Luno |
https://bugcrowd.com/luno-og |
yes |
(ISC)2 |
https://bugcrowd.com/isc2 |
no |
.nz Registry |
https://registry.internetnz.nz/about/vulnerability-disclosure-policy/ |
no |
0x |
https://docs.0x.org/developer-resources/bounties |
yes |
0xdata.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
123 Contact Form |
http://www.123contactform.com/security-acknowledgements.htm |
no |
18F |
https://18f.gsa.gov/vulnerability-disclosure-policy/ |
no |
1Password Game |
https://bugcrowd.com/agilebits |
yes |
23andme |
https://www.23andme.com/security-report/ |
yes |
24sessions |
https://www.24sessions.com/responsible-disclosure |
yes |
3DS OUTSCALE |
https://en.outscale.com/reporting-vulnerabilities/ |
yes |
3GPP |
https://www.3gpp.org/coordinated-vulnerability-disclosure-cvd |
no |
3delight.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
4chan |
https://www.4chan.org/security |
no |
4teamwork.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
84codes |
https://www.84codes.com/security/ |
yes |
98 Point 6 |
https://www.98point6.com/responsible-disclosure-policy/ |
no |
98point6 |
https://www.98point6.com/responsible-disclosure-policy/ |
no |
ABB |
https://www.abb.com/cybersecurity |
no |
ADP |
https://www.adp.com/about-adp/data-security.aspx |
no |
ALSCO |
https://alscotoday.com/go/bug |
yes |
AMD |
https://www.amd.com/en/corporate/product-security-incident-response-team |
no |
AOL |
https://contact.security.aol.com/ |
no |
ARM mBed |
https://tls.mbed.org/c-library-bug-bounty-program |
yes |
ASN Bank |
https://www.devolksbank.nl/over-ons/kwetsbaarheden-melden |
no |
ASUS |
https://www.asus.com/Static_WebPage/ASUS-Product-Security-Advisory/ |
no |
AT&T |
https://bugbounty.att.com/ |
yes |
AVG |
https://www.avg.com/en-ww/security |
no |
Abbott |
https://www.abbott.com/policies/cybersecurity/cybersecurity-coordinated-product-disclosure.html |
no |
Abn Amro |
https://www.abnamro.nl/en/personal/overabnamro/secure-banking/responsible-disclosure.html |
yes |
Accellion |
https://bugcrowd.com/accellion-public |
yes |
Accenture |
https://www.accenture.com/us-en/about/company/accenture-responsible-disclosure |
no |
Accredible |
https://www.accredible.com/white_hat/ |
yes |
Achmea |
https://www.achmea.nl/en/responsibledisclosure |
no |
Acorns LLC |
https://bugcrowd.com/acorns |
yes |
Acquia |
https://www.acquia.com/solutions/security |
no |
Across Protocol |
https://docs.across.to/v/developer-docs/additional-info/bug-bounty |
yes |
Actility |
https://www.actility.com/security/ |
yes |
ActiveProspect |
https://activeprospect.com/security/ |
no |
Ada Health |
https://ada.com/security-vulnerability-disclosure-policy/ |
no |
Adafruit |
https://www.adafruit.com/reportingsecurityissues |
no |
Adobe |
https://helpx.adobe.com/security/alertus.html |
no |
Aerohive |
http://www.aerohive.com/support/security-center |
no |
Agent Legend |
https://agentlegend.com/vulnerability-disclosure-policy/ |
no |
Ahold Delhaize |
https://www.aholddelhaize.com/en/security/ |
yes |
Aims360 |
https://www.aims360.com/vulnerability-responses/ |
no |
Aion |
https://aion.network/terms-bounty/ |
yes |
Air Miles |
https://www.airmiles.nl/responsible-disclosure |
yes |
Air Miles Shop |
https://www.airmilesshop.nl/responsible-disclosure |
no |
AirSwap |
https://blog.airswap.io/airswap-bug-bounty-4d7ec41f3ea7 |
yes |
AirVPN |
https://airvpn.org/security_policy/ |
yes |
Airbnb |
https://hackerone.com/airbnb |
yes |
Airmap |
https://www.airmap.com/responsible-disclosure-policy/ |
no |
Airship |
https://www.airship.com/legal/full-disclosure-security-policy/ |
no |
Airtable |
https://hackerone.com/airtable |
yes |
Alaska Air |
https://www.alaskaair.com/content/about-us/site-info/report-site-security-issues |
no |
Alcatel Lucent |
https://www.al-enterprise.com/en/support/security-advisories |
no |
Alcyon |
https://www.alcyon.nl/responsible-disclosure/ |
no |
Algolia |
https://hackerone.com/algolia |
yes |
Algorand |
https://bugcrowd.com/algorand |
yes |
Alibaba |
https://security.alibaba.com/ |
yes |
Alienvault |
https://cybersecurity.att.com/documentation/usm-appliance/system-overview/how-to-submit-a-security-issue-to-alienvault.htm |
no |
Aliexpress |
https://security.alibaba.com/ |
yes |
Aliter Technologies |
https://www.aliter.com/vulnerability-disclosure-policy/ |
no |
Allegro |
https://hackerone.com/allegro |
yes |
Altervista |
https://en.altervista.org/feedback.php?who=feedback |
no |
Altilly |
https://www.altilly.com/page/security |
yes |
AlwaysData |
https://www.alwaysdata.com/en/bug-bounty/ |
yes |
Amara |
http://amara.org/en/security |
no |
Amazon |
https://hackerone.com/amazonvrp |
yes |
Amazon Web Services |
https://aws.amazon.com/security/vulnerability-reporting/ |
no |
American Battle Monuments Commission |
https://www.abmc.gov/vulnerability-disclosure-policy |
no |
American Express |
https://www.americanexpress.com/us/security-center/cybersecurity.html |
no |
Amitree Inc |
https://hackerone.com/amitree_inc |
no |
Analog Devices |
https://www.analog.com/en/support/technical-support/product-security-response-center/vulnerability-disclosure-policy.html |
no |
Android |
https://www.google.com/about/appsecurity/android-rewards/ |
yes |
Anomali |
https://www.anomali.com/security |
no |
Antavo Loyalty Management Platform |
https://www.hacktify.eu/en/public-programs/ |
yes |
Apache |
https://www.apache.org/security/ |
yes |
Apache httpd |
https://www.apache.org/security/ |
yes |
Apparmor |
https://www.apparmor.com/About/Security/Disclosure/ |
no |
Appcelerator |
https://www.appcelerator.com/responsible-disclosure-of-security-vulnerabilities/ |
no |
Apple |
https://developer.apple.com/security-bounty/ |
yes |
Appoptics |
https://www.appoptics.com/security |
no |
Appsmith |
https://docs.appsmith.com/product/security |
no |
Apptentive |
https://www.apptentive.com/contact |
no |
Aptible |
https://www.aptible.com/legal/responsible-disclosure |
no |
Aqua Security |
https://www.aquasec.com/trust/security/responsible-disclosure-program/ |
yes |
Aragon |
https://blog.aragon.org/aragon-network-bug-bounty/ |
yes |
Arduino |
https://www.arduino.cc/en/Main/Security |
no |
Ark |
https://ark.io/blog/ark-development-and-security-bounty-program-arkio-blog |
yes |
Arkose Labs |
https://bugcrowd.com/arkose-labs |
yes |
Arlo - Cash Rewards Program |
https://bugcrowd.com/arlo |
yes |
Arlo - Kudos Program |
https://bugcrowd.com/arlokudos |
no |
Arm |
https://developer.arm.com/support/arm-security-updates/report-security-vulnerabilities |
no |
Artsy |
https://www.artsy.net/security |
yes |
Aruba Networks |
https://bugcrowd.com/aruba-public |
yes |
Asana |
https://asana.com/bounty |
yes |
Ashby |
https://www.ashbyhq.com/resources/vulnerability-disclosure |
no |
Assuring Medical Apps |
https://digitalhealthcompliance.com/disclosure-en/ |
yes |
Asterisk |
https://wiki.asterisk.org/wiki/display/AST/Asterisk+Bug+Bounties |
yes |
Athento |
https://athento.zendesk.com/hc/es/articles/360010484720 |
no |
Atlassian |
https://bugcrowd.com/atlassian |
yes |
Atlassian - Opsgenie |
https://bugcrowd.com/opsgenie |
yes |
Audere |
https://auderenow.org/security |
no |
Audi |
https://www.audi.de/de/brand/de/kontakt-und-haendler.html#layer=/de/brand/de/neuwagen/layer/kontakt-audi-cyber-security.html |
no |
Augur |
https://augur.net/blog/v2-bug-bounty/ |
yes |
Australia Post |
https://auspost.com.au/about-us/about-our-site/responsible-disclosure |
|
Australian Government Department of Health |
https://www.health.gov.au/using-our-websites/vulnerability-disclosure-policy |
no |
Auth0 |
https://auth0.com/responsible-disclosure-policy/ |
no |
Autodesk |
https://www.autodesk.com/trust/incident-response |
no |
Autoklose |
https://autoklose.com/vulnerability-disclosure-program/ |
no |
Automattic |
https://hackerone.com/automattic?type=team |
no |
Automox |
https://www.automox.com/security/responsible-disclosure |
yes |
Auvik |
https://www.auvik.com/disclosure-policy.html |
|
Avalara |
https://www.avalara.com/us/en/legal/responsible-disclosure.html |
no |
Avanade |
https://www.avanade.com/en/about-avanade/approach/trust-center/responsible-disclosure |
no |
Avast! |
https://www.avast.com/bug-bounty |
yes |
Aves Netsec |
https://www.avesnetsec.com/security |
no |
Avira |
https://www.avira.com/en/support-vulnerability |
yes |
Axiommsl |
https://www.axiomsl.com/responsible-disclosure/ |
no |
Axis Bank |
https://www.axisbank.com/docs/default-source/default-document-library/responsible-disclosure-policy.pdf |
no |
Axon |
https://www.axon.com/penetration-testing--vulnerability-disclosure |
no |
Ayden |
https://www.adyen.help/hc/en-us/articles/115001187330-How-do-I-report-a-possible-security-issue-to-Adyen |
no |
Ayers Rock Resort |
https://www.ayersrockresort.com.au/terms-and-conditions/security |
no |
Azimo |
https://azimo.com/en/lp/responsible-disclosure |
yes |
Aztech |
https://kylaconnect.com/vulnerability-disclosure-policy/ |
no |
BASF |
https://www.basf.com/global/en/legal/responsible-disclosure-statement.html |
no |
BBC |
https://www.bbc.com/backstage/security-disclosure-policy/ |
no |
BD |
https://cybersecurity.bd.com/vulnerability-disclosures |
no |
BMW |
https://www.bmwgroup.com/en/general/Security.html |
no |
Babylon |
https://www.babylonhealth.com/us/responsible-disclosure-policy |
no |
Backblaze |
https://www.backblaze.com/security.html |
yes |
Badoo |
https://hackerone.com/badoo |
yes |
Baker Donelson |
https://www.bakerdonelson.com/responsibledisclosure |
no |
Bank of America |
https://www.bankofamerica.com/security-center/report-suspicious-communications/ |
no |
BankID |
https://www.bankid.com/en/disclosure |
no |
BankSA |
https://www.banksa.com.au/online-services/security-centre/responsible-disclosure |
no |
Barco |
https://www.barco.com/en/about-barco/legal/responsible-disclosure |
no |
Barracuda Networks |
https://bugcrowd.com/barracuda |
no |
Base |
https://www.zendesk.com/company/policies-procedures/responsible-disclosure-policy/ |
no |
Basecamp |
https://basecamp.com/about/policies/security/response |
no |
Basware |
https://www.basware.com/en-en/footer/responsible-disclosure/ |
no |
Baxter |
https://www.baxter.com/product-security |
no |
Bazaarvoice |
https://www.bazaarvoice.com/legal/vulnerability-disclosure-policy/ |
no |
Beanstalk |
https://support.beanstalkapp.com/article/890-responsible-disclosure-policy |
no |
Beckhoff |
https://infosys.beckhoff.com/english.php?content=../content/1033/ipc_security/9007202382327691.html&id= |
no |
Beckman Coulter |
https://www.beckmancoulter.com/en/about-beckman-coulter/product-security |
no |
Belkin |
https://www.belkin.com/us/security/ |
no |
Bentley |
https://www.bentley.com/legal/bug-bounty-report/ |
yes |
Best Buy |
https://www.bestbuy.com/site/help-topics/responsible-disclosure/pcmcat1584549036018.c?id=pcmcat1584549036018 |
no |
Better |
https://bugcrowd.com/better |
