs https://bugcrowd.com/arkose-labs yes
Arlo - Cash Rewards Program https://bugcrowd.com/arlo yes
Arlo - Kudos Program https://bugcrowd.com/arlokudos no
Arm https://developer.arm.com/support/arm-security-updates/report-security-vulnerabilities no
Artsy https://www.artsy.net/security yes
Aruba Networks https://bugcrowd.com/aruba-public yes
Asana https://asana.com/bounty yes
Ashby https://www.ashbyhq.com/resources/vulnerability-disclosure no
Assuring Medical Apps https://digitalhealthcompliance.com/disclosure-en/ yes
Asterisk https://wiki.asterisk.org/wiki/display/AST/Asterisk+Bug+Bounties yes
Athento https://athento.zendesk.com/hc/es/articles/360010484720 no
Atlassian https://bugcrowd.com/atlassian yes
Atlassian - Opsgenie https://bugcrowd.com/opsgenie yes
Audere https://auderenow.org/security no
Audi https://www.audi.de/de/brand/de/kontakt-und-haendler.html#layer=/de/brand/de/neuwagen/layer/kontakt-audi-cyber-security.html no
Augur https://augur.net/blog/v2-bug-bounty/ yes
Australia Post https://auspost.com.au/about-us/about-our-site/responsible-disclosure
Australian Government Department of Health https://www.health.gov.au/using-our-websites/vulnerability-disclosure-policy no
Auth0 https://auth0.com/responsible-disclosure-policy/ no
Autodesk https://www.autodesk.com/trust/incident-response no
Autoklose https://autoklose.com/vulnerability-disclosure-program/ no
Automattic https://hackerone.com/automattic?type=team no
Automox https://www.automox.com/security/responsible-disclosure yes
Auvik https://www.auvik.com/disclosure-policy.html
Avalara https://www.avalara.com/us/en/legal/responsible-disclosure.html no
Avanade https://www.avanade.com/en/about-avanade/approach/trust-center/responsible-disclosure no
Avast! https://www.avast.com/bug-bounty yes
Aves Netsec https://www.avesnetsec.com/security no
Avira https://www.avira.com/en/support-vulnerability yes
Axiommsl https://www.axiomsl.com/responsible-disclosure/ no
Axis Bank https://www.axisbank.com/docs/default-source/default-document-library/responsible-disclosure-policy.pdf no
Axon https://www.axon.com/penetration-testing--vulnerability-disclosure no
Ayden https://www.adyen.help/hc/en-us/articles/115001187330-How-do-I-report-a-possible-security-issue-to-Adyen no
Ayers Rock Resort https://www.ayersrockresort.com.au/terms-and-conditions/security no
Azimo https://azimo.com/en/lp/responsible-disclosure yes
Aztech https://kylaconnect.com/vulnerability-disclosure-policy/ no
BASF https://www.basf.com/global/en/legal/responsible-disclosure-statement.html no
BBC https://www.bbc.com/backstage/security-disclosure-policy/ no
BD https://cybersecurity.bd.com/vulnerability-disclosures no
BMW https://www.bmwgroup.com/en/general/Security.html no
Babylon https://www.babylonhealth.com/us/responsible-disclosure-policy no
Backblaze https://www.backblaze.com/security.html yes
Badoo https://hackerone.com/badoo yes
Baker Donelson https://www.bakerdonelson.com/responsibledisclosure no
Bank of America https://www.bankofamerica.com/security-center/report-suspicious-communications/ no
BankID https://www.bankid.com/en/disclosure no
BankSA https://www.banksa.com.au/online-services/security-centre/responsible-disclosure no
Barco https://www.barco.com/en/about-barco/legal/responsible-disclosure no
Barracuda Networks https://bugcrowd.com/barracuda no
Base https://www.zendesk.com/company/policies-procedures/responsible-disclosure-policy/ no
Basecamp https://basecamp.com/about/policies/security/response no
Basware https://www.basware.com/en-en/footer/responsible-disclosure/ no
Baxter https://www.baxter.com/product-security no
Bazaarvoice https://www.bazaarvoice.com/legal/vulnerability-disclosure-policy/ no
Beanstalk https://support.beanstalkapp.com/article/890-responsible-disclosure-policy no
Beckhoff https://infosys.beckhoff.com/english.php?content=../content/1033/ipc_security/9007202382327691.html&id= no
Beckman Coulter https://www.beckmancoulter.com/en/about-beckman-coulter/product-security no
Belkin https://www.belkin.com/us/security/ no
Bentley https://www.bentley.com/legal/bug-bounty-report/ yes
Best Buy https://www.bestbuy.com/site/help-topics/responsible-disclosure/pcmcat1584549036018.c?id=pcmcat1584549036018 no
Better https://bugcrowd.com/better yes
Beyond Security https://www.beyondsecurity.com/ssd.html yes
Beyond Trust https://www.beyondtrust.com/disclosure no
Bigbank https://bugcrowd.com/bigbank no
Billogram https://billogram.zendesk.com/hc/en-us/articles/360011911300- no
Bime https://www.zendesk.com/company/policies-procedures/#responsible-disclosure-policy yes
Binance https://bugcrowd.com/binance yes
Binder https://binder.works/responsible-disclosure-program/ no
Bing https://www.microsoft.com/en-us/msrc/bounty?rtc=1 no
Bishop Fox https://www.bishopfox.com/vulnerability-disclosure-policy/ no
BitDiscovery https://bugcrowd.com/bitdiscovery no
BitMEX https://www.bitmex.com/app/security yes
BitWall https://firebounty.com/520-bitwall-security no
Bitcoin Core https://github.com/bitcoin/bitcoin/security/policy no
Bitcoin Gold https://github.com/BTCGPU/Developer-Portal/blob/master/responsible-disclosure.md yes
Bitcoin.de https://www.bitcoin.de/en/bug-bounty no
Bitdefender https://bugcrowd.com/bitdefender yes
Bitdefender Box v2 https://bugcrowd.com/bitdefenderbox2 yes
Bitgo https://www.bitgo.com/bug-bounty yes
Bitpay https://support.bitpay.com/hc/en-us/articles/204229369-Does-BitPay-have-a-bug-bounty-program- yes
Bitski https://www.bitski.com/bounty/ yes
Bitsoffreedom https://www.bitsoffreedom.nl/coordinated-vulnerability-disclosure-en/ yes
Bitwala https://www.bitwala.com/security/ yes
Bizmerlin https://www.bizmerlin.com/responsible-disclosure-policy/ no
Blackbaud https://www.blackbaud.com/security/responsible-disclosure no
Blackberry https://www.blackberry.com/us/en/services/blackberry-product-security-incident-response no
Blackboard https://help.blackboard.com/Product_Security no
Blade Storm https://bladestorm.zendesk.com/hc/en-us/articles/360010393497-Bug-Bounty-Program yes
Blend https://bugcrowd.com/blend-vdp no
Blinkforhome https://blinkforhome.com/pages/responsible-disclosure-policy?locale=en no
Block Sender https://blocksender.io/vulnerability-disclosure-policy/ no
Blockchain Technology Research Innovations Corporation https://www.btric.org/legal/security/ no
Blockfi https://blockfi.com/security/ no
Blogger https://www.google.com/about/appsecurity/reward-program/ yes
Blue Canvas https://bluecanvas.io/report-vulnerability no
Blue Jeans Network https://bugcrowd.com/bluejeans no
Bluehost https://bugcrowd.com/endurance-bluehost no
Bluescape https://www.bluescape.com/vulnerability-disclosure-policy/ no
Board of Governors of the Federal Reserve https://www.federalreserve.gov/vulnerability-disclosure-policy no
BoardGameGeek https://boardgamegeek.com/responsible_disclosure_policy no
Boeing https://www.boeing.com/principles/ethics-and-compliance.page no
Boozt Fashion https://bugcrowd.com/boozt-og yes
Borealis https://www.borealisgroup.com/legal/responsible-disclosure no
Bosch https://psirt.bosch.com/bosch-responsible-disclosure-policy/ no
Bose https://global.bose.com/en_us/product_security_vulnerability_response.html yes
Boston Scientific https://www.bostonscientific.com/en-US/customer-service/product-security/responsible-disclosure.html no
Box https://www.box.com/about-us/security/ no
Braintree https://www.braintreepayments.com/developers/disclosure no
Brandcast https://support.brandcast.com/en/articles/990526-security-disclosure no
Brave https://hackerone.com/brave?view_policy=true yes
BringYour https://bringyour.com/vdp no
Brisk Infosec https://www.briskinfosec.com/responsibledisclosure no
British Gas https://www.britishgas.co.uk/global-maintenance/responsible-disclosure.html no
British Gas Evolve https://www.britishgasevolve.co.uk/responsible-disclosure no
Buddy https://buddy.works/disclosure-policy no
Buffer https://buffer.com/legal#security no
BugPoC https://bugcrowd.com/bugpoc-mbb yes
Bugcrowd https://bugcrowd.com/bugcrowd yes
Bugify https://bugify.com/security no
Bugsnag https://docs.bugsnag.com/security/responsible-disclosure/ no
Buildxact https://www.buildxact.com.au/responsible-disclosure/ no
Buku https://buku.io/en/security/ no
Bunq https://www.bunq.com/assets/media/legal/en/20161114_Responsible_Disclosure_Policy_EN.pdf yes
Bynder https://www.bynder.com/en/legal/responsible-disclosure-policy/ no
Bytedance https://security.bytedance.com/media/score-standard/Vulnerability_Rewards_Program.pdf yes
CERT-In https://www.cert-in.org.in/PDF/Vul_Report.pdf no
CERT/CC https://vuls.cert.org/confluence/display/Wiki/Vulnerability+Disclosure+Policy no
CISA https://www.cisa.gov/coordinated-vulnerability-disclosure-process no
CNN Store https://cnn.zendesk.com/hc/en-us/articles/115005570566-Responsible-Disclosure-of-Security-Vulnerabilities- no
CNote https://www.mycnote.com/vulnerability-disclosure-program/ no
Caffeine https://bugcrowd.com/caffeine yes
Campaign Monitor https://www.campaignmonitor.com/trust/report-a-vulnerability/ yes
Canva https://www.canva.com/security/bug-bounty/ yes
Capital One https://www.capitalone.com/digital/responsible-disclosure/ no
Carbon Black https://www.carbonblack.com/legal/reporting-security-vulnerability/ no
CaresSource https://www.caresource.com/about-us/legal/responsible-disclosure-statement/ no
Carestream https://www.carestream.com/en/us/services-and-support/cybersecurity-and-privacy no
Carrier https://www.corporate.carrier.com/contact-us/ no
Castle Gate IT https://www.castlegateit.co.uk/docs/ethical-policy.pdf no
Catawiki https://www.catawiki.com/conditions/responsible-disclosure.pdf no
Caterpillar https://www.cat.com/en_US/support/maintenance/c/report-potential-information-security-vulnerabilities.html no
Centers for Medicare & Medicaid Services https://www.cms.gov/Research-Statistics-Data-and-Systems/CMS-Information-Technology/CIO-Directives-and-Policies/Downloads/CMS-Vulnerability-Disclosure-Policy.pdf no
Centers for Medicare and Medicaid Services https://www.cms.gov/Research-Statistics-Data-and-Systems/CMS-Information-Technology/CIO-Directives-and-Policies/Downloads/CMS-Vulnerability-Disclosure-Policy.pdf no
Central Bank https://www.centralbank.net/personal/security/responsible-disclosure/ no
Centrica https://www.centrica.com/site-tools/security/ no
Centrify https://bugcrowd.com/centrify yes
ChainRift https://medium.com/chainrift/chainrift-launches-bug-bounty-program-6255eb2d518d yes
Chainlink https://hackerone.com/chainlink yes
Chalk https://www.chalk.com/security/ no
Chameleon https://www.trychameleon.com/security/disclosure yes
Channable https://www.channable.com/bug-bounty/ no
Chargify https://www.chargify.com/security/ no
Chartio https://chartio.com/product/responsible-disclosure/ no
Chase https://responsibledisclosure.jpmorganchase.com/hc/en-us no
Check https://www.federacy.com/check yes
Choice Hotel https://www.choicehotels.com/legal/responsible-disclosure no
Circ.lu https://www.circl.lu/pub/responsible-vulnerability-disclosure/ no
CircleCi https://circleci.com/security/ no
Circonus https://www.circonus.com/security/disclosure/ no
Cisco https://tools.cisco.com/security/center/resources/security_vulnerability_policy.html no
Cisco Meraki https://bugcrowd.com/ciscomeraki yes
Citigroup https://online.citi.com/US/JRS/pands/detail.do?ID=ReportingVulnerability no
Citrix https://www.citrix.com/about/trust-center/vulnerability-process.html no
City-Data.com http://www.city-data.com/bug-bounty.html yes
Clario https://hackerone.com/clario yes
Claromentis https://www.claromentis.com/responsible-disclosure-policy/ no
Classdojo https://www.classdojo.com/securitydisclosureprogram/ yes
Clause https://clause.io/security yes
Clean Email https://clean.email/vdp no
Clenergy https://clenergy.com/de/cyber-security-policy/?lang=en yes
Cleverly https://cleverly.ai/responsible-disclosure-program/ no
ClimbingTree https://www.climbingtree.nl/responsibledisclosure.php?language=en no
Clipperz https://clipperz.is/security_privacy/responsible_disclosure_policy/ no
Clocktimizer https://www.clocktimizer.com/about/responsible-disclosure/ no
Cloud9 IDE https://c9.io/security no
CloudCannon https://cloudcannon.com/bug-bounty/ yes
CloudFlare https://www.cloudflare.com/en-gb/disclosure/ no
Cloudapp https://support.getcloudapp.com/article/260-responsible-disclosure-report-found-vulnerabilities no
Cloudbees https://www.cloudbees.com/security-policy no
Cloudera https://www.cloudera.com/contact-us/security.html no
Cloudinary https://bugcrowd.com/cloudinary yes
Cloudreach https://www.cloudreach.com/en/legal/vulnerability-disclosure-notice/ no
Cloudways https://bugcrowd.com/cloudways yes
ClubCollect https://www.clubcollect.com/en/responsible-disclosure/ no
ClubHouse https://clubhouse.io/disclosure/ no
Co-Operative bank https://www.co-operativebank.co.uk/global/security/responsible-security-disclosure no
Coalfire https://www.coalfire.com/vulnerability-disclosure-policy no
Cobalt https://cobalt.io/security/practices no
Cobu https://intercom.help/cobu/en/articles/4342104-member-agreement no
Cockroach Labs https://www.cockroachlabs.com/security/responsible-disclosure-policy/ no
Code Climate https://codeclimate.com/security no
Coder https://www.coder.com/security/policy no
Cofense https://cofense.com/responsible-disclosure/ no
Coffee & Bagel Brands https://www.coffeeandbagels.com/responsible-disclosure/ no
Coin Wallet https://coinapp.zendesk.com/hc/en-us/articles/115001730468-Does-CoinSpace-have-a-bug-bounty-program- yes
CoinJar https://www.coinjar.com/bounty yes
Coinbase https://coinbase.com/whitehat yes
Coinpayments https://www.coinpayments.net/help-bug-bounty yes
Cointracker https://www.cointracker.io/security yes
Comcast https://my.xfinity.com/vulnerabilityreport no
Commodity Futures Trading Commission https://www.cftc.gov/vulnerability-disclosure-policy no
Commonsware https://commonsware.com/bounty.html no
Compass https://www.compass.com/legal/responsible-disclosure/ no
Compose https://www.compose.com/security no
Conclusion https://www.conclusion.nl/kleine-lettertjes/responsible-disclosure no
Concrete5 https://www.concrete5.org/developers/security no
Constant Contact https://bugcrowd.com/constantcontact no
Consumer Financial Protection Bureau https://www.cfpb.gov/vulnerability-disclosure-policy no
Consumer Product Safety Commission https://www.cpsc.gov/vulnerability-disclosure-policy no
Contentful https://www.contentful.com/security/ no
Contrast Security https://www.contrastsecurity.com/disclosure-policy no
ConvertKit https://bugcrowd.com/convertkit-vdp no
Copper https://hackerone.com/copper no
CoreOS https://coreos.com/security/disclosure/ no
Council of European National Top-Level Domain Registries https://www.centr.org/responsible-disclosure-policy.html no
Council of the Inspectors General on Integrity and Efficiency https://www.ignet.gov/vulnerability-disclosure-policy no
Countly https://count.ly/.well-known/security.txt
Coupa https://success.coupa.com/Trust/Security_Policies/02_Vulnerability_Reporting_Policy no
Court Services and Offender Supervision Agency https://www.csosa.gov/vulnerability-disclosure-policy no
CoverMyMeds https://www.covermymeds.com/main/about/privacy/responsible-disclosure-program/ no
Cox.com https://www.cox.com/aboutus/policies/cox-security-responsible-disclosure-policy.html no
Cozy https://cozy.co/security-and-privacy/ no
Craigslist https://www.craigslist.org/contact?step=form&reqType=security no
Crashtest Security https://crashtest-security.com/responsible-disclosure/ no
Credit Karma https://bugcrowd.com/creditkarma yes
Cruise https://www.getcruise.com/security no
Curl https://hackerone.com/curl yes
Currencycloud https://www.currencycloud.com/legal/responsible-disclosure/ no
Customer Insight https://customerinsight.ca/CI/security-statement/ no
Customer.io https://customer.io/legal/reporting-vulnerability/ no
Cvent https://www.cvent.com/en/event-management-software/vulnerability-disclosure-program no
Cyber Sprint https://www.cybersprint.com/responsible-disclosure/ no
Cybermarqt https://cybermarqt.com/responsible-disclosure no
Cybrary https://www.cybrary.it/info/responsible-disclosure-program/ no
DC.Gov https://octo.dc.gov/publication/responsible-disclosure-policy no
DC3 https://www.dc3.mil/Vulnerability-Disclosure/Vulnerability-Disclosure-Program-VDP/ no
DJI https://security.dji.com/policy?lang=en_US yes
DNN Corporation https://www.dnnsoftware.com/platform/share/bug-reporting no
DNSimple https://dnsimple.com/security no
DPD https://getdpd.com/security/ yes
Dailymotion https://yeswehack.com/programs/dailymotion-public-bug-bounty yes
Daimler https://www.daimler.com/whitehat/ no
Danske Bank https://danskebank.com/responsible-disclosure no
Dassault Systemes SE (3DS) https://www.3ds.com/vulnerability-reporting/ no
Dato Capital https://en.datocapital.com/report-security-issue.html no
DeNederlandscheBank https://www.dnb.nl/en/responsible-disclosure/index.jsp yes
Debian Security Tracker http://www.debian.org/Bugs/ no
Debricked https://debricked.com/report-a-vulnerability/ yes
Decos https://www.decos.com/en/security no
Decred https://bounty.decred.org/ yes
DefectDojo https://hackerone.com/defectdojo no
Defense Nuclear Facilities Safety Board https://www.dnfsb.gov/vulnerability-disclosure-policy no
Defibox https://support.newdex.net/hc/en-us/articles/360046715092-Defibox-launches-bug-bounty-program-officially yes
Definity Inc. https://definityinc.com/bug-bounty-program/ yes
Delaware Consulting https://www.delawareconsulting.com/en-us/about-us/responsible-disclosure no