yes |
Beyond Security |
https://www.beyondsecurity.com/ssd.html |
yes |
Beyond Trust |
https://www.beyondtrust.com/disclosure |
no |
Bigbank |
https://bugcrowd.com/bigbank |
no |
Billogram |
https://billogram.zendesk.com/hc/en-us/articles/360011911300- |
no |
Bime |
https://www.zendesk.com/company/policies-procedures/#responsible-disclosure-policy |
yes |
Binance |
https://bugcrowd.com/binance |
yes |
Binder |
https://binder.works/responsible-disclosure-program/ |
no |
Bing |
https://www.microsoft.com/en-us/msrc/bounty?rtc=1 |
no |
Bishop Fox |
https://www.bishopfox.com/vulnerability-disclosure-policy/ |
no |
BitDiscovery |
https://bugcrowd.com/bitdiscovery |
no |
BitMEX |
https://www.bitmex.com/app/security |
yes |
BitWall |
https://firebounty.com/520-bitwall-security |
no |
Bitcoin Core |
https://github.com/bitcoin/bitcoin/security/policy |
no |
Bitcoin Gold |
https://github.com/BTCGPU/Developer-Portal/blob/master/responsible-disclosure.md |
yes |
Bitcoin.de |
https://www.bitcoin.de/en/bug-bounty |
no |
Bitdefender |
https://bugcrowd.com/bitdefender |
yes |
Bitdefender Box v2 |
https://bugcrowd.com/bitdefenderbox2 |
yes |
Bitgo |
https://www.bitgo.com/bug-bounty |
yes |
Bitpay |
https://support.bitpay.com/hc/en-us/articles/204229369-Does-BitPay-have-a-bug-bounty-program- |
yes |
Bitski |
https://www.bitski.com/bounty/ |
yes |
Bitsoffreedom |
https://www.bitsoffreedom.nl/coordinated-vulnerability-disclosure-en/ |
yes |
Bitwala |
https://www.bitwala.com/security/ |
yes |
Bizmerlin |
https://www.bizmerlin.com/responsible-disclosure-policy/ |
no |
Blackbaud |
https://www.blackbaud.com/security/responsible-disclosure |
no |
Blackberry |
https://www.blackberry.com/us/en/services/blackberry-product-security-incident-response |
no |
Blackboard |
https://help.blackboard.com/Product_Security |
no |
Blade Storm |
https://bladestorm.zendesk.com/hc/en-us/articles/360010393497-Bug-Bounty-Program |
yes |
Blend |
https://bugcrowd.com/blend-vdp |
no |
Blinkforhome |
https://blinkforhome.com/pages/responsible-disclosure-policy?locale=en |
no |
Block Sender |
https://blocksender.io/vulnerability-disclosure-policy/ |
no |
Blockchain Technology Research Innovations Corporation |
https://www.btric.org/legal/security/ |
no |
Blockfi |
https://blockfi.com/security/ |
no |
Blogger |
https://www.google.com/about/appsecurity/reward-program/ |
yes |
Blue Canvas |
https://bluecanvas.io/report-vulnerability |
no |
Blue Jeans Network |
https://bugcrowd.com/bluejeans |
no |
Bluehost |
https://bugcrowd.com/endurance-bluehost |
no |
Bluescape |
https://www.bluescape.com/vulnerability-disclosure-policy/ |
no |
Board of Governors of the Federal Reserve |
https://www.federalreserve.gov/vulnerability-disclosure-policy |
no |
BoardGameGeek |
https://boardgamegeek.com/responsible_disclosure_policy |
no |
Boeing |
https://www.boeing.com/principles/ethics-and-compliance.page |
no |
Boozt Fashion |
https://bugcrowd.com/boozt-og |
yes |
Borealis |
https://www.borealisgroup.com/legal/responsible-disclosure |
no |
Bosch |
https://psirt.bosch.com/bosch-responsible-disclosure-policy/ |
no |
Bose |
https://global.bose.com/en_us/product_security_vulnerability_response.html |
yes |
Boston Scientific |
https://www.bostonscientific.com/en-US/customer-service/product-security/responsible-disclosure.html |
no |
Box |
https://www.box.com/about-us/security/ |
no |
Braintree |
https://www.braintreepayments.com/developers/disclosure |
no |
Brandcast |
https://support.brandcast.com/en/articles/990526-security-disclosure |
no |
Brave |
https://hackerone.com/brave?view_policy=true |
yes |
BringYour |
https://bringyour.com/vdp |
no |
Brisk Infosec |
https://www.briskinfosec.com/responsibledisclosure |
no |
British Gas |
https://www.britishgas.co.uk/global-maintenance/responsible-disclosure.html |
no |
British Gas Evolve |
https://www.britishgasevolve.co.uk/responsible-disclosure |
no |
Buddy |
https://buddy.works/disclosure-policy |
no |
Buffer |
https://buffer.com/legal#security |
no |
BugPoC |
https://bugcrowd.com/bugpoc-mbb |
yes |
Bugcrowd |
https://bugcrowd.com/bugcrowd |
yes |
Bugify |
https://bugify.com/security |
no |
Bugsnag |
https://docs.bugsnag.com/security/responsible-disclosure/ |
no |
Buildxact |
https://www.buildxact.com.au/responsible-disclosure/ |
no |
Buku |
https://buku.io/en/security/ |
no |
Bunq |
https://www.bunq.com/assets/media/legal/en/20161114_Responsible_Disclosure_Policy_EN.pdf |
yes |
Bynder |
https://www.bynder.com/en/legal/responsible-disclosure-policy/ |
no |
Bytedance |
https://security.bytedance.com/media/score-standard/Vulnerability_Rewards_Program.pdf |
yes |
CERT-In |
https://www.cert-in.org.in/PDF/Vul_Report.pdf |
no |
CERT/CC |
https://vuls.cert.org/confluence/display/Wiki/Vulnerability+Disclosure+Policy |
no |
CISA |
https://www.cisa.gov/coordinated-vulnerability-disclosure-process |
no |
CNN Store |
https://cnn.zendesk.com/hc/en-us/articles/115005570566-Responsible-Disclosure-of-Security-Vulnerabilities- |
no |
CNote |
https://www.mycnote.com/vulnerability-disclosure-program/ |
no |
Caffeine |
https://bugcrowd.com/caffeine |
yes |
Campaign Monitor |
https://www.campaignmonitor.com/trust/report-a-vulnerability/ |
yes |
Canva |
https://www.canva.com/security/bug-bounty/ |
yes |
Capital One |
https://www.capitalone.com/digital/responsible-disclosure/ |
no |
Carbon Black |
https://www.carbonblack.com/legal/reporting-security-vulnerability/ |
no |
CaresSource |
https://www.caresource.com/about-us/legal/responsible-disclosure-statement/ |
no |
Carestream |
https://www.carestream.com/en/us/services-and-support/cybersecurity-and-privacy |
no |
Carrier |
https://www.corporate.carrier.com/contact-us/ |
no |
Castle Gate IT |
https://www.castlegateit.co.uk/docs/ethical-policy.pdf |
no |
Catawiki |
https://www.catawiki.com/conditions/responsible-disclosure.pdf |
no |
Caterpillar |
https://www.cat.com/en_US/support/maintenance/c/report-potential-information-security-vulnerabilities.html |
no |
Centers for Medicare & Medicaid Services |
https://www.cms.gov/Research-Statistics-Data-and-Systems/CMS-Information-Technology/CIO-Directives-and-Policies/Downloads/CMS-Vulnerability-Disclosure-Policy.pdf |
no |
Centers for Medicare and Medicaid Services |
https://www.cms.gov/Research-Statistics-Data-and-Systems/CMS-Information-Technology/CIO-Directives-and-Policies/Downloads/CMS-Vulnerability-Disclosure-Policy.pdf |
no |
Central Bank |
https://www.centralbank.net/personal/security/responsible-disclosure/ |
no |
Centrica |
https://www.centrica.com/site-tools/security/ |
no |
Centrify |
https://bugcrowd.com/centrify |
yes |
ChainRift |
https://medium.com/chainrift/chainrift-launches-bug-bounty-program-6255eb2d518d |
yes |
Chainlink |
https://hackerone.com/chainlink |
yes |
Chalk |
https://www.chalk.com/security/ |
no |
Chameleon |
https://www.trychameleon.com/security/disclosure |
yes |
Channable |
https://www.channable.com/bug-bounty/ |
no |
Chargify |
https://www.chargify.com/security/ |
no |
Chartio |
https://chartio.com/product/responsible-disclosure/ |
no |
Chase |
https://responsibledisclosure.jpmorganchase.com/hc/en-us |
no |
Check |
https://www.federacy.com/check |
yes |
Choice Hotel |
https://www.choicehotels.com/legal/responsible-disclosure |
no |
Circ.lu |
https://www.circl.lu/pub/responsible-vulnerability-disclosure/ |
no |
CircleCi |
https://circleci.com/security/ |
no |
Circonus |
https://www.circonus.com/security/disclosure/ |
no |
Cisco |
https://tools.cisco.com/security/center/resources/security_vulnerability_policy.html |
no |
Cisco Meraki |
https://bugcrowd.com/ciscomeraki |
yes |
Citigroup |
https://online.citi.com/US/JRS/pands/detail.do?ID=ReportingVulnerability |
no |
Citrix |
https://www.citrix.com/about/trust-center/vulnerability-process.html |
no |
City-Data.com |
http://www.city-data.com/bug-bounty.html |
yes |
Clario |
https://hackerone.com/clario |
yes |
Claromentis |
https://www.claromentis.com/responsible-disclosure-policy/ |
no |
Classdojo |
https://www.classdojo.com/securitydisclosureprogram/ |
yes |
Clause |
https://clause.io/security |
yes |
Clean Email |
https://clean.email/vdp |
no |
Clenergy |
https://clenergy.com/de/cyber-security-policy/?lang=en |
yes |
Cleverly |
https://cleverly.ai/responsible-disclosure-program/ |
no |
ClimbingTree |
https://www.climbingtree.nl/responsibledisclosure.php?language=en |
no |
Clipperz |
https://clipperz.is/security_privacy/responsible_disclosure_policy/ |
no |
Clocktimizer |
https://www.clocktimizer.com/about/responsible-disclosure/ |
no |
Cloud9 IDE |
https://c9.io/security |
no |
CloudCannon |
https://cloudcannon.com/bug-bounty/ |
yes |
CloudFlare |
https://www.cloudflare.com/en-gb/disclosure/ |
no |
Cloudapp |
https://support.getcloudapp.com/article/260-responsible-disclosure-report-found-vulnerabilities |
no |
Cloudbees |
https://www.cloudbees.com/security-policy |
no |
Cloudera |
https://www.cloudera.com/contact-us/security.html |
no |
Cloudinary |
https://bugcrowd.com/cloudinary |
yes |
Cloudreach |
https://www.cloudreach.com/en/legal/vulnerability-disclosure-notice/ |
no |
Cloudways |
https://bugcrowd.com/cloudways |
yes |
ClubCollect |
https://www.clubcollect.com/en/responsible-disclosure/ |
no |
ClubHouse |
https://clubhouse.io/disclosure/ |
no |
Co-Operative bank |
https://www.co-operativebank.co.uk/global/security/responsible-security-disclosure |
no |
Coalfire |
https://www.coalfire.com/vulnerability-disclosure-policy |
no |
Cobalt |
https://cobalt.io/security/practices |
no |
Cobu |
https://intercom.help/cobu/en/articles/4342104-member-agreement |
no |
Cockroach Labs |
https://www.cockroachlabs.com/security/responsible-disclosure-policy/ |
no |
Code Climate |
https://codeclimate.com/security |
no |
Coder |
https://www.coder.com/security/policy |
no |
Cofense |
https://cofense.com/responsible-disclosure/ |
no |
Coffee & Bagel Brands |
https://www.coffeeandbagels.com/responsible-disclosure/ |
no |
Coin Wallet |
https://coinapp.zendesk.com/hc/en-us/articles/115001730468-Does-CoinSpace-have-a-bug-bounty-program- |
yes |
CoinJar |
https://www.coinjar.com/bounty |
yes |
Coinbase |
https://coinbase.com/whitehat |
yes |
Coinpayments |
https://www.coinpayments.net/help-bug-bounty |
yes |
Cointracker |
https://www.cointracker.io/security |
yes |
Comcast |
https://my.xfinity.com/vulnerabilityreport |
no |
Commodity Futures Trading Commission |
https://www.cftc.gov/vulnerability-disclosure-policy |
no |
Commonsware |
https://commonsware.com/bounty.html |
no |
Compass |
https://www.compass.com/legal/responsible-disclosure/ |
no |
Compose |
https://www.compose.com/security |
no |
Conclusion |
https://www.conclusion.nl/kleine-lettertjes/responsible-disclosure |
no |
Concrete5 |
https://www.concrete5.org/developers/security |
no |
Constant Contact |
https://bugcrowd.com/constantcontact |
no |
Consumer Financial Protection Bureau |