Dell Technologies Application Bug Bounty https://bugcrowd.com/dell-com yes
Dell Technologies' Products Bug Bounty Program https://bugcrowd.com/dell-product yes
Deltatre https://www.deltatre.com/coordinated-vulnerability-disclosure no
Democracy Live https://democracylive.com/disclosure-policy/ no
Denali Commission https://www.denali.gov/vulnerability-disclosure-policy no
Dentrix https://www.dentrix.com/support/data-security/bug-bounty-program yes
Dentsu https://www.dentsu.com/uk/en/policies/responsible-disclosure-policy no
Department Of Defense https://hackerone.com/deptofdefense no
Department of Commerce https://www.doc.gov/vulnerability-disclosure-policy no
Department of Education https://www.ed.gov/vulnerability-disclosure-policy no
Department of Health and Human Services https://www.hhs.gov/vulnerability-disclosure-policy no
Department of Homeland Security https://www.dhs.gov/vulnerability-disclosure-policy no
Department of Housing and Urban Development https://www.hud.gov/vulnerability-disclosure-policy no
Department of Justice https://www.justice.gov/vulnerability-disclosure-policy no
Department of Labor https://www.dol.gov/vulnerability-disclosure-policy no
Department of State https://www.state.gov/vulnerability-disclosure-policy/ no
Department of Transportation https://www.dot.gov/vulnerability-disclosure-policy no
Department of Veterans Affairs https://www.va.gov/vulnerability-disclosure-policy no
Department of the Interior https://www.doi.gov/vulnerability-disclosure-policy no
Department of the Treasury https://www.treasury.gov/vulnerability-disclosure-policy no
Deps https://www.deps.co/security/ no
Deputy https://www.deputy.com/terms/responsible-disclosure-safe-harbor-policy no
Deribit https://www.deribit.com/pages/information/bug-bounty-program yes
Desjardins https://www.desjardins.com/ca/security/report-potential-vulnerability/index.jsp no
DeskPro https://www.deskpro.com/security/responsible-disclosure/ yes
Detectify https://detectify.com/responsible-disclosure no
Deutsche Bank https://www.db.com/legal-resources/responsible-disclosure-process no
Deutsche Telekom https://www.telekom.com/en/corporate-responsibility/data-protection-data-security/security/details/closing-security-gaps-360054 yes
Devo https://www.devo.com/responsible-vulnerability-disclosure-program/ no
Digital Asset https://www.digitalasset.com/responsible-disclosure no
DigitalOcean https://hackerone.com/digitalocean yes
Directly https://bugcrowd.com/directly yes
Discourse https://hackerone.com/discourse yes
Discover Financial Services https://discover.responsibledisclosure.com/hc/en-us no
District of Columbia Government https://octo.dc.gov/sites/default/files/dc/sites/octo/publication/attachments/Responsible%20Disclosure%20Policy%20.pdf no
Docker https://www.docker.com/legal/security
Dominion Voting Systems https://www.dominionvoting.com/coordinated-vulnerability-disclosure-policy/ no
Domino's https://dominos.responsibledisclosure.com/hc/en-us no
Dozuki https://help.dozuki.com/Info/Responsible_Disclosure yes
DragonEx https://dragonex.zendesk.com/hc/en-us/articles/360036938832-BUG-Bounty-Program yes
Dream11 https://www.dream11.com/security/rvdp no
Drexel University https://drexel.edu/it/security/services-processes/bug-bounty/ no
Droom https://droom.in/bugbounty no
Drugs.com https://www.drugs.com/support/responsible-disclosure-policy.html no
Drupal https://www.drupal.org/drupal-security-team no
Dualog https://www.dualog.com/legal/vulnerability-disclosure-program no
DuckDuckGo https://hackerone.com/duckduckgo no
Duke Health https://security.duke.edu/policies/responsible-disclosure no
Duo https://duo.com/support/security-and-reliability/security-response no
Duo Security https://duo.com/support/security-and-reliability/security-response
EC-Council https://www.eccouncil.org/bug-bounty/ no
ENS https://docs.ens.domains/bug-bounty-program yes
Early Warning https://www.earlywarning.com/responsible-disclosure-program no
Easycollect Services https://easycollectservices.com/responsible-disclosure/ no
Eclipse http://www.eclipse.org/security/ no
Ecobee https://hackerone.com/ecobee no
Edelman Financial Engines https://www.edelmanfinancialengines.com/vulnerability-disclosure no
Edwards https://www.edwards.com/devices/support/product-security no
Eero https://bugcrowd.com/eero no
Eggy https://eggy.com.au/vulnerability-disclosure/ no
Election Assistance Commission https://www.eac.gov/vulnerability-disclosure-policy no
Election Systems & Software https://www.essvote.com/wp-content/uploads/2020/08/ESS_vulnerability_disclosure_policy.pdf no
Electron https://github.com/electron/electron/blob/main/SECURITY.md
Electronic Arts https://www.ea.com/security/disclosure no
Electronic Frontier Foundation https://www.eff.org/security no
Elektra Labs https://www.elektralabs.com/security no
Eligible https://eligible.com/responsible_disclosure_program yes
Elive https://www.elvie.com/security-research-and-responsible-disclosure no
Ellucian https://www.ellucian.com/responsible-disclosure no
Ember.js https://emberjs.com/security/ no
Emma https://myemma.com/trust/report-a-vulnerability/ yes
Eneco Group https://www.eneco.com/responsible-disclosure/ no
Envato https://webuild.envato.com/helpful-hacker/ no
Environmental Protection Agency https://www.epa.gov/vulnerability-disclosure-policy no
Envoy https://github.com/envoyproxy/envoy/blob/main/SECURITY.md no
Equal Employment Opportunity Commission https://www.eeoc.gov/vulnerability-disclosure-policy no
Equifax https://hackerone.com/equifax no
Erasmus University Rotterdam https://www.eur.nl/en/campus/locations/campus-woudestein/security-safety/information-security/responsible-disclosure no
Eset https://www.eset.com/int/security-vulnerability-reporting/ yes
Ethereum Foundation https://bounty.ethereum.org/ yes
Etherscan https://etherscan.io/bugbounty yes
Etsy https://bugcrowd.com/etsy yes
Eurid https://eurid.eu/lv/other-infomation/eurid-responsible-disclosure-policy/ yes
Event Espresso https://eventespresso.com/report-a-security-vulnerability/ no
Eventbrite http://www.eventbrite.com/security/ no
Evernote https://evernote.com/security/report-issue no
Exness https://hackerone.com/exness yes
Expatistan https://www.expatistan.com/security no
Export-Import Bank of the United States https://www.exim.gov/vulnerability-disclosure-policy no
ExpressVPN https://bugcrowd.com/expressvpn yes
F Secure https://www.f-secure.com/en/business/programs/vulnerability-reward-program yes
F-Secure https://labs.f-secure.com/vulnerability-disclosure-policy/ no
F5 Networks https://support.f5.com/csp/article/K4602 no
FFmpeg http://www.ffmpeg.org/security.html no
FIS https://bugcrowd.com/fis yes
FUSION https://www.fusion.org/developers/bug-bounty#bugs yes
Facebook https://www.facebook.com/whitehat yes
Fair https://www.fair.com/bug-bounty yes
FanDuel https://www.fanduel.com/security yes
Fannie Mae https://www.fanniemae.com/about-us/reporting-technology-vulnerability no
Farm Credit Administration https://www.fca.gov/vulnerability-disclosure-policy no
Farm Credit System Insurance Corporation https://www.fcsic.gov/vulnerability-disclosure-policy no
Farmbot https://developer.farm.bot/docs/responsible-disclosure-of-security-vulnerabilities no
FastMail https://www.fastmail.com/about/bugbounty.html yes
Fastly https://www.fastly.com/security/report-security-issue no
Favor https://favordelivery.com/security no
Federacy https://www.federacy.com/federacy yes
Federal Communications Commission https://www.fcc.gov/vulnerability-disclosure-policy no
Federal Energy Regulatory Commission https://www.ferc.gov/vulnerability-disclosure-policy no
Federal Housing Finance Agency https://www.fhfa.gov/vulnerability-disclosure-policy no
Federal Labor Relations Authority https://www.flra.gov/vulnerability-disclosure-policy no
Federal Mediation and Conciliation Service https://www.fmcs.gov/vulnerability-disclosure-policy no
Federal Retirement Thrift Investment Board https://www.frtib.gov/vulnerability-disclosure-policy no
Federal Trade Commission https://www.ftc.gov/vulnerability-disclosure-policy no
Ferm Rotterdam https://ferm-rotterdam.nl/nl/responsible-disclosure-statement yes
Fermi Laboratory https://computing.fnal.gov/cybersecurity/vulnerability-disclosure-policy/ no
Fermi National Accelerator Laboratory https://computing.fnal.gov/cybersecurity/vulnerability-disclosure-policy/ no
Fiat Chrysler Automobiles https://bugcrowd.com/fca yes
FileZilla https://hackerone.com/filezilla_h1c no
Filecoin https://security.filecoin.io/bug-bounty/ yes
Files.com https://hackerone.com/files yes
Finder https://www.finder.com.au/vulnerability-disclosure-policy no
Finleap Connect https://connect.finleap.com/responsible-disclosure-statement/ no
Firebase https://g.co/vrp no
Fireeye https://www.fireeye.com/company/security.html no
First https://www.first.org/about/bugs no
Fitbit https://bugcrowd.com/fitbit yes
Flo https://flo.health/responsible-vulnerability-disclosure-program no
Float https://www.float.sg/disclosure no
FloorDAO https://docs.floor.xyz/v/en/protocol/bug-bounty yes
Flow https://flow.com/flow-responsible-disclosure yes
Fluxiom https://www.fluxiom.com/security no
Follow Up Boss https://www.followupboss.com/vulnerability-disclosure-policy no
Fontys https://fontys.edu/About-Fontys-4/Responsible-disclosure.htm no
Forage https://www.theforage.com/security/disclosure no
Forcyd https://www.forcyd.com/responsible-disclosure/ no
Ford https://hackerone.com/ford yes
ForeScout Technologies https://hackerone.com/forescout_technologies yes
Forhosting https://www.forhosting.pro/responsibledisclosure no
Fortiguard https://fortiguard.com/zeroday/responsible-disclosure no
Fountain https://www.fountain.com/security no
Foursquare https://foursquare.com/about/security no
Fox-IT https://www.fox-it.com/en/responsible-disclosure/ no
Foxit https://www.foxitsoftware.com/support/report-security-vulnerabilities.html no
Foxit Software https://www.foxitsoftware.com/support/responsible-disclosure-policy.html no
FoxyCart https://bugcrowd.com/foxycart yes
FranConnect https://www.franconnect.com/vulnerability-disclosure-policy/ no
Frax Finance https://docs.frax.finance/smart-contracts/miscellaneous yes
Free Law Project https://free.law/vulnerability-disclosure-policy/ no
Freelancer https://www.freelancer.com/about/security no
Freshbooks https://www.freshbooks.com/policies/responsible-disclosure no
Freshworks https://www.freshworks.com/security/responsible-disclosure/ no
Frontspin https://www.frontspin.com/vulnerability-disclosure-program/ no
Fuga https://fuga.cloud/responsible-disclosure-policy/ no
Fullstory https://fullstory.responsibledisclosure.com/hc/en-us no
FusionFabric.cloud https://fusionfabriccloud.responsibledisclosure.com/hc/en-us no
G Data https://www.gdata-software.com/vulnerability-disclosure no
GO-JEK https://bugcrowd.com/gojek yes
GSMA https://www.gsma.com/security/gsma-coordinated-vulnerability-disclosure-programme/ no
Gallagher https://security.gallagher.com/en/Responsible-Disclosure-Policy no
Gamma https://www.gamma.nl/klantenservice/veiligheid-privacy/responsible-disclosure yes
Garantibank International https://www.garantibank.eu/about-us/security/responsible-disclosure no
Garmin https://www.garmin.com/en-US/legal/security/ no
Garofalo https://garofalo.zendesk.com/hc/en-us/articles/360034129952-Report-Site-Vulnerabilities no
Gay.Capital https://gay.capital/docs/bugbounty no
Gcore https://gcore.com/bug-bounty-program/ yes
Geckoboard https://support.geckoboard.com/hc/en-us/articles/115007061468-Responsible-Disclosure-Policy no
Gemfury https://fury.co/security no
General Electric https://www.ge.com/security no
General Electric Healthcare https://www.gehealthcare.com/security/cvd no
General Motors Company https://hackerone.com/gm no
General Services Administration https://www.gsa.gov/vulnerability-disclosure-policy no
Geniebelt https://www.letsbuild.com/responsible-disclosure no
Georgia Tech https://policylibrary.gatech.edu/information-technology/responsible-disclosure-policy no
Geotab https://www.geotab.com/security/ no
GetAmbassador https://blog.getambassador.io/security-in-ambassador-a-risk-based-approach-fd24e364ea84 no
GetYourGuide https://www.getyourguide.com/security no
Getbase https://bugbounty.getbase.com/ no
Ghost https://github.com/TryGhost/Ghost/blob/master/SECURITY.md no
Ghostscript https://ghostscript.com/Bug_bounty_program.html yes
Gigamon https://www.gigamon.com/security-disclosure.html no
Gitcoin https://docs.gitcoin.co/mk_securitybounty/ yes
Github https://bounty.github.com/ yes
Gitlab https://about.gitlab.com/security/disclosure/ no
Gitpod https://www.gitpod.io/security/report no
Glance Networks https://ww2.glance.net/privacy-policy/ no
Global https://global.com/bug-bounty-policy/ yes
Golden Section Technology https://www.gstdev.com/responsive-disclosure no
Goldman Sachs https://www.goldmansachs.com/privacy-and-cookies/global-privacy-policy.html yes
Google https://www.google.com/about/appsecurity/ yes
Google Chrome https://www.google.com/about/appsecurity/chrome-rewards/ yes
Google PRP https://www.google.com/about/appsecurity/patch-rewards/index.html yes
Government of Netherlands https://www.government.nl/topics/cybercrime/fighting-cybercrime-in-the-netherlands/responsible-disclosure no
Govtech Singapore https://www.tech.gov.sg/report_vulnerability no
Grab https://hackerone.com/grab yes
Gradle https://github.com/gradle/.github/blob/master/SECURITY.md no
Grafana https://github.com/grafana/bugbounty yes
GreenBone https://www.greenbone.net/en/responsible-disclosure/ no
Grofers https://grofers.com/bug-bounty
Grok Learning https://groklearning.com/policies/security/ no
Group Renault https://group.renault.com/en/vulnerability-disclosure-policy/ no
Groupe Renault https://group.renault.com/en/vulnerability-disclosure-policy/ no
Guardian360 https://www.guardian360.net/coordinated-vulnerability-disclosure/ no
Guilded https://support.guilded.gg/hc/en-us/articles/360039728333-Contact no
Gusto https://bugcrowd.com/gusto yes
HCL https://www.hcltech.com/software/psirt/hcl-software-vulnerability-disclosure-policy no
HDMS https://www1.hdms.com/responsible-vulnerability-disclosure-policy/ no
HID https://www.hidglobal.com/security-center no
HR Partner https://www.hrpartner.io/security.html no
HTC https://www.htc.com/us/terms/product-security/ no
Hack Me! https://bugcrowd.com/hackme no
Hackchecks Infosec Solutions https://hackchecks.in/responsible-disclosure/ no
HackerRank https://docs.google.com/document/d/e/2PACX-1vQnpwaSmghgwwepiui4dqNw3S2LslBM1woAYaTuX6q9KenJ2zAgBpBPivdC8sQs2Gy-FKKuxWJLYwIz/pub no
Harmony http://get.harmonyapp.com/security/ no
Hart InterCivic https://www.hartintercivic.com/wp-content/uploads/HartVulnerabilityDisclosurePolicy_82020.pdf no
Hasbro https://docs.hasbro.com/upload/legal/responsible_disclosure_2020.pdf no
HealthifyMe https://bugcrowd.com/healthifyme no
Hellosign https://www.hellosign.com/trust/security yes
Hermes Parcelnet https://www.myhermes.co.uk/responsible-disclosure-policy no
Heroku https://www.heroku.com/policy/security yes
Hewlett Packard https://www.hpe.com/us/en/services/security-vulnerability.html no
Hewlett Packard Enterprises https://www.hpe.com/us/en/services/security-vulnerability.html no
Hex-Rays https://www.hex-rays.com/bugbounty/ yes
HiddenLayer https://hiddenlayer.com/vulnerability-disclosure-policy/ no
Hillrom https://www.hillrom.com/en/responsible-disclosures/ no
Hindawi https://www.hindawi.com/responsible-disclosure-policy/ no
HitBTC https://hitbtc.com/bug-report yes
Hive Home https://www.hivehome.com/security no
Hiver https://hiverhq.com/disclosure no
Holland Controls https://www.holland-controls.com/responsible-disclosure no
Honeycomb.io https://www.honeycomb.io/bugbountyprogram/ no
Honeywell https://www.honeywell.com/us/en/product-security no
Hootsuite https://hootsuite.com/security/response no
HostFact https://www.hostfact.nl/security/ no
Hostinger https://www.hostinger.com/responsible-disclosure-policy yes
Huawei https://www.huawei.com/en/psirt/report-vulnerabilities no
HubSpot https://bugcrowd.com/hubspot no
Humble Bundle https://bugcrowd.com/humblebundle no
Hunter.io https://hunter.io/security-bounty-program yes
Hyatt https://hackerone.com/hyatt yes
Hyundai https://www.hyundaiusa.com/us/zh/vulnerability-disclosure no
IBM https://hackerone.com/ibm no
IDFC https://www.idfcbank.com/content/dam/idfc/image/security-tips/pdf/Responsible-Disclosure-Program.pdf no
IHC https://www.royalihc.com/en/responsible-disclosure-policy no
IHG https://www.ihg.com/content/us/en/customer-care/privacy-and-cookie-center/responsible-disclosure no
ING NL https://www.ing.nl/de-ing/veilig-bankieren/fraude-melden/meldpunt-kwetsbaarheden/index.html yes
IOTA https://github.com/iotaledger/iota-java/blob/dev/.github/SECURITY.md yes
IPFS https://github.com/ipfs/go-ipfs#security-issues
Ibotta https://bugcrowd.com/ibotta yes
Icann https://www.icann.org/vulnerabilities no
IconFinder https://support.iconfinder.com/en/articles/18178-responsible-disclosure-of-security-vulnerabilities no
Iconloop https://hackerone.com/iconloop_inc yes
Idaho Secretary of State https://voteidaho.gov/vulnerability-disclosure-policy/ no
Idena https://www.idena.io/contribute#contribute-3-1 yes
Illumio https://illumio.responsibledisclosure.com/hc/en-us no
Ilumy https://ilumy.com/cases/responsible-disclosure no
ImmutableSoft https://immutablesoft.github.io/ImmutableEcosystem/ yes
Impero Software https://www.imperosoftware.com/fr/reporting-vulnerabilities/ no