https://www.cfpb.gov/vulnerability-disclosure-policy |
no |
Consumer Product Safety Commission |
https://www.cpsc.gov/vulnerability-disclosure-policy |
no |
Contentful |
https://www.contentful.com/security/ |
no |
Contrast Security |
https://www.contrastsecurity.com/disclosure-policy |
no |
ConvertKit |
https://bugcrowd.com/convertkit-vdp |
no |
Copper |
https://hackerone.com/copper |
no |
CoreOS |
https://coreos.com/security/disclosure/ |
no |
Council of European National Top-Level Domain Registries |
https://www.centr.org/responsible-disclosure-policy.html |
no |
Council of the Inspectors General on Integrity and Efficiency |
https://www.ignet.gov/vulnerability-disclosure-policy |
no |
Countly |
https://count.ly/.well-known/security.txt |
|
Coupa |
https://success.coupa.com/Trust/Security_Policies/02_Vulnerability_Reporting_Policy |
no |
Court Services and Offender Supervision Agency |
https://www.csosa.gov/vulnerability-disclosure-policy |
no |
CoverMyMeds |
https://www.covermymeds.com/main/about/privacy/responsible-disclosure-program/ |
no |
Cox.com |
https://www.cox.com/aboutus/policies/cox-security-responsible-disclosure-policy.html |
no |
Cozy |
https://cozy.co/security-and-privacy/ |
no |
Craigslist |
https://www.craigslist.org/contact?step=form&reqType=security |
no |
Crashtest Security |
https://crashtest-security.com/responsible-disclosure/ |
no |
Credit Karma |
https://bugcrowd.com/creditkarma |
yes |
Cruise |
https://www.getcruise.com/security |
no |
Curl |
https://hackerone.com/curl |
yes |
Currencycloud |
https://www.currencycloud.com/legal/responsible-disclosure/ |
no |
Customer Insight |
https://customerinsight.ca/CI/security-statement/ |
no |
Customer.io |
https://customer.io/legal/reporting-vulnerability/ |
no |
Cvent |
https://www.cvent.com/en/event-management-software/vulnerability-disclosure-program |
no |
Cyber Sprint |
https://www.cybersprint.com/responsible-disclosure/ |
no |
Cybermarqt |
https://cybermarqt.com/responsible-disclosure |
no |
Cybrary |
https://www.cybrary.it/info/responsible-disclosure-program/ |
no |
DC.Gov |
https://octo.dc.gov/publication/responsible-disclosure-policy |
no |
DC3 |
https://www.dc3.mil/Vulnerability-Disclosure/Vulnerability-Disclosure-Program-VDP/ |
no |
DJI |
https://security.dji.com/policy?lang=en_US |
yes |
DNN Corporation |
https://www.dnnsoftware.com/platform/share/bug-reporting |
no |
DNSimple |
https://dnsimple.com/security |
no |
DPD |
https://getdpd.com/security/ |
yes |
Dailymotion |
https://yeswehack.com/programs/dailymotion-public-bug-bounty |
yes |
Daimler |
https://www.daimler.com/whitehat/ |
no |
Danske Bank |
https://danskebank.com/responsible-disclosure |
no |
Dassault Systemes SE (3DS) |
https://www.3ds.com/vulnerability-reporting/ |
no |
Dato Capital |
https://en.datocapital.com/report-security-issue.html |
no |
DeNederlandscheBank |
https://www.dnb.nl/en/responsible-disclosure/index.jsp |
yes |
Debian Security Tracker |
http://www.debian.org/Bugs/ |
no |
Debricked |
https://debricked.com/report-a-vulnerability/ |
yes |
Decos |
https://www.decos.com/en/security |
no |
Decred |
https://bounty.decred.org/ |
yes |
DefectDojo |
https://hackerone.com/defectdojo |
no |
Defense Nuclear Facilities Safety Board |
https://www.dnfsb.gov/vulnerability-disclosure-policy |
no |
Defibox |
https://support.newdex.net/hc/en-us/articles/360046715092-Defibox-launches-bug-bounty-program-officially |
yes |
Definity Inc. |
https://definityinc.com/bug-bounty-program/ |
yes |
Delaware Consulting |
https://www.delawareconsulting.com/en-us/about-us/responsible-disclosure |
no |
Dell Technologies Application Bug Bounty |
https://bugcrowd.com/dell-com |
yes |
Dell Technologies' Products Bug Bounty Program |
https://bugcrowd.com/dell-product |
yes |
Deltatre |
https://www.deltatre.com/coordinated-vulnerability-disclosure |
no |
Democracy Live |
https://democracylive.com/disclosure-policy/ |
no |
Denali Commission |
https://www.denali.gov/vulnerability-disclosure-policy |
no |
Dentrix |
https://www.dentrix.com/support/data-security/bug-bounty-program |
yes |
Dentsu |
https://www.dentsu.com/uk/en/policies/responsible-disclosure-policy |
no |
Department Of Defense |
https://hackerone.com/deptofdefense |
no |
Department of Commerce |
https://www.doc.gov/vulnerability-disclosure-policy |
no |
Department of Education |
https://www.ed.gov/vulnerability-disclosure-policy |
no |
Department of Health and Human Services |
https://www.hhs.gov/vulnerability-disclosure-policy |
no |
Department of Homeland Security |
https://www.dhs.gov/vulnerability-disclosure-policy |
no |
Department of Housing and Urban Development |
https://www.hud.gov/vulnerability-disclosure-policy |
no |
Department of Justice |
https://www.justice.gov/vulnerability-disclosure-policy |
no |
Department of Labor |
https://www.dol.gov/vulnerability-disclosure-policy |
no |
Department of State |
https://www.state.gov/vulnerability-disclosure-policy/ |
no |
Department of Transportation |
https://www.dot.gov/vulnerability-disclosure-policy |
no |
Department of Veterans Affairs |
https://www.va.gov/vulnerability-disclosure-policy |
no |
Department of the Interior |
https://www.doi.gov/vulnerability-disclosure-policy |
no |
Department of the Treasury |
https://www.treasury.gov/vulnerability-disclosure-policy |
no |
Deps |
https://www.deps.co/security/ |
no |
Deputy |
https://www.deputy.com/terms/responsible-disclosure-safe-harbor-policy |
no |
Deribit |
https://www.deribit.com/pages/information/bug-bounty-program |
yes |
Desjardins |
https://www.desjardins.com/ca/security/report-potential-vulnerability/index.jsp |
no |
DeskPro |
https://www.deskpro.com/security/responsible-disclosure/ |
yes |
Detectify |
https://detectify.com/responsible-disclosure |
no |
Deutsche Bank |
https://www.db.com/legal-resources/responsible-disclosure-process |
no |
Deutsche Telekom |
https://www.telekom.com/en/corporate-responsibility/data-protection-data-security/security/details/closing-security-gaps-360054 |
yes |
Devo |
https://www.devo.com/responsible-vulnerability-disclosure-program/ |
no |
Digital Asset |
https://www.digitalasset.com/responsible-disclosure |
no |
DigitalOcean |
https://hackerone.com/digitalocean |
yes |
Directly |
https://bugcrowd.com/directly |
yes |
Discourse |
https://hackerone.com/discourse |
yes |
Discover Financial Services |
https://discover.responsibledisclosure.com/hc/en-us |
no |
District of Columbia Government |
https://octo.dc.gov/sites/default/files/dc/sites/octo/publication/attachments/Responsible%20Disclosure%20Policy%20.pdf |
no |
Docker |
https://www.docker.com/legal/security |
|
Dominion Voting Systems |
https://www.dominionvoting.com/coordinated-vulnerability-disclosure-policy/ |
no |
Domino's |
https://dominos.responsibledisclosure.com/hc/en-us |
no |
Dozuki |
https://help.dozuki.com/Info/Responsible_Disclosure |
yes |
DragonEx |
https://dragonex.zendesk.com/hc/en-us/articles/360036938832-BUG-Bounty-Program |
yes |
Dream11 |
https://www.dream11.com/security/rvdp |
no |
Drexel University |
https://drexel.edu/it/security/services-processes/bug-bounty/ |
no |
Droom |
https://droom.in/bugbounty |
no |
Drugs.com |
https://www.drugs.com/support/responsible-disclosure-policy.html |
no |
Drupal |
https://www.drupal.org/drupal-security-team |
no |
Dualog |
https://www.dualog.com/legal/vulnerability-disclosure-program |
no |
DuckDuckGo |
https://hackerone.com/duckduckgo |
no |
Duke Health |
https://security.duke.edu/policies/responsible-disclosure |
no |
Duo |
https://duo.com/support/security-and-reliability/security-response |
no |
Duo Security |
https://duo.com/support/security-and-reliability/security-response |
|
EC-Council |
https://www.eccouncil.org/bug-bounty/ |
no |
ENS |
https://docs.ens.domains/bug-bounty-program |
yes |
Early Warning |
https://www.earlywarning.com/responsible-disclosure-program |
no |
Easycollect Services |
https://easycollectservices.com/responsible-disclosure/ |
no |
Eclipse |
http://www.eclipse.org/security/ |
no |
Ecobee |
https://hackerone.com/ecobee |
no |
Edelman Financial Engines |
https://www.edelmanfinancialengines.com/vulnerability-disclosure |
no |
Edwards |
https://www.edwards.com/devices/support/product-security |
no |
Eero |
https://bugcrowd.com/eero |
no |
Eggy |
https://eggy.com.au/vulnerability-disclosure/ |
no |
Election Assistance Commission |
https://www.eac.gov/vulnerability-disclosure-policy |
no |
Election Systems & Software |
https://www.essvote.com/wp-content/uploads/2020/08/ESS_vulnerability_disclosure_policy.pdf |
no |
Electron |
https://github.com/electron/electron/blob/main/SECURITY.md |
|
Electronic Arts |
https://www.ea.com/security/disclosure |
no |
Electronic Frontier Foundation |
https://www.eff.org/security |
no |
Elektra Labs |
https://www.elektralabs.com/security |
no |
Eligible |
https://eligible.com/responsible_disclosure_program |
yes |
Elive |
https://www.elvie.com/security-research-and-responsible-disclosure |
no |
Ellucian |
https://www.ellucian.com/responsible-disclosure |
no |
Ember.js |
https://emberjs.com/security/ |
no |
Emma |
https://myemma.com/trust/report-a-vulnerability/ |
yes |
Eneco Group |
https://www.eneco.com/responsible-disclosure/ |
no |
Envato |
https://webuild.envato.com/helpful-hacker/ |
no |
Environmental Protection Agency |
https://www.epa.gov/vulnerability-disclosure-policy |
no |
Envoy |
https://github.com/envoyproxy/envoy/blob/main/SECURITY.md |
no |
Equal Employment Opportunity Commission |
https://www.eeoc.gov/vulnerability-disclosure-policy |
no |
Equifax |
https://hackerone.com/equifax |
no |
Erasmus University Rotterdam |
https://www.eur.nl/en/campus/locations/campus-woudestein/security-safety/information-security/responsible-disclosure |
no |
Eset |
https://www.eset.com/int/security-vulnerability-reporting/ |
yes |
Ethereum Foundation |
https://bounty.ethereum.org/ |
yes |
Etherscan |
https://etherscan.io/bugbounty |
yes |
Etsy |
https://bugcrowd.com/etsy |
yes |
Eurid |
https://eurid.eu/lv/other-infomation/eurid-responsible-disclosure-policy/ |
yes |
Event Espresso |
https://eventespresso.com/report-a-security-vulnerability/ |
no |
Eventbrite |
http://www.eventbrite.com/security/ |
no |
Evernote |
https://evernote.com/security/report-issue |
no |
Exness |
https://hackerone.com/exness |
yes |
Expatistan |
https://www.expatistan.com/security |
no |
Export-Import Bank of the United States |
https://www.exim.gov/vulnerability-disclosure-policy |
no |
ExpressVPN |
https://bugcrowd.com/expressvpn |
yes |
F Secure |
https://www.f-secure.com/en/business/programs/vulnerability-reward-program |
yes |
F-Secure |
https://labs.f-secure.com/vulnerability-disclosure-policy/ |
no |
F5 Networks |
https://support.f5.com/csp/article/K4602 |
no |
FFmpeg |
http://www.ffmpeg.org/security.html |
no |
FIS |
https://bugcrowd.com/fis |