Imperva https://www.imperva.com/legal/responsible-disclosure-policy/ no
InVision https://bugcrowd.com/invision yes
Indeed https://bugcrowd.com/indeed yes
Independer https://www.independer.nl/algemeen/info/responsible-disclosure.aspx yes
Inditex https://hackerone.com/inditex yes
InfStones https://infstones.com/blog/education/introducing-the-blocguardians-bug-bounty-program-654e723bd9afaf003e44fdea yes
Inflectra https://www.inflectra.com/company/responsible-disclosure.aspx no
Infoplus Commerce https://www.infopluscommerce.com/legal/responsible-disclosure-policy no
Informatiebeveiliging https://informatiebeveiliging.nl/ no
Ing https://www.ing.com/ING.com-Security.htm yes
Ingenico https://www.ingenico.com/responsible-disclosure-program no
InnoGames https://hackerone.com/innogames yes
Innovative Emergency Management https://iem.com/privacy/responsible-vulnerability-disclosure-guidelines/ no
Institute of Museum and Library Services https://www.imls.gov/vulnerability-disclosure-policy no
Instructure https://www.instructure.com/canvas/blog/instructures-proven-security-vulnerability-disclosure-program yes
Insulet https://www.myomnipod.com/product-security no
IntegraXor (SCADA) https://www.integraxor.com/integraxor-hmi-scada-bug-bounty-program/ yes
Intel https://www.intel.com/content/www/us/en/security-center/default.html yes
Intercom https://bugcrowd.com/intercom yes
Intermedia https://www.intermedia.net/about-us/vulnerability-disclosure no
Internetwache https://en.internetwache.org/security/ no
Intuo https://www.intuo.io/security no
IpSwitch https://www.ipswitch.com/vulnerability-disclosure-policy no
Iris Automation https://www.irisonboard.com/responsible-disclosure/ no
IronCore Labs https://ironcorelabs.com/trust-center/bug-bounty-program yes
Issuu https://issuu.com/responsible-disclosure no
Iterable https://iterable.com/trust/responsible-disclosure-policy/ no
Ivanti https://www.ivanti.com/support/contact-security no
JCPenny https://www.jcpenney.com/m/responsible-disclosure-program no
JD Services https://jd-services.eu/vdp/ yes
JSOF https://www.jsof-tech.com/vulnerability-disclosure-policy/ no
JT https://business.jtglobal.com/responsible-disclosure/ no
Jackal Protocol https://jackaldao.medium.com/announcement-jackal-bug-bounty-program-31d4e03ab7e2 yes
James Madison Memorial Fellowship Foundation https://www.jamesmadison.gov/vulnerability-disclosure-policy no
Jamf https://www.jamf.com/security/vulnerability-disclosure/ no
Jamieweb https://www.jamieweb.net/contact/ no
Jazz Networks https://www.jazznetworks.com/security/ no
Jefferson Bank https://www.jefferson-bank.com/personal/security/responsible-disclosure/ no
Jenkins https://www.jenkins.io/security/reporting/ no
JetBrains https://www.jetbrains.com/legal/terms/coordinated-disclosure.html yes
Jisc https://www.jisc.ac.uk/contact/vulnerability-disclosure-policy no
John Deere https://www.deere.com/en/digital-security/responsible-disclosure/ no
Johnson & Johnson https://www.productsecurity.jnj.com/ no
Joyus https://joyus.zendesk.com/hc/en-us/articles/115005402923-Responsible-Disclosure-of-Security-Vulnerabilities- no
Jruby https://www.jruby.org/security no
Jumbo Privacy https://bugcrowd.com/jumboprivacy yes
Jumo https://www.jumo.world/responsible-disclosure/ no
Jumpcloud https://jumpcloud.com/vulnerability-disclosure-policy no
JumpleAd https://jumplead.com/about/security yes
Juniper https://www.juniper.net/us/en/security/report-vulnerability/ no
KFC https://kfc.responsibledisclosure.com/hc/en-us no
KISS Investments https://kissinvestments.com/responsible-disclosure/ no
KNB NL https://www.knb.nl/english/responsible-disclosure no
KPN https://www.kpn.com/algemeen/missie-en-privacy-statement/beveiligingskwetsbaarheid/beveiligingslek-melden.htm no
Kadince https://hackerone.com/kadince no
Karbon https://karbonhq.com/security/vulnerability-disclosure no
Kaspersky https://support.kaspersky.com/vulnerability yes
Kayak https://www.kayak.co.in/security no
Kayesa https://www.kaseya.com/legal/vulnerability-disclosure-policy/ no
Keeper Security https://bugcrowd.com/keepersecurity no
Keming Labs https://keminglabs.com/security_disclosure/ no
Kenna Security https://bugcrowd.com/kennasecurity yes
KeyBank https://www.key.com/about/security/privacy-security.jsp no
Kinde https://kinde.com/docs/important-information/vulnerability-disclosure-policy/ no
Kissflow https://kissflow.com/responsible-disclosure/ yes
Kiwa https://www.kiwa.com/en/responsible-disclosure-policy/ no
Klarna https://www.klarna.com/responsible-disclosure/ no
Klenty https://www.klenty.com/responsible-disclosure no
Knowledgeowl https://www.knowledgeowl.com/home/vulnerability-disclosure-policy no
Kore Wireless https://www.korewireless.com/responsible-disclosure-policy no
Kraken https://www.kraken.com/security/bug-bounty yes
Kroger https://www.kroger.com/.well-known/security.txt no
Kubernetes https://kubernetes.io/security yes
Kusama https://guide.kusama.network/docs/en/kusama-bug-bounty no
Kustomer https://www.kustomer.com/policy/disclosure/ no
LINE https://bugbounty.linecorp.com/en/ yes
Lark https://www.larksuite.com/bugbounty no
LastPass https://bugcrowd.com/lastpass yes
LayerZero https://layerzero.gitbook.io/docs/bug-bounty/bug-bounty-program yes
Leantime.io https://leantime.io/responsible-disclosure-policy/ no
Leaseweb https://www.leaseweb.com/security-certifications/responsible-disclosure no
Ledger DonJon https://donjon.ledger.com/bounty/ no
Leetcode https://leetcode.com/bugbounty/ yes
Lego https://www.lego.com/en-nl/legal/notices-and-policies/responsible-disclosure-policy/ no
Leica Biosystems https://www.leicabiosystems.com/about/product-security/ no
Lenova https://www.lenovo.com/us/en/product-security/vulnerability-disclosure-policy no
Letgo https://we.letgo.com/responsible-disclosure-policy no
Letsbuild https://letsbuild.com/responsible-disclosure no
Leverage https://www.lvrg.ai/vdp no
Liberapay https://hackerone.com/liberapay yes
Libra https://hackerone.com/libra yes
Librato https://metrics.librato.com/vulnerability no
Liferay https://www.liferay.com/security no
Light Speed https://www.lightspeedhq.com/security/ no
Lime https://bugcrowd.com/lime yes
Linkedin https://security.linkedin.com/vulnerabilty-disclosure no
Linksys https://www.belkin.com/us/security/ no
Liquid Web https://www.liquidweb.com/about-us/policies/bug-bounty-program/ yes
Lisk https://lisk.io/bug-bounty-program yes
Liveclicker https://www.liveclicker.com/trust/report-a-vulnerability/ yes
Livesport https://bugbounty.livesport.eu/docs/Vulnerability%20Disclosure%20Policy.pdf yes
Livestream https://hackerone.com/livestream yes
Lob https://hackerone.com/lob yes
Local Heroes https://www.localheroes.com/security no
Logentries https://logentries.com/doc/security/ no
LoginRadius https://www.loginradius.com/bug-bounty/ yes
Logitech https://www.logitech.com/en-us/legal/security-vulnerability-reporting.html no
Looker https://looker.com/product/security/disclosure no
Lookout https://www.lookout.com/legal/responsible-disclosure no
Lumosity https://www.lumosity.com/en/legal/responsible_disclosure_policy/ no
Luno https://bugcrowd.com/luno-og yes
Lyft https://www.lyft.com/security yes
M-Files https://www.m-files.com/en/vulnerability-disclosure no
MEV-Boost https://github.com/flashbots/mev-boost/blob/main/SECURITY.md yes
MSV https://shop.msv.com/About/Legal no
MTN Group https://hackerone.com/mtn_group no
MX https://www.mx.com/security-policy no
Magento https://hackerone.com/magento yes
Magic Leap Cloud https://bugcrowd.com/magicleapcloud yes
MagicLeap Device https://bugcrowd.com/magicleapdevice yes
Magix AG http://research.magix.com/ no
Mailchimp https://mailchimp.com/about/security/ no
Mailclark https://mailclark.ai/vdp no
Mailgun https://bugcrowd.com/mailgun yes
Mailstrom https://mailstrom.co/vdp no
Mailtag https://www.mailtag.io/disclosure-policy no
Mailtrack https://mailtrack.io/en/responsible-vulnerability no
Majid Al Futtaim https://www.majidalfuttaim.com/en/responsible-disclosure-policy yes
Maker Ecosystem Growth Holdings https://hackerone.com/makerdao_bbp yes
Malwarebytes https://www.malwarebytes.org/secure/ yes
ManageWP https://managewp.com/white-hat-reward yes
MariaDB https://mariadb.org/about/#security-policy no
Marketo https://documents.marketo.com/legal/notices/responsible-disclosure-policy.pdf no
Marktplaats https://www.marktplaats.nl/i/help/veilig-en-succesvol/responsible-disclosure-program.dot.html yes
Marqeta https://www.marqeta.com/responsible-disclosure no
Marriott https://hackerone.com/marriott no
Marvel https://marvelapp.com/security/ no
Massachusetts Institute of Technology https://bounty.mit.edu/ yes
Mastercard https://bugcrowd.com/mastercard yes
Mastodon https://github.com/mastodon/mastodon/security/policy
Mathworks https://www.mathworks.com/company/aboutus/policies_statements/vulnerability-disclosure-policy.html no
Mattermost https://about.mattermost.com/report-security-issue/ no
McAfee https://www.mcafee.com/enterprise/en-us/threat-center/advanced-threat-research/disclosure.html no
McKinsey https://mckinsey.responsibledisclosure.com/hc/en-us no
Mcgarrybowen http://www.mcgarrybowen.com/Responsible-Disclosure-Policy no
MedISAO https://members.medisao.com/vulnerability_disclosure/ no
MediaTek https://www.mediatek.com/security-contact no
Mediawijzer.net https://www.mediaukkiedagen.nl/responsibledisclosure-en/ no
Medium https://help.medium.com/hc/en-us/articles/213481308-Bug-Bounty-Disclosure-Program yes
Medtronic http://www.medtronic.com/contact-us/index.htm?cmpid=mdt_plc_2015_US_footer_nav_contact_us_mdt_us_legacy_contact_us_form_link no
Meet Fabric https://meetfabric.com/legal/security-policy no
Mega.co.nz https://mega.co.nz/#blog_6 yes
Mercedes-Benz https://www.mercedes-benz.com/en/whitehat/?owda=misc#coordinated-disclosure-guidlines no
Merit Systems Protection Board https://www.mspb.gov/vulnerability-disclosure-policy/ no
Merkle Inc. https://www.merkleinc.com/responsible-disclosure-policy no
Metropolitan Government of Nashville and Davidson County https://www.nashville.gov/sites/default/files/2021-11/ISM-19-Vulnerability-Disclosure-Policy.pdf no
Micro Focus https://www.microfocus.com/support-and-services/report-security/ no
MicroStrategy https://www.microstrategy.com/us/bug-bounty-program yes
Microsoft (Online Services) http://technet.microsoft.com/en-us/security/dn800983 no
Microsoft (bounty programs) http://technet.microsoft.com/en-US/security/dn425036 no
Microweber https://microweber.com/become-contributor no
Millennium Challenge Corporation https://www.mcc.gov/vulnerability-disclosure-policy no
Mimecast https://www.mimecast.com/responsible-disclosure/ no
Mimosa https://mimosa.co/legal/vulnerability no
MindTouch https://mindtouch.com/disclosure no
Mindbody https://company.mindbodyonline.com/security/responsible-disclosure no
Mine https://saymine.com/vulnerability-disclosure no
Ministry of Defense https://www.gov.uk/guidance/report-a-vulnerability-on-an-mod-system no
Ministry of Justice https://mojdigital.blog.gov.uk/vulnerability-disclosure-policy/ no
Mobikwik https://www.mobikwik.com/bug-bounty no
Modern Treasury https://www.federacy.com/modern-treasury yes
Mollie https://www.mollie.com/en/responsible-disclosure no
Monarx https://monarx.zendesk.com/hc/en-us/articles/360040111711-Responsible-Disclosure no
Monetha https://www.monetha.io/bounty yes
Moneybird https://www.moneybird.nl/security/ no
Moneytree KK https://bugcrowd.com/moneytreekkog yes
MongoDB https://www.mongodb.com/security no
Moodle https://docs.moodle.org/dev/Moodle_security_procedures no
Morgan Stanley https://morganstanley.responsibledisclosure.com/hc/en-us no
Morris K. Udall and Stewart L. Udall Foundation https://www.udall.gov/vulnerability-disclosure-policy no
Motorola https://www.motorola.com/us/legal/security-vulnerability no
Mozilla https://www.mozilla.org/en-US/security/bug-bounty/ yes
Mt Pelerin https://www.mtpelerin.com/responsible-disclosure-policy no
MuJS https://mujs.com/security.html yes
Multichain https://docs.multichain.org/security/bug-bounty yes
Mural https://www.mural.co/security/vdp yes
Mvorisicochecker https://www.mvorisicochecker.nl/de/node/1807 no
Myntra http://www.myntra.com/security/whitehat no
Myob https://www.myob.com/au/about/security/report-security-vulnerability no
NBX https://nbxsupport.zendesk.com/hc/en-us/articles/360044264592-NBX-Responsible-Disclosure-Policy no
NCSC UK https://hackerone.com/ncsc_uk no
NCSC-NL https://www.ncsc.nl/security yes
NDS Systems https://www.cyncsoftware.com/responsible-disclosure-policy.php no
NETGEAR Cash Rewards https://bugcrowd.com/netgear yes
NETGEAR Kudos Rewards https://bugcrowd.com/netgearkudos no
NGAHR https://www.ngahr.com/privacy-policies/ no
NOS Comunicações S.A. https://www.nos.pt/institucional/EN/Pages/responsible-disclosure-of-vulnerabilities.aspx no
NOWPayments https://nowpayments.io/doc/NOWPayments_BugBounty_program.pdf yes
NSN Nokia Solutions Networks http://nsn.com/responsible-disclosure no
NWB Bank https://www.nwbbank.com/en/responsible-disclosure yes
NXP https://www.nxp.com/support/support/report-product-security-vulnerabilities:PSIRT no
Namazu http://www.namazu.org/security.html no
Nasdaq https://nasdaq.responsibledisclosure.com/hc/en-us no
Naspers https://bugcrowd.com/naspers no
National Aeronautics and Space Administration https://www.nasa.gov/vulnerability-disclosure-policy no
National Archives and Records Administration https://www.nara.gov/vulnerability-disclosure-policy no
National Australia Bank https://bugcrowd.com/nationalaustraliabankog no
National Capital Planning Commission https://www.ncpc.gov/vulnerability-disclosure-policy no
National Credit Union Administration https://www.ncua.gov/vulnerability-disclosure-policy no
National Cyber Security Center (Netherlands) https://www.ncsc.nl/security yes
National Endowment for the Arts https://www.arts.gov/vulnerability-disclosure-policy no
National Endowment for the Humanities https://www.neh.gov/vulnerability-disclosure-policy no
National Labor Relations Board https://www.nlrb.gov/vulnerability-disclosure-policy no
National Oilwell Varco https://nov.responsibledisclosure.com/hc/en-us no
National Science Foundation https://www.nsf.gov/vulnerability-disclosure-policy no
NautaDutilh https://www.nautadutilh.com/en/responsible-disclosure no
Navcoin https://navcoin.org/en/responsible-disclosure no
Naver Whale http://bugbounty.whale.naver.com yes
Navy Federal https://navyfederal.responsibledisclosure.com/hc/en-us no
Needabreak https://needabreak.com/responsible-disclosure-policy/ no
Neophotonics https://bugcrowd.com/neophotonics yes
Netapp https://security.netapp.com/contact/ no
Netflix https://help.netflix.com/en/node/6657 no
Netskope https://www.netskope.com/vulnerability-disclosure-policy no
New Leaf https://www.newleaf.com/responsible-disclosure-policy/ no
New Seasons Market https://www.newseasonsmarket.com/responsible-disclosure-policy/ no
New York Times Company https://help.nytimes.com/hc/en-us/articles/360051392052-Vulnerability-Disclosure-Policy no
News UK https://www.news.co.uk/responsible-disclosure-policy/ no
Nexcess https://www.nexcess.net/policies/nexcess-bug-bounty/ no
Nexuzhealth https://www.intigriti.com/public/project/uz%20leuven/nexuzhealthwebpacs yes
Nginx https://nginx.org/en/security_advisories.html yes
Nike https://www.nike.com/help/a/responsible-disclosure no
Nitro https://www.gonitro.com/nps/security/updates#vulnerability-bug-bounty-policy no
Nixu https://www.nixu.com/vulnerability-disclosure-policy no
Nokia https://www.nokia.com/responsible-disclosure/ no
Northwestern Mutual https://www.northwesternmutual.com/responsible-disclosure-policy/
Notepad++ https://hackerone.com/notepad-plus-plus no
Notion https://www.notion.so/Responsible-Disclosure-Policy-5f18bb6b86804eaf989c006131778b9c yes
Novocure https://www.novocure.com/novocure-vulnerability-disclosure-process/ no
Nowsecure https://www.nowsecure.com/company/responsible-disclosure-policy/ no
Nuclear Regulatory Commission https://www.nrc.gov/vulnerability-disclosure-policy no
Nuclear Waste Technical Review Board https://www.nwtrb.gov/vulnerability-disclosure-policy no
Nutshell https://www.nutshell.com/security/ no
Nvidia https://www.nvidia.com/object/submit-security-vulnerability.html no
Nykaa https://www.nykaa.com/responsible-disclosure no
OLAcabs https://www.olacabs.com/whitehat yes
ON2IT https://on2it.net/responsible-disclosure/ no
OOCRP https://www.occrp.org/en/responsible-disclosure no
OSLO BORS https://www.oslobors.no/ob_eng/Oslo-Boers/About-Oslo-Boers/Responsible-Disclosure no
OVH https://bountyfactory.io/hunter/submit/program/42 no
OWASP CSRFGuard https://bugcrowd.com/owaspcrsfguard no
OWASP Java Encoder https://bugcrowd.com/owaspjavaencoder no
OWASP Java HTML Sanitizer https://bugcrowd.com/owaspjavasanitizer no
OWASP ZAP https://bugcrowd.com/owaspzap yes
OWNA https://www.owna.com.au/security-policy.html no
Observu https://observu.com/security.php no
Occupational Safety and Health Review Commission https://www.oshrc.gov/vulnerability-disclosure-policy no
Octopus https://bugcrowd.com/octopus-og yes
Offensive Security https://www.offensive-security.com/bug-bounty-program/ yes
Office of Government Ethics https://www.oge.gov/vulnerability-disclosure-policy no
Office of Navajo and Hopi Indian Relocation https://www.onhir.gov/vulnerability-disclosure-policy no
Ohio Secretary of State https://www.ohiosos.gov/vulnerability-disclosure-policy/ no
OkCupid https://www.okcupid.com/security no
Okta https://bugcrowd.com/okta yes
Olark http://www.olark.com/customer/portal/articles/1237352 yes
Olympus https://medical.olympusamerica.com/customer-resources/product-security no
Omise https://hackerone.com/omise yes
Omnipod https://www.myomnipod.com/Coordinated-Disclosure-Process no
Ondeck https://www.ondeck.com/security-policy no
One Identity https://support.oneidentity.com/contact-us/report-security-vulnerability no
One Plus https://security.oneplus.com/noticedetails.html?noticeId=20191565338585128 yes
OneLogin https://www.onelogin.com/security no
OnePageCRM https://www.onepagecrm.com/vulnerability-disclosure/ no
Onfo https://onfo.zendesk.com/hc/en-us/articles/360025769031-Bug-Bounty-Program yes
Online Seminar https://www.onlineseminar.com/security/ yes
Open Source University https://medium.com/the-os-university-blog/os-university-smart-contracts-are-live-edu-token-bug-bounty-reward-awaits-you-27c1de006249 yes
OpenBSD https://www.openbsd.org/security.html no
OpenSSL https://www.openssl.org/community/#securityreports yes
OpenStack https://security.openstack.org/#how-to-report-security-issues-to-openstack no
OpenText http://opentext.com/2/global/company/security-acknowledgements.htm no
Opera https://security.opera.com/report-security-issue/ no
Opslevel https://www.opslevel.com/responsible-disclosure/ no
Optimizely https://bugcrowd.com/optimizely yes
Optum https://www.optum.com/vulnerability.html no
Oracle https://www.oracle.com/africa/corporate/security-practices/assurance/vulnerability/reporting.html no
Orgnostic Inc. https://orgnostic.com/vulnerability-disclosure no
Orion Health https://orionhealth.com/us/support/responsible-disclosure/ no
Orkut http://www.google.com/about/appsecurity/reward-program/ yes
OurFabriq https://www.ourfabriq.com/responsible-disclosure-policy no
Outpost 24 https://outpost24.com/policies/responsible-disclosure no
Overstock https://bugcrowd.com/overstockvdp no
PA Department of State https://www.dos.pa.gov/VotingElections/BEST/Pages/Responsible-Disclosure.aspx no
PC Extreme https://www.pcextreme.com/policies/responsible-disclosure yes
PHP https://bugs.php.net/report.php?bug_type=Security yes
PNC https://www.pnc.com/en/security-privacy/responsible-disclosure-program.html no
PTC https://www.ptc.com/en/documents/security/coordinated-vulnerability-disclosure no
Pagerduty https://www.pagerduty.com/security/disclosure/ no
PagoPA https://www.pagopa.gov.it/security.html no
Paladin Cyber Bug Bounty https://www.federacy.com/paladin-cyber-bug-bounty yes
Palantir https://www.palantir.com/responsible-disclosure/ yes
Palo Alto Networks https://securityadvisories.paloaltonetworks.com/Report no
Panasonic https://www.panasonic.com/global/corporate/product-security/sec/psirt/policy.html no
Pantheon https://bugcrowd.com/pantheon no
Panzura https://panzura.com/support/panzura-security-policy/ no
Parabol https://www.parabol.co/security-disclosure yes
Parity Technologies https://www.parity.io/bug-bounty/ yes
Particle https://www.particle.io/legal/responsible-disclosure/ no
Partnerize https://partnerize.com/en/responsible-disclosure?q=%2Fen%2Fresponsible-disclosure no
PasteCoin https://www.pastecoin.com/bug_bounty yes
Pathao https://pathao.com/bug-bounty/ yes
Patron Technology https://www.patrontechnology.com/security-vulnerability-program no
PayTm https://bugbounty.paytm.com/ yes
Payboy https://payboy.biz/security no
Paychoice https://www.paychoice.com.au/security/#security-researchers no
Payhawk https://payhawk.com/security/disclosure no
Paymill https://developers.paymill.com/guides/security/security-standards no
Paypal https://www.paypal.com/us/webapps/mpp/security-tools/reporting-security-issues yes
Peace Corps https://www.peacecorps.gov/vulnerability-disclosure-policy/ no
Pega https://www.pega.com/responsible-disclosure-policy no
Pellustro https://pellustro.com/responsible-disclosure-policy/ no
Pension Benefit Guaranty Corporation https://www.pbgc.gov/vulnerability-disclosure-policy no
Pentair https://www.pentair.com/en-us/legal/responsible-disclosure.html no
People.ai https://people.ai/security/reporting/ no
Pepperfry https://www.pepperfry.com/whitehat.html no
Perl http://perldoc.perl.org/perlsec.html#SECURITY-VULNERABILITY-CONTACT-INFORMATION yes
Personal Capital https://www.personalcapital.com/responsible-disclosure/ yes
Pexip https://www.pexip.com/vulnerability-disclosure no
Pfizer https://hackerone.com/pfizer no
Philips https://www.philips.com/a-w/security/coordinated-vulnerability-disclosure.html no
Ping https://www.pingidentity.com/en/company/security-at-ping-identity.html yes
Pinterest https://bugcrowd.com/pinterest/ yes
Piwik http://piwik.org/security/ no
Pixelbar https://pixelbar.nl/responsibledisclosure/ no
Pizza Hut https://pizzahut.responsibledisclosure.com/hc/en-us no
PlanetHoster https://bugcrowd.com/planethosterinc yes
Plangrid https://www.plangrid.com/security/ no
Platform161 https://platform161.com/responsible-disclosure/ no
Plex https://support.plex.tv/articles/reporting-security-issues/ no
Plisio https://plisio.net/bug-bounty yes
Plugin Alliance https://www.plugin-alliance.com/en/security.html no
Polar SSL https://tls.mbed.org/bug-bounty-program yes
Poli https://www.polipayments.com/VulnerabilityDisclosurePolicy no
Poly https://support.polycom.com/content/dam/polycom-support/global/documentation/product-vulnerability-disclosure-policy.pdf no
Pon Cat https://www.pon-cat.com/en/responsible-disclosure yes
Pon Holdings https://a-tcontrols.com/responsible-disclosure/ no
Port of Antwerp https://www.portofantwerp.com/en/responsible-disclosure no
PostNL https://www.postnl.nl/en/responsible-disclosure/ no
Postal Regulatory Commission https://www.prc.gov/vulnerability-disclosure-policy no
Postman https://www.postman.com/security/vulnerability-reporting/ no
Postmark https://postmarkapp.com/support/article/779-responsible-disclosure-policy no
Postmates https://hackerone.com/postmates yes
PowerSchool https://www.powerschool.com/security/responsible-disclosure-program/ no
Practo https://www.practo.com/company/responsible-disclosure-policy no
Predica https://www.predicagroup.com/cvd/ no
Prezi https://bugbounty.prezi.com/ yes
Priceline https://hackerone.com/priceline yes
Privacy and Civil Liberties Oversight Board https://www.pclob.gov/vulnerability-disclosure-policy no
Productboard https://www.productboard.com/product/security/#application-security yes
Proof Of Humanity https://github.com/Proof-Of-Humanity/Proof-Of-Humanity/issues/54 yes
Proofpoint https://www.proofpoint.com/us/security no
ProtonMail https://protonmail.com/blog/responsible-vulnerability-disclosure/ yes
Puppet https://puppet.com/blog/responsible-disclosure-of-security-vulnerabilities no
Puppet Labs https://puppet.com/security no
PureVPN https://bugcrowd.com/purevpn yes
Purple WiFi https://purple.ai/responsible-disclosure/ no
PushPushGo https://pushpushgo.com/en/pages/bug-bounty/ no
Pushfor https://pushfor.com/bug-bounty/ yes
Pyrus https://pyrus.com/en/vulnerability-reporting no
Python https://www.python.org/news/security/ yes
QWANT https://yeswehack.com/programs/qwant yes
Qiwi https://www.qiwi.ru/page/hack.action yes
Qmail https://cr.yp.to/qmail/guarantee.html yes
Qoria https://www.qoria.com/vulnerability-disclosure-policy no
Qtrade https://qtrade.io/bug_bounty yes
Qualcomm https://www.qualcomm.com/company/product-security/report-a-bug Yes
Qualys https://www.qualys.com/docs/responsible-disclosure-policy.pdf no
Quandency http://support.quadency.com/en/articles/2869964-bug-bounty-program yes
QuantStamp https://quantstamp.com/legal/responsible-disclosure yes
Quantopian https://hackerone.com/quantopian yes
Queensland Government https://www.qgcio.qld.gov.au/information-on/information-security/responsible-vulnerability-disclosure-statement no
Quest https://support.quest.com/contact-us/report-security-vulnerability no
RSK https://developers.rsk.co/contribute/bug-bounty-program/ yes
Rackspace http://www.rackspace.com/information/legal/rsdp no
Radiometer https://www.radiometer.com/en/about-radiometer/legal/coordinated-vulnerability-disclosure no
Rainfocus https://www.rainfocus.com/vulnerability-disclosure no
Rakuten Group, Inc. https://bugcrowd.com/rakuten-vdp no
Range https://www.range.co/security/bounty yes
RangeMe https://www.rangeme.com/vulnerability_disclosure_program no
Rapid7 https://www.rapid7.com/security/disclosure no
RapidSpike https://www.rapidspike.com/info/vulnerability-disclosure/ no
Rapyd https://bugcrowd.com/rapyd yes
Razorpay https://razorpay.com/responsible-disclosure/ no
RealSelf https://bugcrowd.com/realself yes
Realtor https://www.realtor.com/responsible-disclosure-policy/ no
Recidiviz https://www.federacy.com/recidiviz?tab=Intro
Reclaim.ai https://reclaim.ai/responsible-disclosure no
Recorded Future https://www.recordedfuture.com/security/ no
Recruit CRM https://recruitcrm.io/legal/rcrm-vulnerability-disclosure-program no
Recruitee https://recruitee.com/en/vulnerability no
Recurly https://support.recurly.com/hc/en-us/articles/360024300812-Does-Recurly-have-a-bug-bounty-program- no
Red Gate https://www.red-gate.com/website/legal no
Red Hat https://access.redhat.com/security/team/contact no
RedHat https://access.redhat.com/articles/66234 no
Redbubble https://help.redbubble.com/hc/en-us/articles/214531243-Report-a-Website-Security-Vulnerability no
Reddit http://code.reddit.com/wiki/help/whitehat no
Redox https://bugcrowd.com/redox yes
Redstor https://www.redstor.com/en-us/about/vulnerability-disclosure-policy/ no
Refereum https://hackerone.com/refereum yes
Regions https://www.regions.com/about-regions/privacy-security/vulnerability-disclosure-program no
Relaso http://www.relaso.com/disclosure/ no
Remitano https://security.remitano.com/ yes
RenoFi https://www.federacy.com/renofi yes
Repl.it https://docs.repl.it/misc/security no
Replicated https://www.replicated.com/security/ no
Research Gate https://explore.researchgate.net/display/support/Security+and+vulnerability yes
Resmed https://www.resmed.com/en-us/security/ no
RevenueCat https://www.federacy.com/revenuecat yes
Revolut https://www.revolut.com/responsible-disclosure-program no
Rewind https://rewind.com/legal/vulnerability-disclosure-policy/ no
Ribose https://www.ribose.com/feedback/security no
Ricoh https://www.ricoh.ca/en/about-us/vulnerability-disclosure-policy yes
Riot Games http://www.riotgames.com/riot-games-security yes
Ripe NCC https://www.ripe.net/support/contact/responsible-disclosure-policy no
Ripple https://ripple.com/bug-bounty/ yes
Riskalyze https://www.riskalyze.com/security-response no
Roadie https://roadie.io/security/responsible-disclosure/ no
Robeco https://www.robeco.com/en/responsible-disclosure.html no
Rocket.Chat https://rocket.chat/docs/contributing/security/responsible-disclosure-policy/ no
Rocksurance Solutions https://www.mynameflow.com/vulnerability-disclosure/ no
Rockwell Automation https://www.rockwellautomation.com/en-us/capabilities/industrial-security.html no
Rollbar https://docs.rollbar.com/docs/responsible-disclosure-policy no
Royal Bank of Scotland https://personal.rbs.co.uk/personal/security-centre/responsible-disclosure.html no
Rubrik https://rubrik.responsibledisclosure.com/hc/en-us no
Rust https://www.rust-lang.org/policies/security no
SAP https://wiki.scn.sap.com/wiki/display/PSR/Disclosure+Guidelines+for+SAP+Security+Advisories no
SAP Concur https://bugcrowd.com/concur no
SBAB https://www.sbab.se/1/sidfotsmeny_2/sakerhet/responsible_disclosure.html no
SEC https://www.sec.gov/vulnerability-disclosure-policy no
SEEK https://bugcrowd.com/seek yes
SNS Bank https://www.devolksbank.nl/veiligheid.html yes
Safe Send Returns https://safesendreturns.zendesk.com/hc/en-us/articles/360049940054-Information-Security-Overview no
Sails.js https://sailsjs.com/security no
Sailthru https://www.sailthru.com/trust/report-a-vulnerability/ yes
SalesLoft https://salesloft.com/vulnerability-disclosure-program/ no
Salesflare https://salesflare.com/vdp no
Salesforce https://trust.salesforce.com/en/security/responsible-disclosure-policy/ no
Salestrail https://www.salestrail.io/vulnerability no
Samsara https://www.samsara.com/security no
Samsung https://securityreport.samsung.com no
Samsung Mobile https://security.samsungmobile.com/securityReporting.smsb yes
Samsung SmartTV https://samsungtvbounty.com/ReportBug.aspx yes
Sanity https://www.sanity.io/security no
SaveDroid https://hackerone.com/savedroid yes
Saxo Group https://www.home.saxo/legal/vulnerability-disclosure-policy/vulnerability-disclosure-policy no
ScaleFT https://www.scaleft.com/company/security/ no
Schneider Electric https://www.se.com/ww/en/work/support/cybersecurity/vulnerability-policy.jsp no
Scraping Hub https://scrapinghub.com/responsible-disclosure-policy/ yes
Seagate https://www.seagate.com/legal-privacy/responsible-vulnerability-disclosure-policy/ no
Seal Software https://www.seal-software.com/responsible-disclosure/ no
SecPoint Penetrator https://bugcrowd.com/secpoint yes
SecondStreet https://www.secondstreet.com/product-security-responsible-disclosure-policy no
SecretHub https://secrethub.io/security/responsible-disclosure/ no
Secura https://www.secura.com/ResponsibleDisclosure no
Secure Cyber Future https://www.securecyberfuture.com/responsible-disclosure yes
SecureDrop https://bugcrowd.com/freedomofpress yes
Securitas https://www.securitas.com/en/about-us/responsible-disclosure/ no
Securities and Exchange Commission https://www.sec.gov/vulnerability-disclosure-policy no
Security Innovation https://www.securityinnovation.com/about/security/ no
Segment https://bugcrowd.com/segment yes
Selective Service System https://www.sss.gov/vulnerability-disclosure-policy no
Selify https://sellfy.com/security/ no
Selz https://help.selz.com/article/217-security-escalation yes
Semmle https://hackerone.com/semmle yes
SendSafely https://www.sendsafely.com/security/bug-bounty yes
Sense https://sense.com/vulnerability.html no
Sense of Security https://www.senseofsecurity.com.au/resources/vulnerability-disclosure-policy/ no
Sentropy https://www.sentropy.com/disclosure no
Sentry https://sentry.io/security/ no
SerenityOS https://www.serenityos.org/bounty/ yes
ServiceNow https://www.servicenow.com/company/trust/responsible-disclosure.html no
Setpoint https://www.setpointis.com/responsible-disclosure/ no
Shape Security https://www.shapesecurity.com/report-a-vulnerability yes
Shapeshift https://corp.shapeshift.io/responsible-disclosure-program/ yes
Sharktech https://sharktech.net/responsible-disclosure-policy/ no
Shell https://www.shell.com/about-us/our-values/shell-global-helpline/responsible-disclosure-policy.html no
Shieldox Security LTD https://hackerone.com/shieldox_security no
Shift Crypto https://shiftcrypto.ch/policies/bug-bounty-policy/ no
Shopify https://hackerone.com/shopify yes
Sidefx https://www.sidefx.com/responsible-disclosure-program/ no
Siemens https://new.siemens.com/global/en/products/services/cert/vulnerability-process.html no
Signal https://support.signal.org/hc/en-us/articles/360007320791-How-can-I-report-a-security-vulnerability-
SignalFX https://www.signalfx.com/trust/security/responsible-disclosure yes
Signify https://www.signify.com/global/product-security no
Signup https://signup.com/responsible-disclosure-policy no
Signup.com https://signup.com/responsible-disclosure-policy no
Silvergoldbull https://silvergoldbull.com/bug-bounty/ yes
Simmons Clinic https://www.simmons-clinic.com/legal-responsibledisclosure.html no
Simple https://www.simple.com/policies/security yes
Simplerisk https://www.simplerisk.com/responsible_disclosure_policy no
Simply Business https://www.simplybusiness.com/responsible-disclosure/ no
SiteGround https://www.siteground.com/term/92.htm no
Skiff https://skiff.com/vdp no
SkilledHub https://skilledhub.com/responsible-disclosure-policy/ no
Skoodat https://www.skoodat.com/security no
Skuid http://www.skuidify.com/security no
Sky TV https://skytv.custhelp.com/app/answers/detail/a_id/1797/~/responsible-disclosure-guidelines no
Skylight Digital https://skylight.digital/company/policies/vulnerability-disclosure/ no
Skyscanner https://bugcrowd.com/skyscanner yes
Slack https://slack.com/report-vulnerability yes
Small Business Administration https://www.sba.gov/vulnerability-disclosure-policy no
SmartThings https://bugcrowd.com/smartthings no
Smartling https://help.smartling.com/hc/en-us/articles/360008147833-Bug-Bounty-Policy yes
Smartsheet https://hackerone.com/smartsheet yes
Smiths Medical https://www.smiths-medical.com/company-information/smiths-medical-coordinated-disclosure-statement no
Snyk https://snyk.io/docs/security yes
Social Security Administration https://www.ssa.gov/vulnerability-disclosure-policy no
Socrata https://bugcrowd.com/socrata yes
Solana https://github.com/solana-labs/solana/security/policy yes
SolarEdge https://www.solaredge.com/us/cyber-security-policy yes
SolarWinds https://www.solarwinds.com/information-security/vulnerability-disclosure-policy no
Solidus https://hackerone.com/solidus no
Soluble https://www.soluble.ai/vulnerability-disclosure-policy no
Solvinity https://www.solvinity.com/responsible-disclosure no
Sonatype http://www.sonatype.com/contact/report-a-security-issue no
Sophos https://bugcrowd.com/sophos yes
SoundCloud https://bugcrowd.com/soundcloud yes
Sourcible https://www.sourcible.com/vdp no
South Carolina State Election Commission https://scvotes.gov/vulnerability-disclosure-program
Sphero https://support.sphero.com/article/5drs94lhk5-vulnerability-disclosure-program no
Splashtop https://www.splashtop.com/responsible-disclosure no
Splendid Data https://www.splendiddata.com/responsible-disclosure-policy/ yes