yes |
FUSION |
https://www.fusion.org/developers/bug-bounty#bugs |
yes |
Facebook |
https://www.facebook.com/whitehat |
yes |
Fair |
https://www.fair.com/bug-bounty |
yes |
FanDuel |
https://www.fanduel.com/security |
yes |
Fannie Mae |
https://www.fanniemae.com/about-us/reporting-technology-vulnerability |
no |
Farm Credit Administration |
https://www.fca.gov/vulnerability-disclosure-policy |
no |
Farm Credit System Insurance Corporation |
https://www.fcsic.gov/vulnerability-disclosure-policy |
no |
Farmbot |
https://developer.farm.bot/docs/responsible-disclosure-of-security-vulnerabilities |
no |
FastMail |
https://www.fastmail.com/about/bugbounty.html |
yes |
Fastly |
https://www.fastly.com/security/report-security-issue |
no |
Favor |
https://favordelivery.com/security |
no |
Federacy |
https://www.federacy.com/federacy |
yes |
Federal Communications Commission |
https://www.fcc.gov/vulnerability-disclosure-policy |
no |
Federal Energy Regulatory Commission |
https://www.ferc.gov/vulnerability-disclosure-policy |
no |
Federal Housing Finance Agency |
https://www.fhfa.gov/vulnerability-disclosure-policy |
no |
Federal Labor Relations Authority |
https://www.flra.gov/vulnerability-disclosure-policy |
no |
Federal Mediation and Conciliation Service |
https://www.fmcs.gov/vulnerability-disclosure-policy |
no |
Federal Retirement Thrift Investment Board |
https://www.frtib.gov/vulnerability-disclosure-policy |
no |
Federal Trade Commission |
https://www.ftc.gov/vulnerability-disclosure-policy |
no |
Ferm Rotterdam |
https://ferm-rotterdam.nl/nl/responsible-disclosure-statement |
yes |
Fermi Laboratory |
https://computing.fnal.gov/cybersecurity/vulnerability-disclosure-policy/ |
no |
Fermi National Accelerator Laboratory |
https://computing.fnal.gov/cybersecurity/vulnerability-disclosure-policy/ |
no |
Fiat Chrysler Automobiles |
https://bugcrowd.com/fca |
yes |
FileZilla |
https://hackerone.com/filezilla_h1c |
no |
Filecoin |
https://security.filecoin.io/bug-bounty/ |
yes |
Files.com |
https://hackerone.com/files |
yes |
Finder |
https://www.finder.com.au/vulnerability-disclosure-policy |
no |
Finleap Connect |
https://connect.finleap.com/responsible-disclosure-statement/ |
no |
Firebase |
https://g.co/vrp |
no |
Fireeye |
https://www.fireeye.com/company/security.html |
no |
First |
https://www.first.org/about/bugs |
no |
Fitbit |
https://bugcrowd.com/fitbit |
yes |
Flo |
https://flo.health/responsible-vulnerability-disclosure-program |
no |
Float |
https://www.float.sg/disclosure |
no |
FloorDAO |
https://docs.floor.xyz/v/en/protocol/bug-bounty |
yes |
Flow |
https://flow.com/flow-responsible-disclosure |
yes |
Fluxiom |
https://www.fluxiom.com/security |
no |
Follow Up Boss |
https://www.followupboss.com/vulnerability-disclosure-policy |
no |
Fontys |
https://fontys.edu/About-Fontys-4/Responsible-disclosure.htm |
no |
Forage |
https://www.theforage.com/security/disclosure |
no |
Forcyd |
https://www.forcyd.com/responsible-disclosure/ |
no |
Ford |
https://hackerone.com/ford |
yes |
ForeScout Technologies |
https://hackerone.com/forescout_technologies |
yes |
Forhosting |
https://www.forhosting.pro/responsibledisclosure |
no |
Fortiguard |
https://fortiguard.com/zeroday/responsible-disclosure |
no |
Fountain |
https://www.fountain.com/security |
no |
Foursquare |
https://foursquare.com/about/security |
no |
Fox-IT |
https://www.fox-it.com/en/responsible-disclosure/ |
no |
Foxit |
https://www.foxitsoftware.com/support/report-security-vulnerabilities.html |
no |
Foxit Software |
https://www.foxitsoftware.com/support/responsible-disclosure-policy.html |
no |
FoxyCart |
https://bugcrowd.com/foxycart |
yes |
FranConnect |
https://www.franconnect.com/vulnerability-disclosure-policy/ |
no |
Frax Finance |
https://docs.frax.finance/smart-contracts/miscellaneous |
yes |
Free Law Project |
https://free.law/vulnerability-disclosure-policy/ |
no |
Freelancer |
https://www.freelancer.com/about/security |
no |
Freshbooks |
https://www.freshbooks.com/policies/responsible-disclosure |
no |
Freshworks |
https://www.freshworks.com/security/responsible-disclosure/ |
no |
Frontspin |
https://www.frontspin.com/vulnerability-disclosure-program/ |
no |
Fuga |
https://fuga.cloud/responsible-disclosure-policy/ |
no |
Fullstory |
https://fullstory.responsibledisclosure.com/hc/en-us |
no |
FusionFabric.cloud |
https://fusionfabriccloud.responsibledisclosure.com/hc/en-us |
no |
G Data |
https://www.gdata-software.com/vulnerability-disclosure |
no |
GO-JEK |
https://bugcrowd.com/gojek |
yes |
GSMA |
https://www.gsma.com/security/gsma-coordinated-vulnerability-disclosure-programme/ |
no |
Gallagher |
https://security.gallagher.com/en/Responsible-Disclosure-Policy |
no |
Gamma |
https://www.gamma.nl/klantenservice/veiligheid-privacy/responsible-disclosure |
yes |
Garantibank International |
https://www.garantibank.eu/about-us/security/responsible-disclosure |
no |
Garmin |
https://www.garmin.com/en-US/legal/security/ |
no |
Garofalo |
https://garofalo.zendesk.com/hc/en-us/articles/360034129952-Report-Site-Vulnerabilities |
no |
Gay.Capital |
https://gay.capital/docs/bugbounty |
no |
Gcore |
https://gcore.com/bug-bounty-program/ |
yes |
Geckoboard |
https://support.geckoboard.com/hc/en-us/articles/115007061468-Responsible-Disclosure-Policy |
no |
Gemfury |
https://fury.co/security |
no |
General Electric |
https://www.ge.com/security |
no |
General Electric Healthcare |
https://www.gehealthcare.com/security/cvd |
no |
General Motors Company |
https://hackerone.com/gm |
no |
General Services Administration |
https://www.gsa.gov/vulnerability-disclosure-policy |
no |
Geniebelt |
https://www.letsbuild.com/responsible-disclosure |
no |
Georgia Tech |
https://policylibrary.gatech.edu/information-technology/responsible-disclosure-policy |
no |
Geotab |
https://www.geotab.com/security/ |
no |
GetAmbassador |
https://blog.getambassador.io/security-in-ambassador-a-risk-based-approach-fd24e364ea84 |
no |
GetYourGuide |
https://www.getyourguide.com/security |
no |
Getbase |
https://bugbounty.getbase.com/ |
no |
Ghost |
https://github.com/TryGhost/Ghost/blob/master/SECURITY.md |
no |
Ghostscript |
https://ghostscript.com/Bug_bounty_program.html |
yes |
Gigamon |
https://www.gigamon.com/security-disclosure.html |
no |
Gitcoin |
https://docs.gitcoin.co/mk_securitybounty/ |
yes |
Github |
https://bounty.github.com/ |
yes |
Gitlab |
https://about.gitlab.com/security/disclosure/ |
no |
Gitpod |
https://www.gitpod.io/security/report |
no |
Glance Networks |
https://ww2.glance.net/privacy-policy/ |
no |
Golden Section Technology |
https://www.gstdev.com/responsive-disclosure |
no |
Goldman Sachs |
https://www.goldmansachs.com/privacy-and-cookies/global-privacy-policy.html |
yes |
Google |
https://www.google.com/about/appsecurity/ |
yes |
Google Chrome |
https://www.google.com/about/appsecurity/chrome-rewards/ |
yes |
Google PRP |
https://www.google.com/about/appsecurity/patch-rewards/index.html |
yes |
Government of Netherlands |
https://www.government.nl/topics/cybercrime/fighting-cybercrime-in-the-netherlands/responsible-disclosure |
no |
Govtech Singapore |
https://www.tech.gov.sg/report_vulnerability |
no |
Grab |
https://hackerone.com/grab |
yes |
Gradle |
https://github.com/gradle/.github/blob/master/SECURITY.md |
no |
Grafana |
https://github.com/grafana/bugbounty |
yes |
GreenBone |
https://www.greenbone.net/en/responsible-disclosure/ |
no |
Grofers |
https://grofers.com/bug-bounty |
|
Grok Learning |
https://groklearning.com/policies/security/ |
no |
Group Renault |
https://group.renault.com/en/vulnerability-disclosure-policy/ |
no |
Groupe Renault |
https://group.renault.com/en/vulnerability-disclosure-policy/ |
no |
Guardian360 |
https://www.guardian360.net/coordinated-vulnerability-disclosure/ |
no |
Guilded |
https://support.guilded.gg/hc/en-us/articles/360039728333-Contact |
no |
Gusto |
https://bugcrowd.com/gusto |
yes |
HCL |
https://www.hcltech.com/software/psirt/hcl-software-vulnerability-disclosure-policy |
no |
HDMS |
https://www1.hdms.com/responsible-vulnerability-disclosure-policy/ |
no |
HID |
https://www.hidglobal.com/security-center |
no |
HR Partner |
https://www.hrpartner.io/security.html |
no |
HTC |
https://www.htc.com/us/terms/product-security/ |
no |
Hack Me! |
https://bugcrowd.com/hackme |
no |
Hackchecks Infosec Solutions |
https://hackchecks.in/responsible-disclosure/ |
no |
HackerRank |
https://docs.google.com/document/d/e/2PACX-1vQnpwaSmghgwwepiui4dqNw3S2LslBM1woAYaTuX6q9KenJ2zAgBpBPivdC8sQs2Gy-FKKuxWJLYwIz/pub |
no |
Harmony |
http://get.harmonyapp.com/security/ |
no |
Hart InterCivic |
https://www.hartintercivic.com/wp-content/uploads/HartVulnerabilityDisclosurePolicy_82020.pdf |
no |
Hasbro |
https://docs.hasbro.com/upload/legal/responsible_disclosure_2020.pdf |
no |
HealthifyMe |
https://bugcrowd.com/healthifyme |
no |
Hellosign |
https://www.hellosign.com/trust/security |
yes |
Hermes Parcelnet |
https://www.myhermes.co.uk/responsible-disclosure-policy |
no |
Heroku |
https://www.heroku.com/policy/security |
yes |
Hewlett Packard |
https://www.hpe.com/us/en/services/security-vulnerability.html |
no |
Hewlett Packard Enterprises |
https://www.hpe.com/us/en/services/security-vulnerability.html |
no |
Hex-Rays |
https://www.hex-rays.com/bugbounty/ |
yes |
HiddenLayer |
https://hiddenlayer.com/vulnerability-disclosure-policy/ |
no |
Hillrom |
https://www.hillrom.com/en/responsible-disclosures/ |
no |
Hindawi |
https://www.hindawi.com/responsible-disclosure-policy/ |
no |
HitBTC |
https://hitbtc.com/bug-report |
yes |
Hive Home |
https://www.hivehome.com/security |
no |
Hiver |
https://hiverhq.com/disclosure |
no |
Holland Controls |
https://www.holland-controls.com/responsible-disclosure |
no |
Honeycomb.io |
https://www.honeycomb.io/bugbountyprogram/ |
no |
Honeywell |
https://www.honeywell.com/us/en/product-security |
no |
Hootsuite |
https://hootsuite.com/security/response |
no |
HostFact |
https://www.hostfact.nl/security/ |
no |
Hostinger |
https://www.hostinger.com/responsible-disclosure-policy |
yes |
Huawei |
https://www.huawei.com/en/psirt/report-vulnerabilities |
no |
HubSpot |
https://bugcrowd.com/hubspot |
no |
Humble Bundle |
https://bugcrowd.com/humblebundle |
no |
Hunter.io |
https://hunter.io/security-bounty-program |
yes |
Hyatt |
https://hackerone.com/hyatt |
yes |
Hyundai |
https://www.hyundaiusa.com/us/zh/vulnerability-disclosure |
no |
IBM |
https://hackerone.com/ibm |
no |
IDFC |
https://www.idfcbank.com/content/dam/idfc/image/security-tips/pdf/Responsible-Disclosure-Program.pdf |
no |
IHC |
https://www.royalihc.com/en/responsible-disclosure-policy |
no |
IHG |
https://www.ihg.com/content/us/en/customer-care/privacy-and-cookie-center/responsible-disclosure |
no |
ING NL |
https://www.ing.nl/de-ing/veilig-bankieren/fraude-melden/meldpunt-kwetsbaarheden/index.html |