Splitwise https://blog.splitwise.com/about/responsible-disclosure-special-thanks/ no
Splunk https://www.splunk.com/en_us/product-security.html partial
Spokeo https://www.spokeo.com/bug-bounty yes
Spotify https://www.spotify.com/us/bounty/ yes
Spreaker https://www.spreaker.com/security yes
Sprout Social https://bugcrowd.com/sproutsocial no
Sqills https://www.sqills.com/responsible-disclosure-policy/ no
Square https://bugcrowd.com/square yes
Square Open Source https://bugcrowd.com/squareopensource yes
Squid Cache (IBB) https://hackerone.com/ibb-squid-cache yes
St. George https://www.stgeorge.com.au/online-services/security-centre/responsible-disclosure no
Stack Exchange https://stackexchange.com/about/security no
StackPath https://bugcrowd.com/stackpath no
Stackla https://support.stackla.com/hc/en-us/articles/115005937887-Reporting-a-possible-security-vulnerability-to-Stackla no
Staked https://staked.us/bug-bounty/ yes
Standard https://www.standard.com/about-standard/responsible-disclosure-program no
Stanford University https://uit.stanford.edu/security/report-incident no
Stanley Black & Decker https://www.stanleyblackanddecker.com/security no
StarLeaf https://www.starleaf.com/c/bug-bounty-program/ yes
Starbucks https://www.starbucks.com/whitehat yes
Starling Bank Limited https://hackerone.com/starling_bank no
Starlink https://bugcrowd.com/spacex yes
State Farm https://www.statefarm.com/customer-care/privacy-security/security/vulnerability-disclosure-policy no
State of Delaware https://webfiles.dti.delaware.gov/pdfs/pp/Vulnerability%20Disclosure%20Policy.pdf no
State of Minnesota https://mn.gov/mnit/about-mnit/security/securing-the-state/vulnerability-disclosure-program.jsp no
StatusPage.io https://bugcrowd.com/statuspage yes
Stellar https://www.stellar.org/bug-bounty-program/ yes
Strala https://www.strala.com/responsible-disclosure no
Stripe https://stripe.com/docs/security/stripe yes
Stryker https://www.stryker.com/us/en/about/governance/cyber-security.html no
Studo https://studo.com/at/security yes
Substack https://substack.com/vulnerability-disclosure no
SugarCRM https://support.sugarcrm.com/Resources/Security/Bug_Bounty_Program/ no
Summa https://www.summa.eu/nl/responsible-disclosure no
Supabase https://github.com/supabase/supabase/security no
Supersonic Image https://www.supersonicimagine.com/security no
SureVine https://www.surevine.com/responsible-disclosure-policy/ no
Sweatco https://hackerone.com/sweatco_ltd no
Swift https://www.swift.com/contact-us/security no
Swiftype https://swiftype.com/security no
Swiggy https://www.swiggy.com/bug-bounty yes
Swiss National Cyber Security Center (NCSC.ch) https://www.ncsc.admin.ch/ncsc/en/home/infos-fuer/infos-it-spezialisten/themen/schwachstelle-melden.html no
Swisscom https://www.swisscom.ch/en/about/company/portrait/network/security/bug-bounty.html yes
Symantec https://www.symantec.com/security-center/vulnerability-management no
Synack https://synack.responsibledisclosure.com/hc/en-us no
Synk https://support.snyk.io/hc/en-us/articles/360005918418-Snyk-vulnerability-disclosure-program no
Synology https://www.synology.com/de-de/security/bounty_program#scope_and_reward yes
TCL Security Response Center https://src.tcl.com/ no
TD Ameritrade https://www.tdameritrade.com/security/security-vulnerability.page no
TIAA https://tiaa.responsibledisclosure.com/hc/en-us no
TTS https://github.com/18F/vulnerability-disclosure-policy/blob/master/vulnerability-disclosure-policy.md yes
Taco Bell https://tacobell.responsibledisclosure.com/hc/en-us no
Take A Lot https://www.takealot.com/help/responsible-disclosure-policy no
Takeaway.com https://bugcrowd.com/takeaway yes
Talent Wall https://talentwall.io/responsible-disclosure/ no
Tally https://www.meettally.com/rvd/ no
Tapatalk https://tapatalk.com/security.php no
Target https://security.target.com/vdp/ no
Tarsnap https://www.tarsnap.com/bugbounty.html yes
Tealium https://tealium.com/vdp/ no
Teamsnap https://www.teamsnap.com/responsible-disclosure-policy no
TechGig https://www.techgig.com/bugbounty no
TechSmith https://www.techsmith.com/security.html no
Tele2 https://www.tele2.nl/thuis/internet/veilig-internetten/stappenplan/ no
Telefónica Germany https://bugcrowd.com/telefonicavdp no
Telegram https://telegram.org/faq#q-what-if-my-hacker-friend-says-they-could-decipher-telegram-mes yes
Telekom https://www.telekom.com/en/corporate-responsibility/data-protection-data-security/security/security/closing-security-gaps-360054 yes
Telenet https://www.intigriti.com/public/project/telenet/telenet no
Tenable https://www.tenable.com/security/report no
Tencent http://en.security.tencent.com/ yes
Termius https://termius.com/responsible-disclosure no
Terra https://www.terra.money/bugcrowd
Tesla https://bugcrowd.com/tesla yes
The Atlantic https://www.theatlantic.com/responsible-disclosure-policy/ no
The Dutch Security Cluster https://www.thehaguesecuritydelta.com/responsible-disclosure no
The Hut Group https://www.thg.com/bounty
The Pokémon Company https://www.pokemon.com/us/vulnerability-disclosure-program/ no
The Things Network https://www.thethingsnetwork.org/responsible-disclosure no
TheStandard https://www.standard.com/about-standard/responsible-disclosure-program no
Thinkful https://www.thinkful.com/responsible-disclosure/ no
Thumbtack https://help.thumbtack.com/article/responsible-disclosure-policy no
Tibco https://www.tibco.com/security/vulnerability-disclosure-policy no
TicketSwap https://www.ticketswap.com/content/responsible-disclosure no
Ticketcounter https://ticketcounter.eu/security/ no
Tidelift https://tidelift.com/docs/security no
Tidepool https://www.tidepool.org/security/ no
Tinder https://www.gotinder.com/security no
Tokopedia https://bounty.tokopedia.net/rules yes
TomTom https://hackerone.com/tomtom no
TopDesk https://www.topdesk.com/us/responsible-disclosure/ no
TradingView https://www.tradingview.com/bounty/ yes
TransIP https://www.transip.eu/legal-and-security/security
TransferWise https://bugcrowd.com/transferwise yes
Transloadit https://transloadit.com/security/ no
Trello https://bugcrowd.com/trello yes
Trend Micro https://success.trendmicro.com/vulnerability-response no
Trevel https://trevel.com/responsibledisclosure no
Trezor https://trezor.io/security/ yes
Trint Ltd https://hackerone.com/trint no
Trip Advisor https://bugcrowd.com/tripadvisor-vdp no
Tron Foundation https://tron.network/findBug yes
Trovisio https://app.trovisio.com/legal?disclosure=disclosure no
Trustpilot https://hackerone.com/trustpilot yes
Tube8 https://hackerone.com/tube8 yes
Tuenti http://corporate.tuenti.com/en/dev/security no
Tumblr https://tumblr.zendesk.com/hc/en-us/articles/234583348-Bug-Bounty-Program yes
Twilio https://bugcrowd.com/twilio yes
Twintech Solutions https://twintechsolutions.in/security-research/vulnerability-disclosure/ no
Twitch https://www.twitch.tv/p/security no
Twizo https://www.twizo.com/twizo-responsible-disclosure-policy/ no
Typeform https://help.typeform.com/hc/en-us/articles/360029314532-How-to-report-a-security-vulnerability-to-Typeform no
Typo3 https://typo3.org/teams/security/ no
U.S. Department of Energy Office of Scientific and Technical Information https://www.osti.gov/.well-known/security.txt no
U.S. Securities and Exchange Commission https://www.sec.gov/vulnerability-disclosure-policy no
UMA Project https://hackerone.com/uma_project yes
UNDER ARMOUR https://bugcrowd.com/underarmour no
USAA https://bugcrowd.com/usaa yes
Ubiquiti - Aside program to the current at HackerOne https://ui.com/security/ yes
Ubiquiti Networks https://hackerone.com/ui yes
Ubuntu https://ubuntu.com/security/disclosure-policy
Udemy https://support.udemy.com/hc/en-us/articles/229232627-Report-a-Security-Vulnerability yes
UiPath https://hackerone.com/uipath no
Umbraco https://umbraco.com/products/umbraco-cms/security/ no
Unilever https://bugcrowd.com/unilever-vdp no
Unisyn Voting Solutions https://unisynvoting.com/wp-content/uploads/2020/08/Unisyn-Vulnerability-Disclosure_Policy_V-1.0_8.14.2020.pdf no
United Airlines https://www.united.com/web/en-US/content/contact/bugbounty.aspx yes
United Nations https://unite.un.org/content/hall-fame no
United States Access Board https://www.access-board.gov/vulnerability-disclosure-policy no
United States Agency for International Development https://www.usaid.gov/vulnerability-disclosure-policy no
United States Commission on Civil Rights https://www.usccr.gov/vulnerability-disclosure-policy no
United States Department of Agriculture https://www.usda.gov/vulnerability-disclosure-policy no
United States International Trade Commission https://www.usitc.gov/vulnerability-disclosure-policy no
Unity3d https://unity3d.com/fr/security no
Universiteit Leiden https://www.staff.universiteitleiden.nl/binaries/content/assets/ul2staff/ict/responsible-disclosure-eng.pdf no
University of Twente https://www.utwente.nl/en/cyber-safety/responsible/ no
University of York https://www.york.ac.uk/it-services/security/vulnerability-disclosure/ no
Unloq https://unloq.io/security no
Upgrade https://hackerone.com/upgrade no
Upscope https://upscope.io/security/bug-bounty/ no
Upserve https://upserve.com/security/ yes
Upwork https://bugcrowd.com/upwork yes
UsabilityHub https://app.usabilityhub.com/security/responsible_disclosure yes
Ushahidi https://www.ushahidi.com/security no
VHX https://hackerone.com/vhx yes
VI Company https://www.vicompany.nl/legal/responsible-disclosure yes
VICE https://www.vice.com/en_us/page/vice-responsible-disclosure-policy no
VMWare https://www.vmware.com/support/policies/security_response.html no
VPNArea https://vpnarea.com/front/home/bugbounty yes
VRT https://www.vrt.be/en/responsible-disclosure-policy-english-version/ no
VU Security https://www.vusecurity.com/vulnerability-disclosure-policy no
VanMoof https://www.vanmoof.com/en/responsible-disclosure-policy no
Varo Money https://varomoney.responsibledisclosure.com/hc/en-us no
Vdoo https://www.vdoo.com/disclosures no
Veracode https://www.veracode.com/legal-privacy/responsible-disclosure-policy no
Veriff https://www.veriff.com/responsible-disclosure no
Viadeo https://www.viadeo.com/en/securite no
Viator https://bugcrowd.com/viator yes
Vimeo https://hackerone.com/vimeo yes
Vipps AS https://www.vipps.no/sikkerhet/responsible-disclosure-policy/ no
Virtru https://www.virtru.com/responsible-disclosure/ no
Visa https://usa.visa.com/about-visa/vulnerability-disclosure.html no
Visma https://www.visma.com/trust-centre/smb/security-and-privacy/operational/responsible-disclosure/ yes
Vista Entertainment Solutions https://vista.co/responsible-disclosure-policy/ no
Vivy https://hackerone.com/vivy no
Vodafone https://www.vodafone.nl/over-deze-website/privacy-en-disclaimer/report-security-leak.shtml no
Volkis https://www.volkis.com.au/vulnerability-disclosure/ yes
Vonage https://bugcrowd.com/vonage no
Vopak https://www.vopak.com/vopak-responsible-disclosure-policy no
Voys https://www.voys.nl/security-responsible-disclosure/#rd no
Vultr https://www.vultr.com/bug-bounty/ yes
Vyond https://help.vyond.com/hc/en-us/articles/360000497723-How-do-I-Report-a-Security-Vulnerability- no
Vyper https://github.com/vyperlang/vyper/security/policy no
WP Engine https://bugcrowd.com/wpengine no
Wagwalking https://wagwalking.com/responsible-disclosure yes
WalletConnect https://walletconnect.com/.well-known/security.txt yes
Walmart https://corporate.walmart.com/privacy-security yes
Wamba http://corp.wamba.com/en/developer/security/#form yes
Wandera https://www.wandera.com/responsible-disclosure/ no
WeTransfer https://wetransfer.com/legal/disclosure yes
WeVPN https://wevpn.com/responsible-disclosure yes
Wearsafe https://wearsafe.com/wearsafe-vulnerability-disclosure-policy/ no
WebTorrent https://github.com/webtorrent/webtorrent/security/policy no
Webconverger http://webconverger.org/security/ no
Websitebuilder.com https://bugcrowd.com/endurance-builder no
Wedbio https://wedbio.com/report-incident no
Wefact https://www.wefact.nl/security/ yes
Wells Fargo https://www.wellsfargo.com/privacy-security/fraud/responsible-disclosure-program/ no
Western Digital https://www.westerndigital.com/support/productsecurity no
Western Union https://bugcrowd.com/westernunion yes
Westjet https://bugcrowd.com/westjet-disclose no
Whatbox https://whatbox.ca/policies/security yes
Whmcs https://bugcrowd.com/whmcs yes
Wickr https://wickr.com/security/bug-bounty/ yes
Winni https://www.winni.in/bug-bounty no
Wisekey https://www.wisekey.com/vulnerabilities/ no
Woodpecker https://woodpecker.co/vulnerability-disclosure-program/ no
Wordfence https://www.wordfence.com/security/ no
Wordfence Intelligence https://www.wordfence.com/threat-intel/bug-bounty-program/ yes
Wordpress https://wordpress.org/about/security/ no
Workmarket https://www.workmarket.com/security no
Worldline https://worldline.com/en/home/responsible-disclosure-program.html no
Xen Project https://www.xenproject.org/security-policy.html no
Xerox https://www.xerox.com/perl-bin/formeng.pl?form=product_security_information_request_7285 no
Xfinity https://my.xfinity.com/vulnerabilityreport no
Xilinx https://hackerone.com/xilinx no
YATRA https://www.yatra.com/online/bug-bounty no
Yammer https://technet.microsoft.com/en-us/security/dn800983 yes
Yandex https://yandex.com/bugbounty/report/ yes
Yesware https://www.yesware.com/security/ no
You Need a Budget (YNAB) https://bugcrowd.com/ynab yes
YouTube https://g.co/vrp yes
Yum! https://yum.responsibledisclosure.com/hc/en-us no
Z-Cert https://www.z-cert.nl/en/responsible-disclosure-z-cert no
ZEIT https://hackerone.com/zeit no
Zaful https://www.zaful.com/report-security-issues yes
Zapier https://zapier.com/engineering/bug-bounty-program/ yes
Zaplabs https://www.zaplabs.com/docs/Security%20Vulnerability%20Disclosure%20Program.pdf no
Zarx https://www.zarx.co.za/rights/terms-and-conditions no
Zelle https://www.zellepay.com/responsible-disclosure-program no
Zendesk https://www.zendesk.de/company/policies-procedures/responsible-disclosure-policy/ yes
Zero Disclo https://zerodisclo.com/ no
Zerocopter https://www.zerocopter.com/en/responsible-disclosure no
Zeta https://www.zeta.tech/security/ no
Zetetic https://www.zetetic.net/security/ no
Zilliqa https://dev.zilliqa.com/docs/contributors/contribute-bug-bounty/ yes
Zimbra https://wiki.zimbra.com/wiki/Zimbra_Responsible_Disclosure_Policy no
Zoho https://bugbounty.zoho.com/bb/info#guide yes
Zomato https://www.zomato.com/security yes
Zoom https://zoom.us/docs/en-us/vulnerability-disclosure-policy.html yes
Zooz https://developers.paymentsos.com/docs/disclosure-policy.html no
Zscaler https://www.zscaler.com/company/vulnerability-disclosure-program no
Zynga Whitehat https://bugcrowd.com/zynga-vdp no
abantecart.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
abcdefghi.com https://g.co/vrp
acacian.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
accengage.com https://www.airship.com/legal/full-disclosure-security-policy/
accodeing.com https://accodeing.com/security/policy
ace.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
active24.cz https://faq.active24.com/cz/933388-Hl%C3%A1%C5%A1en%C3%AD-bezpe%C4%8Dnostn%C3%ADch-zranitelnost%C3%AD
adaware.com https://www.adaware.com/privacy-policy
adex.network https://www.adex.network/security-policy.txt
admin.amidfamily.net https://g.co/vrp
administrator.de https://administrator.technology/privacy.php
admirable.one https://g.co/vrp
adp.ca https://www.adp.com/about-adp/data-security.aspx
adp.co.uk https://www.adp.com/about-adp/data-security.aspx
adp.com https://www.adp.com/about-adp/data-security.aspx
aeon.to https://xmr.to/security
agepartnership.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
aircrack-ng.org https://aircrack-ng.org/security.html
airship.com https://www.airship.com/legal/full-disclosure-security-policy/
airvpn.org https://airvpn.org/security_policy/
akral.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
aldolat.it https://www.aldolat.it/info/privacy-policy/
aleria.fr https://aleria.fr/legales.php
allegro.pl https://hackerone.com/allegro?view_policy=true
amoCRM https://www.amocrm.com/vulnerability-disclosure-program/ no
amr.net https://www.amr.net/site/privacy-policy
angular-team.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
api.joomla.org https://developer.joomla.org/security.html
api.trello.com https://www.atlassian.com/trust/security/report-a-vulnerability
apnic.net https://www.apnic.net/community/security/apnic-vulnerability-reporting-program/
app.grammarly.com https://hackerone.com/grammarly
applab.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
apps.odoo.com https://www.odoo.com/security-report
apptimize.com https://www.airship.com/legal/full-disclosure-security-policy/
appveyor.statuspage.io https://www.atlassian.com/trust/security/report-a-vulnerability
appxotica.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
archiv.cesnet.cz https://csirt.cesnet.cz/en/vulnerability_report
arieg.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
arkadiyt.com https://hackerone.com/arkadiyt-projects
armbian.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
artsyproduct.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
arup.com https://www.arup.com/Reporting-Policy.pdf
arxiv-org.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
ashut.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
askfavor.com https://favordelivery.com/security
atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
atlassian.design https://www.atlassian.com/trust/security/report-a-vulnerability