yes |
IOTA |
https://github.com/iotaledger/iota-java/blob/dev/.github/SECURITY.md |
yes |
IPFS |
https://github.com/ipfs/go-ipfs#security-issues |
|
Ibotta |
https://bugcrowd.com/ibotta |
yes |
Icann |
https://www.icann.org/vulnerabilities |
no |
IconFinder |
https://support.iconfinder.com/en/articles/18178-responsible-disclosure-of-security-vulnerabilities |
no |
Iconloop |
https://hackerone.com/iconloop_inc |
yes |
Idaho Secretary of State |
https://voteidaho.gov/vulnerability-disclosure-policy/ |
no |
Idena |
https://www.idena.io/contribute#contribute-3-1 |
yes |
Illumio |
https://illumio.responsibledisclosure.com/hc/en-us |
no |
Ilumy |
https://ilumy.com/cases/responsible-disclosure |
no |
ImmutableSoft |
https://immutablesoft.github.io/ImmutableEcosystem/ |
yes |
Impero Software |
https://www.imperosoftware.com/fr/reporting-vulnerabilities/ |
no |
Imperva |
https://www.imperva.com/legal/responsible-disclosure-policy/ |
no |
InVision |
https://bugcrowd.com/invision |
yes |
Indeed |
https://bugcrowd.com/indeed |
yes |
Independer |
https://www.independer.nl/algemeen/info/responsible-disclosure.aspx |
yes |
InfStones |
https://infstones.com/blog/education/introducing-the-blocguardians-bug-bounty-program-654e723bd9afaf003e44fdea |
yes |
Inflectra |
https://www.inflectra.com/company/responsible-disclosure.aspx |
no |
Infoplus Commerce |
https://www.infopluscommerce.com/legal/responsible-disclosure-policy |
no |
Informatiebeveiliging |
https://informatiebeveiliging.nl/ |
no |
Ing |
https://www.ing.com/ING.com-Security.htm |
yes |
Ingenico |
https://www.ingenico.com/responsible-disclosure-program |
no |
InnoGames |
https://hackerone.com/innogames |
yes |
Innovative Emergency Management |
https://iem.com/privacy/responsible-vulnerability-disclosure-guidelines/ |
no |
Institute of Museum and Library Services |
https://www.imls.gov/vulnerability-disclosure-policy |
no |
Instructure |
https://www.instructure.com/canvas/blog/instructures-proven-security-vulnerability-disclosure-program |
yes |
Insulet |
https://www.myomnipod.com/product-security |
no |
IntegraXor (SCADA) |
https://www.integraxor.com/integraxor-hmi-scada-bug-bounty-program/ |
yes |
Intel |
https://www.intel.com/content/www/us/en/security-center/default.html |
yes |
Intercom |
https://bugcrowd.com/intercom |
yes |
Intermedia |
https://www.intermedia.net/about-us/vulnerability-disclosure |
no |
Internetwache |
https://en.internetwache.org/security/ |
no |
Intuo |
https://www.intuo.io/security |
no |
IpSwitch |
https://www.ipswitch.com/vulnerability-disclosure-policy |
no |
Iris Automation |
https://www.irisonboard.com/responsible-disclosure/ |
no |
IronCore Labs |
https://ironcorelabs.com/trust-center/bug-bounty-program |
yes |
Issuu |
https://issuu.com/responsible-disclosure |
no |
Iterable |
https://iterable.com/trust/responsible-disclosure-policy/ |
no |
Ivanti |
https://www.ivanti.com/support/contact-security |
no |
JCPenny |
https://www.jcpenney.com/m/responsible-disclosure-program |
no |
JD Services |
https://jd-services.eu/vdp/ |
yes |
JSOF |
https://www.jsof-tech.com/vulnerability-disclosure-policy/ |
no |
JT |
https://business.jtglobal.com/responsible-disclosure/ |
no |
Jackal Protocol |
https://jackaldao.medium.com/announcement-jackal-bug-bounty-program-31d4e03ab7e2 |
yes |
James Madison Memorial Fellowship Foundation |
https://www.jamesmadison.gov/vulnerability-disclosure-policy |
no |
Jamf |
https://www.jamf.com/security/vulnerability-disclosure/ |
no |
Jamieweb |
https://www.jamieweb.net/contact/ |
no |
Jazz Networks |
https://www.jazznetworks.com/security/ |
no |
Jefferson Bank |
https://www.jefferson-bank.com/personal/security/responsible-disclosure/ |
no |
Jenkins |
https://www.jenkins.io/security/reporting/ |
no |
JetBrains |
https://www.jetbrains.com/legal/terms/coordinated-disclosure.html |
yes |
Jisc |
https://www.jisc.ac.uk/contact/vulnerability-disclosure-policy |
no |
John Deere |
https://www.deere.com/en/digital-security/responsible-disclosure/ |
no |
Johnson & Johnson |
https://www.productsecurity.jnj.com/ |
no |
Joyus |
https://joyus.zendesk.com/hc/en-us/articles/115005402923-Responsible-Disclosure-of-Security-Vulnerabilities- |
no |
Jruby |
https://www.jruby.org/security |
no |
Jumbo Privacy |
https://bugcrowd.com/jumboprivacy |
yes |
Jumo |
https://www.jumo.world/responsible-disclosure/ |
no |
Jumpcloud |
https://jumpcloud.com/vulnerability-disclosure-policy |
no |
JumpleAd |
https://jumplead.com/about/security |
yes |
Juniper |
https://www.juniper.net/us/en/security/report-vulnerability/ |
no |
KFC |
https://kfc.responsibledisclosure.com/hc/en-us |
no |
KISS Investments |
https://kissinvestments.com/responsible-disclosure/ |
no |
KNB NL |
https://www.knb.nl/english/responsible-disclosure |
no |
KPN |
https://www.kpn.com/algemeen/missie-en-privacy-statement/beveiligingskwetsbaarheid/beveiligingslek-melden.htm |
no |
Kadince |
https://hackerone.com/kadince |
no |
Karbon |
https://karbonhq.com/security/vulnerability-disclosure |
no |
Kaspersky |
https://support.kaspersky.com/vulnerability |
yes |
Kayak |
https://www.kayak.co.in/security |
no |
Kayesa |
https://www.kaseya.com/legal/vulnerability-disclosure-policy/ |
no |
Keeper Security |
https://bugcrowd.com/keepersecurity |
no |
Keming Labs |
https://keminglabs.com/security_disclosure/ |
no |
Kenna Security |
https://bugcrowd.com/kennasecurity |
yes |
KeyBank |
https://www.key.com/about/security/privacy-security.jsp |
no |
Kinde |
https://kinde.com/docs/important-information/vulnerability-disclosure-policy/ |
no |
Kissflow |
https://kissflow.com/responsible-disclosure/ |
yes |
Kiwa |
https://www.kiwa.com/en/responsible-disclosure-policy/ |
no |
Klarna |
https://www.klarna.com/responsible-disclosure/ |
no |
Klenty |
https://www.klenty.com/responsible-disclosure |
no |
Knowledgeowl |
https://www.knowledgeowl.com/home/vulnerability-disclosure-policy |
no |
Kore Wireless |
https://www.korewireless.com/responsible-disclosure-policy |
no |
Kraken |
https://www.kraken.com/security/bug-bounty |
yes |
Kroger |
https://www.kroger.com/.well-known/security.txt |
no |
Kubernetes |
https://kubernetes.io/security |
yes |
Kusama |
https://guide.kusama.network/docs/en/kusama-bug-bounty |
no |
Kustomer |
https://www.kustomer.com/policy/disclosure/ |
no |
LINE |
https://bugbounty.linecorp.com/en/ |
yes |
Lark |
https://www.larksuite.com/bugbounty |
no |
LastPass |
https://bugcrowd.com/lastpass |
yes |
LayerZero |
https://layerzero.gitbook.io/docs/bug-bounty/bug-bounty-program |
yes |
Leantime.io |
https://leantime.io/responsible-disclosure-policy/ |
no |
Leaseweb |
https://www.leaseweb.com/security-certifications/responsible-disclosure |
no |
Ledger DonJon |
https://donjon.ledger.com/bounty/ |
no |
Leetcode |
https://leetcode.com/bugbounty/ |
yes |
Lego |
https://www.lego.com/en-nl/legal/notices-and-policies/responsible-disclosure-policy/ |
no |
Leica Biosystems |
https://www.leicabiosystems.com/about/product-security/ |
no |
Lenova |
https://www.lenovo.com/us/en/product-security/vulnerability-disclosure-policy |
no |
Letgo |
https://we.letgo.com/responsible-disclosure-policy |
no |
Letsbuild |
https://letsbuild.com/responsible-disclosure |
no |
Leverage |
https://www.lvrg.ai/vdp |
no |
Liberapay |
https://hackerone.com/liberapay |
yes |
Libra |
https://hackerone.com/libra |
yes |
Librato |
https://metrics.librato.com/vulnerability |
no |
Liferay |
https://www.liferay.com/security |
no |
Light Speed |
https://www.lightspeedhq.com/security/ |
no |
Lime |
https://bugcrowd.com/lime |
yes |
Linkedin |
https://security.linkedin.com/vulnerabilty-disclosure |
no |
Linksys |
https://www.belkin.com/us/security/ |
no |
Liquid Web |
https://www.liquidweb.com/about-us/policies/bug-bounty-program/ |
yes |
Lisk |
https://lisk.io/bug-bounty-program |
yes |
Liveclicker |
https://www.liveclicker.com/trust/report-a-vulnerability/ |
yes |
Livesport |
https://bugbounty.livesport.eu/docs/Vulnerability%20Disclosure%20Policy.pdf |
yes |
Livestream |
https://hackerone.com/livestream |
yes |
Lob |
https://hackerone.com/lob |
yes |
Local Heroes |
https://www.localheroes.com/security |
no |
Logentries |
https://logentries.com/doc/security/ |
no |
LoginRadius |
https://www.loginradius.com/bug-bounty/ |
yes |
Logitech |
https://www.logitech.com/en-us/legal/security-vulnerability-reporting.html |
no |
Looker |
https://looker.com/product/security/disclosure |
no |
Lookout |
https://www.lookout.com/legal/responsible-disclosure |
no |
Lumosity |
https://www.lumosity.com/en/legal/responsible_disclosure_policy/ |
no |
Lyft |
https://www.lyft.com/security |
yes |
M-Files |
https://www.m-files.com/en/vulnerability-disclosure |
no |
MEV-Boost |
https://github.com/flashbots/mev-boost/blob/main/SECURITY.md |
yes |
MSV |
https://shop.msv.com/About/Legal |
no |
MTN Group |
https://hackerone.com/mtn_group |
no |
MX |
https://www.mx.com/security-policy |
no |
Magento |
https://hackerone.com/magento |
yes |
Magic Leap Cloud |
https://bugcrowd.com/magicleapcloud |
yes |
MagicLeap Device |
https://bugcrowd.com/magicleapdevice |
yes |
Magix AG |
http://research.magix.com/ |
no |
Mailchimp |
https://mailchimp.com/about/security/ |
no |
Mailclark |
https://mailclark.ai/vdp |
no |
Mailgun |
https://bugcrowd.com/mailgun |
yes |
Mailstrom |
https://mailstrom.co/vdp |
no |
Mailtag |
https://www.mailtag.io/disclosure-policy |
no |
Mailtrack |
https://mailtrack.io/en/responsible-vulnerability |
no |
Majid Al Futtaim |
https://www.majidalfuttaim.com/en/responsible-disclosure-policy |
yes |
Maker Ecosystem Growth Holdings |
https://hackerone.com/makerdao_bbp |
yes |
Malwarebytes |
https://www.malwarebytes.org/secure/ |
yes |
ManageWP |
https://managewp.com/white-hat-reward |
yes |
MariaDB |
https://mariadb.org/about/#security-policy |
no |
Marketo |
https://documents.marketo.com/legal/notices/responsible-disclosure-policy.pdf |
no |
Marktplaats |
https://www.marktplaats.nl/i/help/veilig-en-succesvol/responsible-disclosure-program.dot.html |
yes |
Marqeta |
https://www.marqeta.com/responsible-disclosure |
no |
Marriott |
https://hackerone.com/marriott |
no |
Marvel |
https://marvelapp.com/security/ |
no |
Massachusetts Institute of Technology |
https://bounty.mit.edu/ |
yes |
Mastercard |
https://bugcrowd.com/mastercard |
yes |
Mastodon |
https://github.com/mastodon/mastodon/security/policy |
|
Mathworks |
https://www.mathworks.com/company/aboutus/policies_statements/vulnerability-disclosure-policy.html |
no |
Mattermost |
https://about.mattermost.com/report-security-issue/ |
no |
McAfee |
https://www.mcafee.com/enterprise/en-us/threat-center/advanced-threat-research/disclosure.html |
no |
McKinsey |
https://mckinsey.responsibledisclosure.com/hc/en-us |
no |
Mcgarrybowen |
http://www.mcgarrybowen.com/Responsible-Disclosure-Policy |
no |
MedISAO |