attack.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
au.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
aug.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
avanza.se https://www.avanza.se/sakerhet-villkor/sakerhet.html
avatar.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
avm.de https://avm.de/service/sicherheitsinfos-zu-updates/
axelerant.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
b2b2013.everydayhero.com https://www.blackbaud.com/security/responsible-disclosure
bahmni.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
bankid.com https://www.bankid.com/disclosure
beep.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
bestchai.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
betaalvereniging.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
beyondtextbooks.org https://mindtouch.com/disclosure
bill.com https://www.bill.com/security
bio.libretexts.org https://mindtouch.com/disclosure
bird.co https://docs.google.com/document/d/1uONlnLYC55398Y2EfyIJu5jRzf4qGa3tJvKlXfLp9MY/view
bitbucket.com https://www.atlassian.com/trust/security/report-a-vulnerability
bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
bitdefender.co.uk https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html
bitdefender.com https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html
bitdefender.de https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html
bitdefender.fr https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html
bitdefenderlogin.de https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html
bitfinex.statuspage.io https://www.atlassian.com/trust/security/report-a-vulnerability
bitprim.org https://g.co/vrp
black-dog-larapinta.everydayhero.com https://www.blackbaud.com/security/responsible-disclosure
blackducksoftware.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
blockport.io https://bugcrowd.com/blockport
blog.agilecraft.com https://www.atlassian.com/trust/security/report-a-vulnerability
blog.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
blog.jvmguy.com https://www.atlassian.com/trust/security/report-a-vulnerability
blog.oneiroi.co.uk https://oneiroi.co.uk/.well-known/policy.txt
blogs.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
blogspot.co.uk https://g.co/vrp
bloomscape.com https://bloomscape.com/.well-known/security-policy.html
bluesnap https://home.bluesnap.com/security-bounty/ yes
boardgamegeek.com https://boardgamegeek.com/responsible_disclosure_policy
bol.com https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html
botium.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
bro-tracker.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
brookhouseinquiry.org.uk https://mojdigital.blog.gov.uk/vulnerability-disclosure-policy/
bytebucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
cPanel https://cpanel.net/cpanel-security-bounty-program/ yes
cPaperless https://hackerone.com/cpaperless no
ca.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
cal.new https://g.co/vrp
calmsolutions.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
calorieking.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
cambridgez88.jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
cancercentrum.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
canon-europe.com https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy
canon-me.com https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy
canon.co.uk https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy
canon.de https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy
canon.es https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy
canon.fr https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy
canon.ie https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy
captainfact.io https://captainfact.io/help/bug_report
card.com https://www.card.com/responsible-disclosure-policy no
caspar-health.com https://caspar-health.com/rdp/
casper.com https://hackerone.com/casper
casperlabs.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
caspersleep.com https://hackerone.com/casper
centralitydev.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
cert.at https://cert.at/de/ueber-uns/rfc2350/
cert.govt.nz https://www.cert.govt.nz/it-specialists/guides/reporting-a-vulnerability/cert-nz-coordinated-vulnerability-disclosure-policy/
cesnet.cz https://csirt.cesnet.cz/en/vulnerability_report
channelintelligence.com https://g.co/vrp
chem.libretexts.org https://mindtouch.com/disclosure
chemwiki.ucdavis.edu https://mindtouch.com/disclosure
childcare.co.uk https://www.childcare.co.uk/responsible-disclosure-policy
chip.de https://www.burda-forward.de/en/security/
chitchats.com https://admin.reinvent.com/security/security.policy.txt
chocolatey.org https://chocolatey.org/security
chromecast.com https://g.co/vrp
clamxav.com https://clamxav.com/.well-known/vulnerability_disclosure_policy.txt
clarionmag.com https://www.atlassian.com/trust/security/report-a-vulnerability
clever-cloud.com https://www.clever-cloud.com/security-policy
clojure.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
cloud.elastic.co https://www.elastic.co/cloud/security
cloudbees.com https://www.cloudbees.com/security-policy
cloudflarestatus.com https://www.atlassian.com/trust/security/report-a-vulnerability
code.kiwi.com https://www.kiwi.com/us/pages/security
code.l0g.in https://www.atlassian.com/trust/security/report-a-vulnerability
code.mattzuba.com https://www.atlassian.com/trust/security/report-a-vulnerability
codeoftalent.io https://g.co/vrp
coderpatsy.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
codeweavers.com https://www.codeweavers.com/support/wiki/website/security
codice.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
coinsbit.io https://coinsbit.io/ru/privacy-policy
collabim.cz https://www.collabim.cz/bezpecnost-collabimu.html
community.joomla.org https://developer.joomla.org/security.html
community.optimizely.com https://mindtouch.com/disclosure
conference.first.org https://www.first.org/about/bugs
conferencebadge.com https://www.conferencebadge.com/security
confluence.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
connect.atlassian.io https://www.atlassian.com/trust/security/report-a-vulnerability
connid.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
console.vespa.ai https://hackerone.com/verizonmedia?view_policy=true
contentful.com https://www.contentful.com/security/
corporate.xing.com https://www.xing.com/rfc-2350.txt
cosyfeet.com https://www.cosyfeet.com/security-privacy
countryfinancial.com https://www.countryfinancial.com/en/privacy-and-security.html
covid19.nhs.uk https://hackerone.com/nhscovid19app
crunchbase.com https://www.crunchbase.com/.well-known/security-policy.txt
cs.duolingo.com https://www.duolingo.com/privacy
cs50.statuspage.io https://www.atlassian.com/trust/security/report-a-vulnerability
csfd.cz https://www.csfd.cz/vyvojari/
dashpay.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
data.mx.com https://www.mx.com/security-policy
data443.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
dataself.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
datastax-oss.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
de.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
de.duolingo.com https://www.duolingo.com/privacy
de.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
defcon.org https://www.defcon.org/html/links/dc-policy.html
defiant.com https://www.defiant.com/security/
democracy.york.gov.uk https://www.york.gov.uk/security
dennisbabkin.com https://dennisbabkin.com/security/
desiclub.com https://g.co/vrp
design.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
dev.swergroup.com https://www.atlassian.com/trust/security/report-a-vulnerability
developer.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
developer.connectwise.com https://mindtouch.com/disclosure
developer.joomla.org https://developer.joomla.org/security.html
developers.tezos.com https://tezos.foundation/security/
df.eu https://df.eu/whitehat/policy
dfrank.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
dfuse Platform https://hackerone.com/dfuse yes
diging.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
digitalassetlinks.org https://g.co/vrp
director.tjhsst.edu https://tjhsst.edu/security/policy.txt
dmoj.ca https://dmoj.ca/security/
doc.google.com https://g.co/vrp
docker.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
docs.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
docs.connectwise.com https://mindtouch.com/disclosure
docs.joomla.org https://developer.joomla.org/security.html
docs.new https://g.co/vrp
documentation.meraki.com https://mindtouch.com/disclosure
documents.google.com https://g.co/vrp
docverse.com https://g.co/vrp
doubleclick.net https://g.co/vrp
downloads.joomla.org https://developer.joomla.org/security.html
dp3.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
dpd.co.uk https://hackerone.com/dpdgroup_uk
dropbox.com https://hackerone.com/dropbox/
dropbox.com.go.snip.ly https://hackerone.com/dropbox/
dsnet.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
dssw.co.uk https://www.dssw.co.uk/readme/security.html
dtl-fair.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
duggmirror.com https://g.co/vrp
duolingo.com https://www.duolingo.com/privacy
dynstatus.com https://www.atlassian.com/trust/security/report-a-vulnerability
eBay https://pages.ebay.com/securitycenter/security_researchers.html no
eClinicalWorks https://www.eclinicalworks.com/responsible-disclosure-policy/ no
ea-foundation.org https://ea-foundation.org/security-policy/
easysign.io https://g.co/vrp
ecosystem.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
ed.voicethread.com https://voicethread.com/howto/category/security-faq/
edas.info https://www.edas.info/doc/disclosure.html
edun.com https://g.co/vrp
egeninsamling.minstoradag.org https://intl.betternow.org/security
el.duolingo.com https://www.duolingo.com/privacy
electroneek.com https://electroneek.com/disclosure-policy/
email.indiainc.ca https://g.co/vrp
en-ae.namshi.com https://namshi.com/security
en.duolingo.com https://www.duolingo.com/privacy
en.lichess.org https://lichess.org/contact#help-security
encrypted.google.com https://g.co/vrp
engage.vic.gov.au https://harvestdp.com/security-research-policy
enjin.io https://enj.in/security
enjinx.io https://enj.in/security
enovar.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
epionemaiko.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
es.duolingo.com https://www.duolingo.com/privacy
esig-dss.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
eths.ed.voicethread.com https://voicethread.com/howto/category/security-faq/
etsi.org https://www.etsi.org/standards/coordinated-vulnerability-disclosure
eveonline.com https://www.eveonline.com/article/responsible-disclosure-reporting-security-issues
everydayhero.com https://www.blackbaud.com/security/responsible-disclosure
exabeam.com https://www.exabeam.com/.well-known/security.txt
exoscale.ch https://www.exoscale.com/security/
exoscale.com https://www.exoscale.com/security/
exp.cdn-hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
extensions.joomla.org https://developer.joomla.org/security.html
factorialhr.com https://www.factorialhr.com/security
farcry.jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
fastweb.it https://www.fastweb.it/corporate/responsible-disclosure/
favordelivery.com https://favordelivery.com/security
ficanguitars.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
finder.com.au https://www.finder.com.au/vulnerability-disclosure-policy
finnie.org https://www.finnie.org/vuln/
finosfoundation.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
first.org https://www.first.org/about/bugs
fit.google.com https://g.co/vrp
fitmetrix.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
flatmates.com.au https://www.rea-group.com/security
flowcrypt.com https://flowcrypt.com/docs/technical/bug-bounty.html
fluiddyn.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
focus.de https://www.burda-forward.de/en/security/
followupboss.com https://www.followupboss.com/vulnerability-disclosure-policy
fondy.eu https://www.openbugbounty.org/bugbounty/FONDY_EU/
forcepoint.com https://www.forcepoint.com/company/innovation/product-security-report-issue
forms.new https://g.co/vrp
forum.joomla.org https://developer.joomla.org/security.html
forums.studentdoctor.net https://www.studentdoctor.net/security-policy/
fotoforensics.com http://fotoforensics.com/faq.php?show=Security
fr.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
fr.duolingo.com https://www.duolingo.com/privacy
fr.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
friendsite.com https://sportsa.com/policies/
ftx.com https://help.ftx.com/hc/en-us/articles/360031171351
g.cn https://g.co/vrp
gRPC https://github.com/grpc/proposal/blob/master/P4-grpc-cve-process.md no
gavrikos.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
gbs-schweiz.org https://ea-foundation.org/security-policy/
gchq.gov.uk https://www.ncsc.gov.uk/information/vulnerability-reporting
gd.google.com https://g.co/vrp
geekzone.co.nz https://www.geekzone.co.nz/content.asp?contentid=105
genbattle.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
gene.com https://hackerone.com/roche?view_policy=true
genentech.com https://hackerone.com/roche?view_policy=true
gener8ads.com https://hackerone.com/gener8 no
geoffreyhuntley.com https://ghuntley.com/security/
getdropbox.com https://hackerone.com/dropbox/
getonbrd.cl https://www.getonbrd.com/about/privacy
gexsi.com https://gexsi.com/about/en/privacy-policy/
ghostshipgames.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
ghuntley.com https://ghuntley.com/security/
give.everydayhero.com https://www.blackbaud.com/security/responsible-disclosure
givehopegiveeducation.everydayhero.com https://www.blackbaud.com/security/responsible-disclosure
gizlilik-ilkeleri.hesaplama.net https://gizlilik-ilkeleri.hesaplama.net/
gmail.google.com https://g.co/vrp
goalapl.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
gocardless.com https://gocardless.com/faq/merchants/security/
goetzpf.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
goodwillnne.org https://goodwillnne.org/privacy/
google.ac https://g.co/vrp
google.ad https://g.co/vrp
google.ae https://g.co/vrp
google.af https://g.co/vrp
google.ag https://g.co/vrp
google.al https://g.co/vrp
google.am https://g.co/vrp
google.as https://g.co/vrp
google.at https://g.co/vrp
google.az https://g.co/vrp
google.ba https://g.co/vrp
google.be https://g.co/vrp
google.bf https://g.co/vrp
google.bg https://g.co/vrp
google.bi https://g.co/vrp
google.bj https://g.co/vrp
google.bs https://g.co/vrp
google.bt https://g.co/vrp
google.by https://g.co/vrp
google.ca https://g.co/vrp
google.cat https://g.co/vrp
google.cc https://g.co/vrp
google.cd https://g.co/vrp
google.cf https://g.co/vrp
google.cg https://g.co/vrp
google.ch https://g.co/vrp
google.ci https://g.co/vrp
google.cl https://g.co/vrp
google.cm https://g.co/vrp
google.cn https://g.co/vrp
google.co.ao https://g.co/vrp
google.co.bw https://g.co/vrp
google.co.ck https://g.co/vrp
google.co.cr https://g.co/vrp
google.co.hu https://g.co/vrp
google.co.id https://g.co/vrp
google.co.il https://g.co/vrp
google.co.im https://g.co/vrp
google.co.in https://g.co/vrp
google.co.je https://g.co/vrp
google.co.jp https://g.co/vrp
google.co.ke https://g.co/vrp
google.co.kr https://g.co/vrp
google.co.ls https://g.co/vrp
google.co.ma https://g.co/vrp
google.co.mz https://g.co/vrp
google.co.nz https://g.co/vrp
google.co.th https://g.co/vrp
google.co.tz https://g.co/vrp
google.co.ug https://g.co/vrp
google.co.uk https://g.co/vrp
google.co.uz https://g.co/vrp
google.co.ve https://g.co/vrp
google.co.vi https://g.co/vrp
google.co.za https://g.co/vrp
google.co.zm https://g.co/vrp
google.co.zw https://g.co/vrp
google.com https://g.co/vrp
google.com.af https://g.co/vrp
google.com.ag https://g.co/vrp
google.com.ai https://g.co/vrp
google.com.ar https://g.co/vrp
google.com.au https://g.co/vrp
google.com.bd https://g.co/vrp
google.com.bh https://g.co/vrp
google.com.bn https://g.co/vrp
google.com.bo https://g.co/vrp
google.com.br https://g.co/vrp
google.com.by https://g.co/vrp
google.com.bz https://g.co/vrp
google.com.cn https://g.co/vrp
google.com.co https://g.co/vrp
google.com.cu https://g.co/vrp
google.com.cy https://g.co/vrp
google.com.do https://g.co/vrp
google.com.ec https://g.co/vrp
google.com.eg https://g.co/vrp
google.com.et https://g.co/vrp
google.com.fj https://g.co/vrp
google.com.gh https://g.co/vrp
google.com.gi https://g.co/vrp
google.com.gr https://g.co/vrp
google.com.gt https://g.co/vrp
google.com.hk https://g.co/vrp
google.com.jm https://g.co/vrp
google.com.kh https://g.co/vrp
google.com.kw https://g.co/vrp
google.com.lb https://g.co/vrp
google.com.ly https://g.co/vrp
google.com.mm https://g.co/vrp
google.com.mt https://g.co/vrp
google.com.mx https://g.co/vrp
google.com.my https://g.co/vrp
google.com.na https://g.co/vrp
google.com.nf https://g.co/vrp
google.com.ng https://g.co/vrp
google.com.ni https://g.co/vrp
google.com.np https://g.co/vrp
google.com.om https://g.co/vrp
google.com.pa https://g.co/vrp
google.com.pe https://g.co/vrp
google.com.pg https://g.co/vrp
google.com.ph https://g.co/vrp
google.com.pk https://g.co/vrp
google.com.py https://g.co/vrp
google.com.qa https://g.co/vrp
google.com.ru https://g.co/vrp
google.com.sa https://g.co/vrp
google.com.sb https://g.co/vrp
google.com.sg https://g.co/vrp