https://members.medisao.com/vulnerability_disclosure/ |
no |
MediaTek |
https://www.mediatek.com/security-contact |
no |
Mediawijzer.net |
https://www.mediaukkiedagen.nl/responsibledisclosure-en/ |
no |
Medium |
https://help.medium.com/hc/en-us/articles/213481308-Bug-Bounty-Disclosure-Program |
yes |
Medtronic |
http://www.medtronic.com/contact-us/index.htm?cmpid=mdt_plc_2015_US_footer_nav_contact_us_mdt_us_legacy_contact_us_form_link |
no |
Meet Fabric |
https://meetfabric.com/legal/security-policy |
no |
Mega.co.nz |
https://mega.co.nz/#blog_6 |
yes |
Mercedes-Benz |
https://www.mercedes-benz.com/en/whitehat/?owda=misc#coordinated-disclosure-guidlines |
no |
Merit Systems Protection Board |
https://www.mspb.gov/vulnerability-disclosure-policy/ |
no |
Merkle Inc. |
https://www.merkleinc.com/responsible-disclosure-policy |
no |
Metropolitan Government of Nashville and Davidson County |
https://www.nashville.gov/sites/default/files/2021-11/ISM-19-Vulnerability-Disclosure-Policy.pdf |
no |
Micro Focus |
https://www.microfocus.com/support-and-services/report-security/ |
no |
MicroStrategy |
https://www.microstrategy.com/us/bug-bounty-program |
yes |
Microsoft (Online Services) |
http://technet.microsoft.com/en-us/security/dn800983 |
no |
Microsoft (bounty programs) |
http://technet.microsoft.com/en-US/security/dn425036 |
no |
Microweber |
https://microweber.com/become-contributor |
no |
Millennium Challenge Corporation |
https://www.mcc.gov/vulnerability-disclosure-policy |
no |
Mimecast |
https://www.mimecast.com/responsible-disclosure/ |
no |
Mimosa |
https://mimosa.co/legal/vulnerability |
no |
MindTouch |
https://mindtouch.com/disclosure |
no |
Mindbody |
https://company.mindbodyonline.com/security/responsible-disclosure |
no |
Mine |
https://saymine.com/vulnerability-disclosure |
no |
Ministry of Defense |
https://www.gov.uk/guidance/report-a-vulnerability-on-an-mod-system |
no |
Ministry of Justice |
https://mojdigital.blog.gov.uk/vulnerability-disclosure-policy/ |
no |
Mobikwik |
https://www.mobikwik.com/bug-bounty |
no |
Modern Treasury |
https://www.federacy.com/modern-treasury |
yes |
Mollie |
https://www.mollie.com/en/responsible-disclosure |
no |
Monarx |
https://monarx.zendesk.com/hc/en-us/articles/360040111711-Responsible-Disclosure |
no |
Monetha |
https://www.monetha.io/bounty |
yes |
Moneybird |
https://www.moneybird.nl/security/ |
no |
Moneytree KK |
https://bugcrowd.com/moneytreekkog |
yes |
MongoDB |
https://www.mongodb.com/security |
no |
Moodle |
https://docs.moodle.org/dev/Moodle_security_procedures |
no |
Morgan Stanley |
https://morganstanley.responsibledisclosure.com/hc/en-us |
no |
Morris K. Udall and Stewart L. Udall Foundation |
https://www.udall.gov/vulnerability-disclosure-policy |
no |
Motorola |
https://www.motorola.com/us/legal/security-vulnerability |
no |
Mozilla |
https://www.mozilla.org/en-US/security/bug-bounty/ |
yes |
Mt Pelerin |
https://www.mtpelerin.com/responsible-disclosure-policy |
no |
MuJS |
https://mujs.com/security.html |
yes |
Multichain |
https://docs.multichain.org/security/bug-bounty |
yes |
Mural |
https://www.mural.co/security/vdp |
yes |
Mvorisicochecker |
https://www.mvorisicochecker.nl/de/node/1807 |
no |
Myntra |
http://www.myntra.com/security/whitehat |
no |
Myob |
https://www.myob.com/au/about/security/report-security-vulnerability |
no |
NBX |
https://nbxsupport.zendesk.com/hc/en-us/articles/360044264592-NBX-Responsible-Disclosure-Policy |
no |
NCSC UK |
https://hackerone.com/ncsc_uk |
no |
NCSC-NL |
https://www.ncsc.nl/security |
yes |
NDS Systems |
https://www.cyncsoftware.com/responsible-disclosure-policy.php |
no |
NETGEAR Cash Rewards |
https://bugcrowd.com/netgear |
yes |
NETGEAR Kudos Rewards |
https://bugcrowd.com/netgearkudos |
no |
NGAHR |
https://www.ngahr.com/privacy-policies/ |
no |
NOS Comunicações S.A. |
https://www.nos.pt/institucional/EN/Pages/responsible-disclosure-of-vulnerabilities.aspx |
no |
NOWPayments |
https://nowpayments.io/doc/NOWPayments_BugBounty_program.pdf |
yes |
NSN Nokia Solutions Networks |
http://nsn.com/responsible-disclosure |
no |
NWB Bank |
https://www.nwbbank.com/en/responsible-disclosure |
yes |
NXP |
https://www.nxp.com/support/support/report-product-security-vulnerabilities:PSIRT |
no |
Namazu |
http://www.namazu.org/security.html |
no |
Nasdaq |
https://nasdaq.responsibledisclosure.com/hc/en-us |
no |
Naspers |
https://bugcrowd.com/naspers |
no |
National Aeronautics and Space Administration |
https://www.nasa.gov/vulnerability-disclosure-policy |
no |
National Archives and Records Administration |
https://www.nara.gov/vulnerability-disclosure-policy |
no |
National Australia Bank |
https://bugcrowd.com/nationalaustraliabankog |
no |
National Capital Planning Commission |
https://www.ncpc.gov/vulnerability-disclosure-policy |
no |
National Credit Union Administration |
https://www.ncua.gov/vulnerability-disclosure-policy |
no |
National Cyber Security Center (Netherlands) |
https://www.ncsc.nl/security |
yes |
National Endowment for the Arts |
https://www.arts.gov/vulnerability-disclosure-policy |
no |
National Endowment for the Humanities |
https://www.neh.gov/vulnerability-disclosure-policy |
no |
National Labor Relations Board |
https://www.nlrb.gov/vulnerability-disclosure-policy |
no |
National Oilwell Varco |
https://nov.responsibledisclosure.com/hc/en-us |
no |
National Science Foundation |
https://www.nsf.gov/vulnerability-disclosure-policy |
no |
NautaDutilh |
https://www.nautadutilh.com/en/responsible-disclosure |
no |
Navcoin |
https://navcoin.org/en/responsible-disclosure |
no |
Naver Whale |
http://bugbounty.whale.naver.com |
yes |
Navy Federal |
https://navyfederal.responsibledisclosure.com/hc/en-us |
no |
Needabreak |
https://needabreak.com/responsible-disclosure-policy/ |
no |
Neophotonics |
https://bugcrowd.com/neophotonics |
yes |
Netapp |
https://security.netapp.com/contact/ |
no |
Netflix |
https://help.netflix.com/en/node/6657 |
no |
Netskope |
https://www.netskope.com/vulnerability-disclosure-policy |
no |
New Leaf |
https://www.newleaf.com/responsible-disclosure-policy/ |
no |
New Seasons Market |
https://www.newseasonsmarket.com/responsible-disclosure-policy/ |
no |
New York Times Company |
https://help.nytimes.com/hc/en-us/articles/360051392052-Vulnerability-Disclosure-Policy |
no |
News UK |
https://www.news.co.uk/responsible-disclosure-policy/ |
no |
Nexcess |
https://www.nexcess.net/policies/nexcess-bug-bounty/ |
no |
Nexuzhealth |
https://www.intigriti.com/public/project/uz%20leuven/nexuzhealthwebpacs |
yes |
Nginx |
https://nginx.org/en/security_advisories.html |
yes |
Nike |
https://www.nike.com/help/a/responsible-disclosure |
no |
Nitro |
https://www.gonitro.com/nps/security/updates#vulnerability-bug-bounty-policy |
no |
Nixu |
https://www.nixu.com/vulnerability-disclosure-policy |
no |
Nokia |
https://www.nokia.com/responsible-disclosure/ |
no |
Northwestern Mutual |
https://www.northwesternmutual.com/responsible-disclosure-policy/ |
|
Notepad++ |
https://hackerone.com/notepad-plus-plus |
no |
Notion |
https://www.notion.so/Responsible-Disclosure-Policy-5f18bb6b86804eaf989c006131778b9c |
yes |
Novocure |
https://www.novocure.com/novocure-vulnerability-disclosure-process/ |
no |
Nowsecure |
https://www.nowsecure.com/company/responsible-disclosure-policy/ |
no |
Nuclear Regulatory Commission |
https://www.nrc.gov/vulnerability-disclosure-policy |
no |
Nuclear Waste Technical Review Board |
https://www.nwtrb.gov/vulnerability-disclosure-policy |
no |
Nutshell |
https://www.nutshell.com/security/ |
no |
Nvidia |
https://www.nvidia.com/object/submit-security-vulnerability.html |
no |
Nykaa |
https://www.nykaa.com/responsible-disclosure |
no |
OLAcabs |
https://www.olacabs.com/whitehat |
yes |
ON2IT |
https://on2it.net/responsible-disclosure/ |
no |
OOCRP |
https://www.occrp.org/en/responsible-disclosure |
no |
OSLO BORS |
https://www.oslobors.no/ob_eng/Oslo-Boers/About-Oslo-Boers/Responsible-Disclosure |
no |
OVH |
https://bountyfactory.io/hunter/submit/program/42 |
no |
OWASP CSRFGuard |
https://bugcrowd.com/owaspcrsfguard |
no |
OWASP Java Encoder |
https://bugcrowd.com/owaspjavaencoder |
no |
OWASP Java HTML Sanitizer |
https://bugcrowd.com/owaspjavasanitizer |
no |
OWASP ZAP |
https://bugcrowd.com/owaspzap |
yes |
OWNA |
https://www.owna.com.au/security-policy.html |
no |
Observu |
https://observu.com/security.php |
no |
Occupational Safety and Health Review Commission |
https://www.oshrc.gov/vulnerability-disclosure-policy |
no |
Octopus |
https://bugcrowd.com/octopus-og |
yes |
Offensive Security |
https://www.offensive-security.com/bug-bounty-program/ |
yes |
Office of Government Ethics |
https://www.oge.gov/vulnerability-disclosure-policy |
no |
Office of Navajo and Hopi Indian Relocation |
https://www.onhir.gov/vulnerability-disclosure-policy |
no |
Ohio Secretary of State |
https://www.ohiosos.gov/vulnerability-disclosure-policy/ |
no |
OkCupid |
https://www.okcupid.com/security |
no |
Okta |
https://bugcrowd.com/okta |
yes |
Olark |
http://www.olark.com/customer/portal/articles/1237352 |
yes |
Olympus |
https://medical.olympusamerica.com/customer-resources/product-security |
no |
Omise |
https://hackerone.com/omise |
yes |
Omnipod |
https://www.myomnipod.com/Coordinated-Disclosure-Process |
no |
Ondeck |
https://www.ondeck.com/security-policy |
no |
One Identity |
https://support.oneidentity.com/contact-us/report-security-vulnerability |
no |
One Plus |
https://security.oneplus.com/noticedetails.html?noticeId=20191565338585128 |
yes |
OneLogin |
https://www.onelogin.com/security |
no |
OnePageCRM |
https://www.onepagecrm.com/vulnerability-disclosure/ |
no |
Onfo |
https://onfo.zendesk.com/hc/en-us/articles/360025769031-Bug-Bounty-Program |
yes |
Online Seminar |
https://www.onlineseminar.com/security/ |
yes |
Open Source University |
https://medium.com/the-os-university-blog/os-university-smart-contracts-are-live-edu-token-bug-bounty-reward-awaits-you-27c1de006249 |
yes |
OpenBSD |
https://www.openbsd.org/security.html |
no |
OpenSSL |
https://www.openssl.org/community/#securityreports |
yes |
OpenStack |
https://security.openstack.org/#how-to-report-security-issues-to-openstack |
no |
OpenText |
http://opentext.com/2/global/company/security-acknowledgements.htm |
no |
Opera |
https://security.opera.com/report-security-issue/ |
no |
Opslevel |
https://www.opslevel.com/responsible-disclosure/ |
no |
Optimizely |
https://bugcrowd.com/optimizely |
yes |
Optum |
https://www.optum.com/vulnerability.html |
no |
Oracle |
https://www.oracle.com/africa/corporate/security-practices/assurance/vulnerability/reporting.html |
no |
Orgnostic Inc. |
https://orgnostic.com/vulnerability-disclosure |
no |
Orion Health |
https://orionhealth.com/us/support/responsible-disclosure/ |
no |
Orkut |
http://www.google.com/about/appsecurity/reward-program/ |
yes |
OurFabriq |
https://www.ourfabriq.com/responsible-disclosure-policy |
no |
Outpost 24 |
https://outpost24.com/policies/responsible-disclosure |
no |
Overstock |
https://bugcrowd.com/overstockvdp |
no |
PA Department of State |
https://www.dos.pa.gov/VotingElections/BEST/Pages/Responsible-Disclosure.aspx |
no |
PC Extreme |
https://www.pcextreme.com/policies/responsible-disclosure |
yes |
PHP |
https://bugs.php.net/report.php?bug_type=Security |
yes |
PNC |
https://www.pnc.com/en/security-privacy/responsible-disclosure-program.html |
no |
PTC |
https://www.ptc.com/en/documents/security/coordinated-vulnerability-disclosure |
no |
Pagerduty |
https://www.pagerduty.com/security/disclosure/ |
no |
PagoPA |
https://www.pagopa.gov.it/security.html |
no |
Paladin Cyber Bug Bounty |
https://www.federacy.com/paladin-cyber-bug-bounty |
yes |
Palantir |
https://www.palantir.com/responsible-disclosure/ |
yes |
Palo Alto Networks |
https://securityadvisories.paloaltonetworks.com/Report |
no |
Panasonic |
https://www.panasonic.com/global/corporate/product-security/sec/psirt/policy.html |
no |
Pantheon |
https://bugcrowd.com/pantheon |
no |
Panzura |
https://panzura.com/support/panzura-security-policy/ |
no |
Parabol |
https://www.parabol.co/security-disclosure |
yes |
Parity Technologies |
https://www.parity.io/bug-bounty/ |
yes |
Particle |
https://www.particle.io/legal/responsible-disclosure/ |
no |
Partnerize |
https://partnerize.com/en/responsible-disclosure?q=%2Fen%2Fresponsible-disclosure |
no |
PasteCoin |
https://www.pastecoin.com/bug_bounty |
yes |
Pathao |
https://pathao.com/bug-bounty/ |
yes |
Patron Technology |
https://www.patrontechnology.com/security-vulnerability-program |
no |
PayTm |
https://bugbounty.paytm.com/ |
yes |
Payboy |
https://payboy.biz/security |
no |
Paychoice |
https://www.paychoice.com.au/security/#security-researchers |
no |
Payhawk |
https://payhawk.com/security/disclosure |
no |
Paymill |
https://developers.paymill.com/guides/security/security-standards |
no |
Paypal |
https://www.paypal.com/us/webapps/mpp/security-tools/reporting-security-issues |
yes |
Peace Corps |
https://www.peacecorps.gov/vulnerability-disclosure-policy/ |
no |
Pega |
https://www.pega.com/responsible-disclosure-policy |
no |
Pellustro |
https://pellustro.com/responsible-disclosure-policy/ |
no |
Pension Benefit Guaranty Corporation |
https://www.pbgc.gov/vulnerability-disclosure-policy |
no |
Pentair |
https://www.pentair.com/en-us/legal/responsible-disclosure.html |
no |
People.ai |
https://people.ai/security/reporting/ |
no |
Pepperfry |
https://www.pepperfry.com/whitehat.html |
no |
Perl |
http://perldoc.perl.org/perlsec.html#SECURITY-VULNERABILITY-CONTACT-INFORMATION |
yes |
Personal Capital |
https://www.personalcapital.com/responsible-disclosure/ |
yes |
Pexip |
https://www.pexip.com/vulnerability-disclosure |
no |
Pfizer |
https://hackerone.com/pfizer |
no |
Philips |
https://www.philips.com/a-w/security/coordinated-vulnerability-disclosure.html |
no |
Ping |
https://www.pingidentity.com/en/company/security-at-ping-identity.html |
yes |
Pinterest |
https://bugcrowd.com/pinterest/ |
yes |
Piwik |
http://piwik.org/security/ |
no |
Pixelbar |
https://pixelbar.nl/responsibledisclosure/ |
no |
Pizza Hut |
https://pizzahut.responsibledisclosure.com/hc/en-us |
no |
PlanetHoster |
https://bugcrowd.com/planethosterinc |
yes |
Plangrid |
https://www.plangrid.com/security/ |
no |
Platform161 |
https://platform161.com/responsible-disclosure/ |
no |
Plex |
https://support.plex.tv/articles/reporting-security-issues/ |
no |
Plisio |
https://plisio.net/bug-bounty |
yes |
Plugin Alliance |
https://www.plugin-alliance.com/en/security.html |
no |
Polar SSL |
https://tls.mbed.org/bug-bounty-program |
yes |
Poli |
https://www.polipayments.com/VulnerabilityDisclosurePolicy |
no |
Poly |
https://support.polycom.com/content/dam/polycom-support/global/documentation/product-vulnerability-disclosure-policy.pdf |
no |
Pon Cat |
https://www.pon-cat.com/en/responsible-disclosure |
yes |
Pon Holdings |
https://a-tcontrols.com/responsible-disclosure/ |
no |
Port of Antwerp |
https://www.portofantwerp.com/en/responsible-disclosure |
no |
PostNL |
https://www.postnl.nl/en/responsible-disclosure/ |
no |
Postal Regulatory Commission |
https://www.prc.gov/vulnerability-disclosure-policy |
no |
Postman |
https://www.postman.com/security/vulnerability-reporting/ |
no |
Postmark |
https://postmarkapp.com/support/article/779-responsible-disclosure-policy |
no |
Postmates |
https://hackerone.com/postmates |
yes |
PowerSchool |
https://www.powerschool.com/security/responsible-disclosure-program/ |
no |
Practo |
https://www.practo.com/company/responsible-disclosure-policy |
no |
Predica |
https://www.predicagroup.com/cvd/ |
no |
Prezi |
https://bugbounty.prezi.com/ |
yes |
Priceline |
https://hackerone.com/priceline |
yes |
Privacy and Civil Liberties Oversight Board |
https://www.pclob.gov/vulnerability-disclosure-policy |
no |
Productboard |
https://www.productboard.com/product/security/#application-security |
yes |
Proof Of Humanity |
https://github.com/Proof-Of-Humanity/Proof-Of-Humanity/issues/54 |
yes |
Proofpoint |
https://www.proofpoint.com/us/security |
no |
ProtonMail |
https://protonmail.com/blog/responsible-vulnerability-disclosure/ |
yes |
Puppet |
https://puppet.com/blog/responsible-disclosure-of-security-vulnerabilities |
no |
Puppet Labs |
https://puppet.com/security |
no |
PureVPN |
https://bugcrowd.com/purevpn |
yes |
Purple WiFi |
https://purple.ai/responsible-disclosure/ |
no |
PushPushGo |
https://pushpushgo.com/en/pages/bug-bounty/ |
no |
Pushfor |
https://pushfor.com/bug-bounty/ |
yes |
Pyrus |
https://pyrus.com/en/vulnerability-reporting |
no |
Python |
https://www.python.org/news/security/ |
yes |
QWANT |
https://yeswehack.com/programs/qwant |
yes |
Qiwi |
https://www.qiwi.ru/page/hack.action |
yes |
Qmail |
https://cr.yp.to/qmail/guarantee.html |
yes |
Qoria |
https://www.qoria.com/vulnerability-disclosure-policy |
no |
Qtrade |
https://qtrade.io/bug_bounty |
yes |
Qualcomm |
https://www.qualcomm.com/company/product-security/report-a-bug |
Yes |
Qualys |
https://www.qualys.com/docs/responsible-disclosure-policy.pdf |
no |
Quandency |
http://support.quadency.com/en/articles/2869964-bug-bounty-program |
yes |
QuantStamp |
https://quantstamp.com/legal/responsible-disclosure |
yes |
Quantopian |
https://hackerone.com/quantopian |
yes |
Queensland Government |
https://www.qgcio.qld.gov.au/information-on/information-security/responsible-vulnerability-disclosure-statement |
no |
Quest |
https://support.quest.com/contact-us/report-security-vulnerability |
no |
RSK |
https://developers.rsk.co/contribute/bug-bounty-program/ |
yes |
Rackspace |
http://www.rackspace.com/information/legal/rsdp |
no |
Radiometer |
https://www.radiometer.com/en/about-radiometer/legal/coordinated-vulnerability-disclosure |
no |
Rainfocus |
https://www.rainfocus.com/vulnerability-disclosure |
no |
Rakuten Group, Inc. |
https://bugcrowd.com/rakuten-vdp |
no |
Range |
https://www.range.co/security/bounty |
yes |
RangeMe |
https://www.rangeme.com/vulnerability_disclosure_program |
no |
Rapid7 |
https://www.rapid7.com/security/disclosure |
no |
RapidSpike |
https://www.rapidspike.com/info/vulnerability-disclosure/ |
no |
Razorpay |
https://razorpay.com/responsible-disclosure/ |
no |
RealSelf |
https://bugcrowd.com/realself |
yes |
Realtor |
https://www.realtor.com/responsible-disclosure-policy/ |
no |
Recidiviz |
https://www.federacy.com/recidiviz?tab=Intro |
|
Reclaim.ai |
https://reclaim.ai/responsible-disclosure |
no |
Recorded Future |
https://www.recordedfuture.com/security/ |
no |
Recruit CRM |
https://recruitcrm.io/legal/rcrm-vulnerability-disclosure-program |
no |
Recruitee |
https://recruitee.com/en/vulnerability |
no |
Recurly |
https://support.recurly.com/hc/en-us/articles/360024300812-Does-Recurly-have-a-bug-bounty-program- |
no |
Red Gate |
https://www.red-gate.com/website/legal |
no |
Red Hat |
https://access.redhat.com/security/team/contact |
no |
RedHat |
https://access.redhat.com/articles/66234 |
no |
Redbubble |
https://help.redbubble.com/hc/en-us/articles/214531243-Report-a-Website-Security-Vulnerability |
no |
Reddit |
http://code.reddit.com/wiki/help/whitehat |
no |
Redox |
https://bugcrowd.com/redox |
yes |
Redstor |
https://www.redstor.com/en-us/about/vulnerability-disclosure-policy/ |
no |
Refereum |
https://hackerone.com/refereum |
yes |
Regions |
https://www.regions.com/about-regions/privacy-security/vulnerability-disclosure-program |
no |
Relaso |
http://www.relaso.com/disclosure/ |
no |
Remitano |
https://security.remitano.com/ |
yes |
RenoFi |
https://www.federacy.com/renofi |
yes |
Repl.it |
https://docs.repl.it/misc/security |
no |
Replicated |
https://www.replicated.com/security/ |
no |
Research Gate |
https://explore.researchgate.net/display/support/Security+and+vulnerability |
yes |
Resmed |
https://www.resmed.com/en-us/security/ |
no |
RevenueCat |
https://www.federacy.com/revenuecat |
yes |
Revolut |
https://www.revolut.com/responsible-disclosure-program |
no |
Rewind |
https://rewind.com/legal/vulnerability-disclosure-policy/ |
no |
Ribose |
https://www.ribose.com/feedback/security |
no |
Ricoh |
https://www.ricoh.ca/en/about-us/vulnerability-disclosure-policy |
yes |
Riot Games |
http://www.riotgames.com/riot-games-security |
yes |
Ripe NCC |
https://www.ripe.net/support/contact/responsible-disclosure-policy |
no |
Ripple |
https://ripple.com/bug-bounty/ |
yes |
Riskalyze |
https://www.riskalyze.com/security-response |
no |
Roadie |
https://roadie.io/security/responsible-disclosure/ |
no |
Robeco |
https://www.robeco.com/en/responsible-disclosure.html |
no |
Rocket.Chat |
https://rocket.chat/docs/contributing/security/responsible-disclosure-policy/ |
no |
Rocksurance Solutions |
https://www.mynameflow.com/vulnerability-disclosure/ |
no |
Rockwell Automation |
https://www.rockwellautomation.com/en-us/capabilities/industrial-security.html |
no |
Rollbar |
https://docs.rollbar.com/docs/responsible-disclosure-policy |
no |
Royal Bank of Scotland |
https://personal.rbs.co.uk/personal/security-centre/responsible-disclosure.html |
no |
Rubrik |
https://rubrik.responsibledisclosure.com/hc/en-us |
no |
Rust |
https://www.rust-lang.org/policies/security |
no |
SAP |
https://wiki.scn.sap.com/wiki/display/PSR/Disclosure+Guidelines+for+SAP+Security+Advisories |
no |
SAP Concur |
https://bugcrowd.com/concur |
no |
SBAB |
https://www.sbab.se/1/sidfotsmeny_2/sakerhet/responsible_disclosure.html |
no |
SEC |
https://www.sec.gov/vulnerability-disclosure-policy |
no |
SEEK |
https://bugcrowd.com/seek |
yes |
SNS Bank |
https://www.devolksbank.nl/veiligheid.html |
yes |
Safe Send Returns |