google.com.sl https://g.co/vrp
google.com.sv https://g.co/vrp
google.com.tj https://g.co/vrp
google.com.tn https://g.co/vrp
google.com.tr https://g.co/vrp
google.com.tw https://g.co/vrp
google.com.ua https://g.co/vrp
google.com.uy https://g.co/vrp
google.com.vc https://g.co/vrp
google.com.vn https://g.co/vrp
google.cv https://g.co/vrp
google.cz https://g.co/vrp
google.de https://g.co/vrp
google.dj https://g.co/vrp
google.dk https://g.co/vrp
google.dm https://g.co/vrp
google.dz https://g.co/vrp
google.ee https://g.co/vrp
google.es https://g.co/vrp
google.fi https://g.co/vrp
google.fm https://g.co/vrp
google.fr https://g.co/vrp
google.ga https://g.co/vrp
google.ge https://g.co/vrp
google.gg https://g.co/vrp
google.gl https://g.co/vrp
google.gm https://g.co/vrp
google.gp https://g.co/vrp
google.gr https://g.co/vrp
google.gy https://g.co/vrp
google.hk https://g.co/vrp
google.hn https://g.co/vrp
google.hr https://g.co/vrp
google.ht https://g.co/vrp
google.hu https://g.co/vrp
google.ie https://g.co/vrp
google.im https://g.co/vrp
google.iq https://g.co/vrp
google.is https://g.co/vrp
google.it https://g.co/vrp
google.je https://g.co/vrp
google.jo https://g.co/vrp
google.jp https://g.co/vrp
google.kg https://g.co/vrp
google.ki https://g.co/vrp
google.kz https://g.co/vrp
google.la https://g.co/vrp
google.li https://g.co/vrp
google.lk https://g.co/vrp
google.lt https://g.co/vrp
google.lu https://g.co/vrp
google.lv https://g.co/vrp
google.md https://g.co/vrp
google.me https://g.co/vrp
google.mg https://g.co/vrp
google.mk https://g.co/vrp
google.ml https://g.co/vrp
google.mn https://g.co/vrp
google.ms https://g.co/vrp
google.mu https://g.co/vrp
google.mv https://g.co/vrp
google.mw https://g.co/vrp
google.ne https://g.co/vrp
google.net https://g.co/vrp
google.ng https://g.co/vrp
google.nl https://g.co/vrp
google.no https://g.co/vrp
google.nr https://g.co/vrp
google.nu https://g.co/vrp
google.off.ai https://g.co/vrp
google.pl https://g.co/vrp
google.pn https://g.co/vrp
google.ps https://g.co/vrp
google.pt https://g.co/vrp
google.ro https://g.co/vrp
google.rs https://g.co/vrp
google.ru https://g.co/vrp
google.rw https://g.co/vrp
google.sc https://g.co/vrp
google.se https://g.co/vrp
google.sh https://g.co/vrp
google.si https://g.co/vrp
google.sk https://g.co/vrp
google.sm https://g.co/vrp
google.sn https://g.co/vrp
google.so https://g.co/vrp
google.sr https://g.co/vrp
google.st https://g.co/vrp
google.td https://g.co/vrp
google.tg https://g.co/vrp
google.tk https://g.co/vrp
google.tm https://g.co/vrp
google.tn https://g.co/vrp
google.to https://g.co/vrp
google.tt https://g.co/vrp
google.us https://g.co/vrp
google.vg https://g.co/vrp
google.vu https://g.co/vrp
google.ws https://g.co/vrp
grammarly.com https://hackerone.com/grammarly
greenshot.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
group.jumia.com https://group.jumia.com/security/
growsumo.com https://www.partnerstack.com/policies#security-practices
gsma.com https://www.gsma.com/aboutus/legal/privacy
gsuite.google.jp https://g.co/vrp
guillermooo.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
halfes.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
halp.com https://www.atlassian.com/trust/security/report-a-vulnerability
hardsuit.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
hcahealthcare.com https://hcahealthcare.com/legal/index.dot#responsible-disclosure
helios-gesundheit.de www.helios-gesundheit.de/bugbounty.html
help.avalara.com https://mindtouch.com/disclosure
help.joomla.org https://developer.joomla.org/security.html
help.liaisonedu.com https://mindtouch.com/disclosure
help.optimizely.com https://mindtouch.com/disclosure
help.sumologic.com https://mindtouch.com/disclosure
hesaplama.net https://gizlilik-ilkeleri.hesaplama.net/
hg.postspectacular.com https://www.atlassian.com/trust/security/report-a-vulnerability
hi.duolingo.com https://www.duolingo.com/privacy
hia-ai.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
hibernate.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
higherfrequencytrading.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
hiltermannlease.nl https://www.xpos.nl/security.html
hinterlandgames.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
hirezstudios.statuspage.io https://www.atlassian.com/trust/security/report-a-vulnerability
hisnek.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
hogeschoolrotterdam.nl https://rotterdamuas.com/security/
home-assistant.io https://www.home-assistant.io/security/
home.saxo https://www.home.saxo/legal/vulnerability-disclosure-policy/vulnerability-disclosure-policy
horizenofficial.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
hosted.weblate.org https://docs.weblate.org/en/latest/contributing/issues.html#security
hotcopper.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
hoteis.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
hoteles.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
hu.duolingo.com https://www.duolingo.com/privacy
hylozoic.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
iFixit https://www.ifixit.com/Info/Responsible_Disclosure no
iPaidThat https://ipaidthat.io/en/faq/safety/vulnerability-disclosure-program/ no
iRobot https://bugcrowd.com/irobot yes
ibreak.yourepo.com https://www.yourepo.com/user/privacy
id.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
id.duolingo.com https://www.duolingo.com/privacy
idempiere.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
ienterprises.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
images.paypal.com https://hackerone.com/paypal?view_policy=true
img.bol.com https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html
inDrive https://hackerone.com/indrive yes
incibe-cert https://www.incibe-cert.es/en/what-is-incibe-cert/vulnerability-disclosure-policy no
inetstart.de https://g.co/vrp
infoblox https://www.infoblox.com/company/legal/vulnerability-responsible-disclosure-policy/ no
infocon.org https://www.defcon.org/html/links/dc-policy.html
internetcensus2012.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
ion.tjhsst.edu https://tjhsst.edu/security/policy.txt
ipbessecretariat.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
ipv4.google.com https://g.co/vrp
irccloud.com https://www.irccloud.com/whitehat
issa.org.pl https://issa.org.pl/it/dokumenty/polityka-prywatnosci
issues.joomla.org https://developer.joomla.org/security.html
it.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
iwalton.com https://iwalton.com/legal.html
ja.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
ja.duolingo.com https://www.duolingo.com/privacy
jardinesoftware.com https://www.jardinesoftware.com/security-policy
jdknight.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
jendrikillner.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
jerrdan.com http://jlg.com/.well-known/security.txt
jet.com https://corporate.walmart.com/article/responsible-disclosure-policy
jira.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
jira.ats.ucla.edu https://www.atlassian.com/trust/security/report-a-vulnerability
jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
johnlewis.co.uk https://hackerone.com/john_lewis
johnlewis.com https://hackerone.com/john_lewis
joomla.org https://developer.joomla.org/security.html
jp.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
jummbus.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
justgiving.com https://www.blackbaud.com/security/responsible-disclosure
k15t.jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
kaik3apps.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
keeping.nl https://305.nl/en/terms-and-conditions/security/
kenputer.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
keymotes.io https://g.co/vrp
kiwi.com https://www.kiwi.com/us/pages/security
knowledge.exlibrisgroup.com https://mindtouch.com/disclosure
knowledgecenter.zuora.com https://mindtouch.com/disclosure
knowyourcompany.com https://federacy.com/knowyourteam
knowyourteam.com https://federacy.com/knowyourteam
komodoplatform.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
korukids.co.uk https://www.korukids.co.uk/privacy-policy/
krisp.ai https://krisp.ai/security/
labs.google.com https://g.co/vrp
lafabriquedelacite.com https://www.vinci.com/publi/vinci/cert/index-en.html
lavasoftusa.com https://www.adaware.com/privacy-policy
learn.conferencebadge.com https://www.conferencebadge.com/security
lfintaiwan.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
lib-rary.com https://g.co/vrp
librepilot.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
lichess.org https://lichess.org/contact#help-security
lichess1.org https://lichess.org/contact#help-security
limawi.io https://blog.limawi.io/en/security-vulnerability-reporting-policy/
lingotek.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
linkedln.ivantay.org https://www.atlassian.com/trust/security/report-a-vulnerability
linode.com https://hackerone.com/linode
liquibase.jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
lisk.io https://lisk.io/bug-bounty-program
littlstar.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
livsstil.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
loans.cashconverters.co.nz https://loans.cashconverters.co.nz/security-policy
logicalclocks.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
looktruenorth.com https://g.co/vrp
lovenamepix.com https://lovenamepix.com/privacy.php
lukforce.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
lumindigital.com https://lumindigital.com/security/
lunatech.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
m.bitdefender.com https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html
m.focus.de https://www.burda-forward.de/en/security/
macabacus.com https://macabacus.com/vdp
mactalkstech.com https://g.co/vrp
mad.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
magazine.joomla.org https://developer.joomla.org/security.html
magicable.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
mail.google.com https://g.co/vrp
mariacasino.com https://hackerone.com/kindred_group
mariadb.com https://mariadb.com/security
marketplace.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
mattermost.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
maxdk9.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
mcneiluscompanies.com https://www.oshkoshcorp.com/contact/Contacts~CyberSecurity.html
med.libretexts.org https://mindtouch.com/disclosure
media.defcon.org https://www.defcon.org/html/links/dc-policy.html
medium.statuspage.io https://www.atlassian.com/trust/security/report-a-vulnerability
mid.as https://security.midas.network/reporting
mifosforge.jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
mikrotik.com https://mikrotik.com/support
mindstrong.com https://www.mindstronghealth.com/security-policy.html
mindstronghealth.com https://www.mindstronghealth.com/security-policy.html
missguided.com https://www.missguided.co.uk/responsible-disclosure
mixmastamyk.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
mnm.be https://www.vrt.be/en/responsible-disclosure-policy-english-version/
mobfox.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
mobile.paypal.com https://hackerone.com/paypal?view_policy=true
moderntribe.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
moga111.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
moneydesktop.com https://mx.com/security-policy
morillas.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
mosastudio.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
movieXchange https://moviexchange.com/responsible-disclosure-policy/ no
msd.govt.nz http://msd.govt.nz/about-msd-and-our-work/tools/responsible-disclosure-guidelines.html
mx.com https://mx.com/security-policy
my.competency.io https://sportsa.com/policies/
mybb.com https://mybb.com/get-involved/security/
mybboard.net https://mybb.com/get-involved/security/
myetherwallet.com https://www.myetherwallet.com/security-policy
mypcera.com https://g.co/vrp
nachi.org https://www.nachi.org/bug-bounty
nahi.org https://www.nachi.org/bug-bounty
namshi.com https://namshi.com/security
national-lottery.co.uk https://www.national-lottery.co.uk/security
navolnenoze.cz https://navolnenoze.cz/o-nas/soukromi/
ncsc.gov.uk https://www.ncsc.gov.uk/vulnerability-reporting
neilb.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
nemo.sonarqube.org https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317
netgate.com https://www.netgate.com/security/index.html
netmoms.de https://www.burda-forward.de/en/security/
netohq.com https://www.netohq.com/privacy-policy
new.whooing.com https://whooing.com/info/privacy
news.bitdefender.com https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html
nhibernate.jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
nl-nl.duolingo.com https://www.duolingo.com/privacy
no.de https://nodejs.org/en/security/
no.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
nodejs.org https://nodejs.org/en/security/
nori.com https://hackerone.com/nori_e1xxl?view_policy=true
northdecoder.com https://g.co/vrp
nospamproxy.de https://www.nospamproxy.de/en/cybersecurity-product-security-incident-response-team-psirt/
npm.im https://www.npmjs.com/policies/security
npmjs.com https://www.npmjs.com/policies/security
npmjs.org https://www.npmjs.com/policies/security
nrk.no https://info.nrk.no/hjem/responsible-disclosure-policy/
nyheder.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
nyhederne-dyn.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
nyhederne.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
odoo.com https://www.odoo.com/security-report
ofwat.gov.uk https://www.ofwat.gov.uk/vulnerability-disclosure-policy
ohneuz.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
omnisio.com https://g.co/vrp
openbanking.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
openbc.com https://www.xing.com/rfc-2350.txt
openedx.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
openerp.com https://www.odoo.com/security-report
openhubframework.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
openmbee.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
openncp.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
openscience.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
opensource.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
opensourcematters.org https://developer.joomla.org/security.html
openwms.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
opsgenie.com https://www.atlassian.com/trust/security/report-a-vulnerability
orr.gov.uk https://www.orr.gov.uk/
ortussolutions.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
osgeo-org.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
oshkoshdefense.com https://www.oshkoshcorp.com/contact/Contacts~CyberSecurity.html
oviva.com https://oviva.com/uk/en/security/
ozlotteries.com https://jumbointeractive.com/security-reporting
p3.no https://info.nrk.no/hjem/responsible-disclosure-policy/
p5.focus.de https://www.burda-forward.de/en/security/
pageoneq.com https://g.co/vrp
panazzolo.com https://www.atlassian.com/trust/security/report-a-vulnerability
pandaarcade.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
parkhub.com https://parkhub.com/policy.txt
participate.melbourne.vic.gov.au https://harvestdp.com/security-research-policy
particle.io https://www.particle.io/legal/responsible-disclosure/
partner.bol.com https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html
partnerprogramma.bol.com https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html
partnerstack.com https://www.partnerstack.com/policies#security-practices
patrocinium.com https://security.patrocinium.com/
payline.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
paypalobjects.com https://hackerone.com/paypal?view_policy=true
pellepim.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
pfsense.org https://www.netgate.com/security/index.html
phData https://www.phdata.io/bug-bounty-program/ no
phas.ubc.ca https://phas.ubc.ca/.well-known/security-policy.html
phpmyadmin.net https://www.phpmyadmin.net/security/
phys.libretexts.org https://mindtouch.com/disclosure
physics.ubc.ca https://phas.ubc.ca/.well-known/security-policy.html
pingpongdimsum.us https://g.co/vrp
pinwheelapps.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
pitchero.com https://www.pitchero.com/security-policy
places.google.com https://g.co/vrp
platform.sh https://platform.sh/tos/#section-10-disclosures-and-notices
platon.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
playframework.com https://www.playframework.com/security/vulnerability
playframework.org https://www.playframework.com/security/vulnerability
playlistscreator.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
plex.tv https://support.plex.tv/articles/reporting-security-issues/
plugins.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
pm.me https://protonmail.com/blog/protonmail-bug-bounty-program/
politik.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
polypoly https://polypoly.net/en/security/vdp/ no
portix.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
postini.com https://g.co/vrp
postrank.com https://g.co/vrp
previous.cloudbees.com https://www.cloudbees.com/security-policy
producthelp.kitchenaid.com https://mindtouch.com/disclosure
producthelp.whirlpool.com https://mindtouch.com/disclosure
programmer.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
protonmail.ch https://protonmail.com/blog/protonmail-bug-bounty-program/
pt.duolingo.com https://www.duolingo.com/privacy
publi.vinci.com https://www.vinci.com/publi/vinci/cert/index-en.html
puredocs.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
purelang.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
purple.ai https://purple.ai/responsible-disclosure/
purplewifi.net https://purple.ai/responsible-disclosure/
pushcrew.com https://pushcrew.com/security-compliance/responsible-disclosure-policy/
pushlife.com https://g.co/vrp
qpp.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
qualtrics.com https://www.qualtrics.com/platform/security/vulnerability-disclosure/
quantcast.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
quibi.com https://quibi.com/privacy-policy
radio.nrk.no https://info.nrk.no/hjem/responsible-disclosure-policy/
raf.mod.uk https://www.gov.uk/guidance/report-a-vulnerability-on-an-mod-system
rawfury.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
rbkmoney.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
rcvmhs.vic.gov.au https://harvestdp.com/security-research-policy
re-flekt.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
realcommercial.com.au https://www.rea-group.com/security
realestate.com.au https://www.rea-group.com/security
realpython.com https://realpython.com/security/
recovery.tezos.com https://tezos.foundation/security
recsys.xing.com https://www.xing.com/rfc-2350.txt
reddit.statuspage.io https://www.atlassian.com/trust/security/report-a-vulnerability
redditstatus.com https://www.atlassian.com/trust/security/report-a-vulnerability
rekruter.de https://www.rekruter.de/impressum/datenschutz.lasso
replay4me.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
reportgarden https://reportgarden.com/responsible-disclosure/ yes
revizto.com https://revizto.com/csp
ro.duolingo.com https://www.duolingo.com/privacy
robocorp.com https://robocorp.com/.well-known/responsible-disclosure-policy.html
roboticvision.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
roche.com https://hackerone.com/roche?view_policy=true
rockset https://rockset.com/legal/responsible-disclosure-policy/ yes
rometools.jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
rotterdamuas.com https://rotterdamuas.com/security/
rpggeek.com https://boardgamegeek.com/responsible_disclosure_policy
rtbf.be https://www.rtbf.be/cgu/
ru.duolingo.com https://www.duolingo.com/privacy
ryzomcore.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
s.s-bol.com https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html
sandbox.paypal.com https://hackerone.com/paypal?view_policy=true
sanity.io https://www.sanity.io/security
saxobank.com https://www.home.saxo/legal/vulnerability-disclosure-policy/vulnerability-disclosure-policy
sbab.se https://www.sbab.se/1/sidfotsmeny_2/sakerhet/responsible_disclosure.html
scandiweb.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
sciex https://sciex.com/product-security/coordinated-vulnerabilities-disclosure-policy no
scotchgit.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
scotchgit.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
scroll.com https://scroll.help/en/articles/3344853-does-scroll-have-a-bug-bounty-or-responsible-disclosure-program
searchmash.com https://g.co/vrp
secrethub.io https://secrethub.io/security
securepractice.co https://securepractice.co/support
securiti.ai https://securiti.ai/security/
seditaville.com https://g.co/vrp
segatalab.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
senbox.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
sg.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
shapeup.org https://g.co/vrp
sheet.new https://g.co/vrp
sheets.new https://g.co/vrp
shoelace.nyc https://g.co/vrp
showcase.joomla.org https://developer.joomla.org/security.html
silverstripe.org https://docs.silverstripe.org/en/contributing/release_process/#security-releases
sjl.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
sjl.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
skam.p3.no https://info.nrk.no/hjem/responsible-disclosure-policy/
skypicker.com https://www.kiwi.com/us/pages/security
slides.new https://g.co/vrp
sluthate.com https://g.co/vrp
smartregister.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
smile.co.uk https://www.smile.co.uk/global/security/responsible-security-disclosure
smugmug.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
snarfware.com https://g.co/vrp
sociality.io https://sociality.io/security/#responsible-disclosure
socialmedian.com https://www.xing.com/rfc-2350.txt
socifi-doc.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
solidgate.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
sonarcloud.io https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317
sonarqube.org https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317
sonarsource.com https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317
sonarsource.org https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317
songza.fm https://g.co/vrp
sourcetreeapp.com https://www.atlassian.com/trust/security/report-a-vulnerability
southamptonairport.com https://www.agsairports.co.uk/report-a-vulnerability/
southwest.com https://www.southwest.com/security-researchers.txt
spaceapegames.com https://www.spaceapegames.com/privacy-policy
spark.io https://www.particle.io/legal/responsible-disclosure/
spielraum.xing.com https://www.xing.com/rfc-2350.txt
splio.com https://www.splio.com/data-protection/
sport.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
sporten-dyn.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
sporten.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
sqreen.com https://www.sqreen.com/security
sqreen.io https://www.sqreen.com/security
squanchtendo.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
ssl.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
ssl.panoramio.com https://g.co/vrp
stanwood.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
starlingbank.co.uk https://www.starlingbank.com/security/disclosure/
starlingbank.com https://www.starlingbank.com/security/disclosure/
status.botterminator.justcool393.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.clever.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.cocoapods.org https://www.atlassian.com/trust/security/report-a-vulnerability
status.codecov.io https://www.atlassian.com/trust/security/report-a-vulnerability
status.coinbase.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.coveralls.io https://www.atlassian.com/trust/security/report-a-vulnerability
status.crossref.org https://www.atlassian.com/trust/security/report-a-vulnerability
status.digitalocean.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.discordapp.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.dropbox.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.epicgames.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.flickr.net https://www.atlassian.com/trust/security/report-a-vulnerability
status.gandi.net https://www.atlassian.com/trust/security/report-a-vulnerability
status.geforcenow.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.github.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.haikulearning.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.hummingbot.io https://www.atlassian.com/trust/security/report-a-vulnerability
status.instructure.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.kraken.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.ledger.fr https://www.atlassian.com/trust/security/report-a-vulnerability
status.linode.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.m1finance.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.mediatemple.net https://www.atlassian.com/trust/security/report-a-vulnerability
status.mozilla.org https://www.atlassian.com/trust/security/report-a-vulnerability
status.npmjs.org https://www.atlassian.com/trust/security/report-a-vulnerability
status.packagist.com.br https://www.atlassian.com/trust/security/report-a-vulnerability
status.plex.tv https://www.atlassian.com/trust/security/report-a-vulnerability
status.popcorntime.app https://www.atlassian.com/trust/security/report-a-vulnerability
status.robinhood.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.salemove.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.sentry.io https://www.atlassian.com/trust/security/report-a-vulnerability
status.sipgate.de https://www.atlassian.com/trust/security/report-a-vulnerability
status.spacexdata.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.sparkpost.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.squarespace.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.stellar.org https://www.atlassian.com/trust/security/report-a-vulnerability
status.universe.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.voxmedia.com https://www.atlassian.com/trust/security/report-a-vulnerability
status.zoom.us https://www.atlassian.com/trust/security/report-a-vulnerability
statuspage.io https://www.atlassian.com/trust/security/report-a-vulnerability
stefanvd.net https://www.stefanvd.net/privacy/
stratisplatform.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
strem.io https://www.stremio.com/security-policy.txt
stremio.com https://www.stremio.com/security-policy.txt
studentdoctor.net https://www.studentdoctor.net/security-policy/
studiojvideo.com https://g.co/vrp
success.outsystems.com https://mindtouch.com/disclosure
summit.atlassian.com https://www.atlassian.com/trust/security/report-a-vulnerability
support.8x8.com https://mindtouch.com/disclosure
support.bankid.com https://www.bankid.com/disclosure
support.biamp.com https://mindtouch.com/disclosure
support.bitium.com https://g.co/vrp
support.code42.com https://mindtouch.com/disclosure
support.d-tools.com https://mindtouch.com/disclosure
support.electrolux.com https://mindtouch.com/disclosure
support.gainsight.com https://mindtouch.com/disclosure
sv.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
sviesolutions.com https://www.openbugbounty.org/bugbounty/sviesolutions/
swabiz.com https://www.southwest.com/security-researchers.txt
swankmp.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
switch.ch https://www.switch.ch/security/.galleries/files/SWITCH-CERT.txt
sword-of-truth.com https://g.co/vrp
sylaps.com https://federacy.com/sylaps
syncthing.net https://syncthing.net/security/
synq.statuspage.io https://www.atlassian.com/trust/security/report-a-vulnerability
szns https://docs.szns.io/smart-contracts/bug-bounty yes
tZERO https://bugcrowd.com/tzero-vdp no
tablecheck.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
tadpoledbhub.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
taphome.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
tealyra.co.uk https://www.tealyra.com/.well-known/policy.txt
tech234a.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
technicolor.com https://www.technicolor.com/privacy-policy
temasys.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
tendrl.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
test.xmr.to https://xmr.to/security
texthelp.com https://docs.google.com/document/d/e/2PACX-1vQwtwixwk3TzxDEkmLc0NJnEH_u_SJ0FlHX5tFGldG3tK37k4SLeeOc8yFPIc73iMELb3F80z1SOZU4/pub
tezos.com https://tezos.foundation/security
tezos.foundation https://tezos.foundation/security
theantlrguy.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
thecityfactory.com https://www.vinci.com/publi/vinci/cert/index-en.html
thepanhandlegives2019.everydayhero.com https://www.blackbaud.com/security/responsible-disclosure
thexyz.com https://www.thexyz.com/about/security-policy
thinkquarterly.co.uk https://g.co/vrp
tidio.com https://www.tidio.com/security-policy/
tidiochat.com https://www.tidio.com/security-policy/
tjhsst.edu https://tjhsst.edu/security/policy.txt
tkatchev.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
tokens.net https://www.tokens.net/security-policy/
tokkonopapa.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
tortoisehg.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
tortoisehg.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
toshbrown.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
trade.ellect.biz https://www.kreezalid.com/privacy-policy
tradecloud.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
traviscistatus.com https://www.atlassian.com/trust/security/report-a-vulnerability
trello.com https://www.atlassian.com/trust/security/report-a-vulnerability
tritarget.org https://tritarget.org/static/Privacy%2520Policy.html
tructv.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
trust.tableau.com https://www.atlassian.com/trust/security/report-a-vulnerability
tryhackme.com https://tryhackme.com/terms
turkja.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
turnoffthelights.com https://www.turnoffthelights.com/privacy.html
tv.nrk.no https://info.nrk.no/hjem/responsible-disclosure-policy/
tv.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
tv2sport.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
tvprofil.com https://tvprofil.com/privacy/
tvprofil.net https://tvprofil.com/privacy/
tvtid-dyn.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
tvtid.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
tyle.io https://tyle.io/info/privacy
uaestore.canon-me.com https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy
uk.duolingo.com https://www.duolingo.com/privacy
uk.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
ukfast.co.uk https://www.ukfast.co.uk/terms.html
underholdning.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
unencrypted.nodejs.org https://nodejs.org/en/security/
unicode-org.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
update.joomla.org https://developer.joomla.org/security.html
urbanairship.com https://www.airship.com/legal/full-disclosure-security-policy/
valentinaproject.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
vaporware.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
vejr.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
vejret.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
venere.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
venture.com https://admin.reinvent.com/security/security.policy.txt
verance.com https://www.verance.com/privacy/
vertical-life.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
vi.duolingo.com https://www.duolingo.com/privacy
videogamegeek.com https://boardgamegeek.com/responsible_disclosure_policy
vinci.com https://www.vinci.com/publi/vinci/cert/index-en.html
visier.com https://trust.visier.com/responsible-disclosure/
visualvirtual.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
vkksu.gov.ua https://www.vkksu.gov.ua/userfiles/doc/sec/secpolicy.txt
voicethread.com https://voicethread.com/howto/category/security-faq/
volunteers.joomla.org https://developer.joomla.org/security.html
wakatime.com https://hackerone.com/wakatime?type=team
was-research.org https://ea-foundation.org/security-policy/
watchup.com https://support.plex.tv/articles/reporting-security-issues/
wcm-io.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
web3 foundation https://web3.foundation/security-report/ yes
webarchive.jira.com https://www.atlassian.com/trust/security/report-a-vulnerability
weberc2.bitbucket.io https://www.atlassian.com/trust/security/report-a-vulnerability
weblate.org https://docs.weblate.org/en/latest/contributing/issues.html#security
webmethod.nl https://www.webmethod.nl/juridisch/responsible-disclosure
webmproject.org https://g.co/vrp
webonic.hu https://www.websupport.sk/support/kb/nahlasenie-zranitelnosti/
websupport.sk https://www.websupport.sk/support/kb/nahlasenie-zranitelnosti/
webtld.com https://g.co/vrp
weekendesk.es https://www.openbugbounty.org/bugbounty/WeekendeskS/
weekendesk.fr https://www.openbugbounty.org/bugbounty/WeekendeskS/
wiki.crdb.io https://www.atlassian.com/trust/security/report-a-vulnerability
wiki.cyverse.org https://www.atlassian.com/trust/security/report-a-vulnerability
woobe.bitbucket.org https://www.atlassian.com/trust/security/report-a-vulnerability
xcashteam.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
xing.com https://www.xing.com/rfc-2350.txt
xing.de https://www.xing.com/rfc-2350.txt
xmr.to https://xmr.to/security
xtcommerce.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
xtenlang.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
yeahhub.com https://www.yeahhub.com/privacy-policy/
yor-ok.org.uk https://www.york.gov.uk/security
york.gov.uk https://www.york.gov.uk/security
yoursay.melbournewater.com.au https://harvestdp.com/security-research-policy
zdrojak.cz https://www.zdrojak.cz/redakce/podminky-uzivani
zehn.de https://www.burda-forward.de/en/security/
zeit.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
zencash.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
zerotier.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
zh.hotels.com https://www.expediagroup.com/about/privacy-data-handling-requirements/
zigzageducaria.atlassian.net https://www.atlassian.com/trust/security/report-a-vulnerability
zkSync https://zksync.io/dev/bug-bounty.html yes
zulu.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
zulu.tv2.dk https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf
srcport.com logo
Srcport Shield Explore Subscriptions

Website Scanner

Network Scanner

Vulnerability Scanner

Site Security Score

Playbook Directory

Dataset Explorer





Blogs

Field Notes

Developers

Input Required
Caspar the AI Analyst.
Caspar AI Analyst
Loading...
After running a capability, you can ask your AI Assistant questions about the results.