https://safesendreturns.zendesk.com/hc/en-us/articles/360049940054-Information-Security-Overview |
no |
Sails.js |
https://sailsjs.com/security |
no |
Sailthru |
https://www.sailthru.com/trust/report-a-vulnerability/ |
yes |
SalesLoft |
https://salesloft.com/vulnerability-disclosure-program/ |
no |
Salesflare |
https://salesflare.com/vdp |
no |
Salesforce |
https://trust.salesforce.com/en/security/responsible-disclosure-policy/ |
no |
Salestrail |
https://www.salestrail.io/vulnerability |
no |
Samsara |
https://www.samsara.com/security |
no |
Samsung |
https://securityreport.samsung.com |
no |
Samsung Mobile |
https://security.samsungmobile.com/securityReporting.smsb |
yes |
Samsung SmartTV |
https://samsungtvbounty.com/ReportBug.aspx |
yes |
Sanity |
https://www.sanity.io/security |
no |
SaveDroid |
https://hackerone.com/savedroid |
yes |
Saxo Group |
https://www.home.saxo/legal/vulnerability-disclosure-policy/vulnerability-disclosure-policy |
no |
ScaleFT |
https://www.scaleft.com/company/security/ |
no |
Schneider Electric |
https://www.se.com/ww/en/work/support/cybersecurity/vulnerability-policy.jsp |
no |
Scraping Hub |
https://scrapinghub.com/responsible-disclosure-policy/ |
yes |
Seagate |
https://www.seagate.com/legal-privacy/responsible-vulnerability-disclosure-policy/ |
no |
Seal Software |
https://www.seal-software.com/responsible-disclosure/ |
no |
SecPoint Penetrator |
https://bugcrowd.com/secpoint |
yes |
SecondStreet |
https://www.secondstreet.com/product-security-responsible-disclosure-policy |
no |
SecretHub |
https://secrethub.io/security/responsible-disclosure/ |
no |
Secura |
https://www.secura.com/ResponsibleDisclosure |
no |
Secure Cyber Future |
https://www.securecyberfuture.com/responsible-disclosure |
yes |
SecureDrop |
https://bugcrowd.com/freedomofpress |
yes |
Securitas |
https://www.securitas.com/en/about-us/responsible-disclosure/ |
no |
Securities and Exchange Commission |
https://www.sec.gov/vulnerability-disclosure-policy |
no |
Security Innovation |
https://www.securityinnovation.com/about/security/ |
no |
Segment |
https://bugcrowd.com/segment |
yes |
Selective Service System |
https://www.sss.gov/vulnerability-disclosure-policy |
no |
Selify |
https://sellfy.com/security/ |
no |
Selz |
https://help.selz.com/article/217-security-escalation |
yes |
Semmle |
https://hackerone.com/semmle |
yes |
SendSafely |
https://www.sendsafely.com/security/bug-bounty |
yes |
Sense |
https://sense.com/vulnerability.html |
no |
Sense of Security |
https://www.senseofsecurity.com.au/resources/vulnerability-disclosure-policy/ |
no |
Sentropy |
https://www.sentropy.com/disclosure |
no |
Sentry |
https://sentry.io/security/ |
no |
SerenityOS |
https://www.serenityos.org/bounty/ |
yes |
ServiceNow |
https://www.servicenow.com/company/trust/responsible-disclosure.html |
no |
Setpoint |
https://www.setpointis.com/responsible-disclosure/ |
no |
Shape Security |
https://www.shapesecurity.com/report-a-vulnerability |
yes |
Shapeshift |
https://corp.shapeshift.io/responsible-disclosure-program/ |
yes |
Sharktech |
https://sharktech.net/responsible-disclosure-policy/ |
no |
Shell |
https://www.shell.com/about-us/our-values/shell-global-helpline/responsible-disclosure-policy.html |
no |
Shieldox Security LTD |
https://hackerone.com/shieldox_security |
no |
Shift Crypto |
https://shiftcrypto.ch/policies/bug-bounty-policy/ |
no |
Shopify |
https://hackerone.com/shopify |
yes |
Sidefx |
https://www.sidefx.com/responsible-disclosure-program/ |
no |
Siemens |
https://new.siemens.com/global/en/products/services/cert/vulnerability-process.html |
no |
Signal |
https://support.signal.org/hc/en-us/articles/360007320791-How-can-I-report-a-security-vulnerability- |
|
SignalFX |
https://www.signalfx.com/trust/security/responsible-disclosure |
yes |
Signify |
https://www.signify.com/global/product-security |
no |
Signup |
https://signup.com/responsible-disclosure-policy |
no |
Signup.com |
https://signup.com/responsible-disclosure-policy |
no |
Silvergoldbull |
https://silvergoldbull.com/bug-bounty/ |
yes |
Simmons Clinic |
https://www.simmons-clinic.com/legal-responsibledisclosure.html |
no |
Simple |
https://www.simple.com/policies/security |
yes |
Simplerisk |
https://www.simplerisk.com/responsible_disclosure_policy |
no |
Simply Business |
https://www.simplybusiness.com/responsible-disclosure/ |
no |
SiteGround |
https://www.siteground.com/term/92.htm |
no |
Skiff |
https://skiff.com/vdp |
no |
SkilledHub |
https://skilledhub.com/responsible-disclosure-policy/ |
no |
Skoodat |
https://www.skoodat.com/security |
no |
Skuid |
http://www.skuidify.com/security |
no |
Sky TV |
https://skytv.custhelp.com/app/answers/detail/a_id/1797/~/responsible-disclosure-guidelines |
no |
Skylight Digital |
https://skylight.digital/company/policies/vulnerability-disclosure/ |
no |
Skyscanner |
https://bugcrowd.com/skyscanner |
yes |
Slack |
https://slack.com/report-vulnerability |
yes |
Small Business Administration |
https://www.sba.gov/vulnerability-disclosure-policy |
no |
SmartThings |
https://bugcrowd.com/smartthings |
no |
Smartling |
https://help.smartling.com/hc/en-us/articles/360008147833-Bug-Bounty-Policy |
yes |
Smartsheet |
https://hackerone.com/smartsheet |
yes |
Smiths Medical |
https://www.smiths-medical.com/company-information/smiths-medical-coordinated-disclosure-statement |
no |
Snyk |
https://snyk.io/docs/security |
yes |
Social Security Administration |
https://www.ssa.gov/vulnerability-disclosure-policy |
no |
Socrata |
https://bugcrowd.com/socrata |
yes |
Solana |
https://github.com/solana-labs/solana/security/policy |
yes |
SolarEdge |
https://www.solaredge.com/us/cyber-security-policy |
yes |
SolarWinds |
https://www.solarwinds.com/information-security/vulnerability-disclosure-policy |
no |
Solidus |
https://hackerone.com/solidus |
no |
Soluble |
https://www.soluble.ai/vulnerability-disclosure-policy |
no |
Solvinity |
https://www.solvinity.com/responsible-disclosure |
no |
Sonatype |
http://www.sonatype.com/contact/report-a-security-issue |
no |
Sophos |
https://bugcrowd.com/sophos |
yes |
SoundCloud |
https://bugcrowd.com/soundcloud |
yes |
Sourcible |
https://www.sourcible.com/vdp |
no |
South Carolina State Election Commission |
https://scvotes.gov/vulnerability-disclosure-program |
|
Sphero |
https://support.sphero.com/article/5drs94lhk5-vulnerability-disclosure-program |
no |
Splashtop |
https://www.splashtop.com/responsible-disclosure |
no |
Splendid Data |
https://www.splendiddata.com/responsible-disclosure-policy/ |
yes |
Splitwise |
https://blog.splitwise.com/about/responsible-disclosure-special-thanks/ |
no |
Splunk |
https://www.splunk.com/en_us/product-security.html |
partial |
Spokeo |
https://www.spokeo.com/bug-bounty |
yes |
Spotify |
https://www.spotify.com/us/bounty/ |
yes |
Spreaker |
https://www.spreaker.com/security |
yes |
Sprout Social |
https://bugcrowd.com/sproutsocial |
no |
Sqills |
https://www.sqills.com/responsible-disclosure-policy/ |
no |
Square |
https://bugcrowd.com/square |
yes |
Square Open Source |
https://bugcrowd.com/squareopensource |
yes |
Squid Cache (IBB) |
https://hackerone.com/ibb-squid-cache |
yes |
St. George |
https://www.stgeorge.com.au/online-services/security-centre/responsible-disclosure |
no |
Stack Exchange |
https://stackexchange.com/about/security |
no |
StackPath |
https://bugcrowd.com/stackpath |
no |
Stackla |
https://support.stackla.com/hc/en-us/articles/115005937887-Reporting-a-possible-security-vulnerability-to-Stackla |
no |
Staked |
https://staked.us/bug-bounty/ |
yes |
Standard |
https://www.standard.com/about-standard/responsible-disclosure-program |
no |
Stanford University |
https://uit.stanford.edu/security/report-incident |
no |
Stanley Black & Decker |
https://www.stanleyblackanddecker.com/security |
no |
StarLeaf |
https://www.starleaf.com/c/bug-bounty-program/ |
yes |
Starbucks |
https://www.starbucks.com/whitehat |
yes |
Starling Bank Limited |
https://hackerone.com/starling_bank |
no |
Starlink |
https://bugcrowd.com/spacex |
yes |
State Farm |
https://www.statefarm.com/customer-care/privacy-security/security/vulnerability-disclosure-policy |
no |
State of Delaware |
https://webfiles.dti.delaware.gov/pdfs/pp/Vulnerability%20Disclosure%20Policy.pdf |
no |
State of Minnesota |
https://mn.gov/mnit/about-mnit/security/securing-the-state/vulnerability-disclosure-program.jsp |
no |
StatusPage.io |
https://bugcrowd.com/statuspage |
yes |
Stellar |
https://www.stellar.org/bug-bounty-program/ |
yes |
Strala |
https://www.strala.com/responsible-disclosure |
no |
Stripe |
https://stripe.com/docs/security/stripe |
yes |
Stryker |
https://www.stryker.com/us/en/about/governance/cyber-security.html |
no |
Studo |
https://studo.com/at/security |
yes |
Substack |
https://substack.com/vulnerability-disclosure |
no |
SugarCRM |
https://support.sugarcrm.com/Resources/Security/Bug_Bounty_Program/ |
no |
Summa |
https://www.summa.eu/nl/responsible-disclosure |
no |
Supabase |
https://github.com/supabase/supabase/security |
no |
Supersonic Image |
https://www.supersonicimagine.com/security |
no |
SureVine |
https://www.surevine.com/responsible-disclosure-policy/ |
no |
Sweatco |
https://hackerone.com/sweatco_ltd |
no |
Swift |
https://www.swift.com/contact-us/security |
no |
Swiftype |
https://swiftype.com/security |
no |
Swiggy |
https://www.swiggy.com/bug-bounty |
yes |
Swiss National Cyber Security Center (NCSC.ch) |
https://www.ncsc.admin.ch/ncsc/en/home/infos-fuer/infos-it-spezialisten/themen/schwachstelle-melden.html |
no |
Swisscom |
https://www.swisscom.ch/en/about/company/portrait/network/security/bug-bounty.html |
yes |
Symantec |
https://www.symantec.com/security-center/vulnerability-management |
no |
Synack |
https://synack.responsibledisclosure.com/hc/en-us |
no |
Synk |
https://support.snyk.io/hc/en-us/articles/360005918418-Snyk-vulnerability-disclosure-program |
no |
Synology |
https://www.synology.com/de-de/security/bounty_program#scope_and_reward |
yes |
TCL Security Response Center |
https://src.tcl.com/ |
no |
TD Ameritrade |
https://www.tdameritrade.com/security/security-vulnerability.page |
no |
TIAA |
https://tiaa.responsibledisclosure.com/hc/en-us |
no |
TTS |
https://github.com/18F/vulnerability-disclosure-policy/blob/master/vulnerability-disclosure-policy.md |
yes |
Taco Bell |
https://tacobell.responsibledisclosure.com/hc/en-us |
no |
Take A Lot |
https://www.takealot.com/help/responsible-disclosure-policy |
no |
Takeaway.com |
https://bugcrowd.com/takeaway |
yes |
Talent Wall |
https://talentwall.io/responsible-disclosure/ |
no |
Tally |
https://www.meettally.com/rvd/ |
no |
Tapatalk |
https://tapatalk.com/security.php |
no |
Target |
https://security.target.com/vdp/ |
no |
Tarsnap |
https://www.tarsnap.com/bugbounty.html |
yes |
Tealium |
https://tealium.com/vdp/ |
no |
Teamsnap |
https://www.teamsnap.com/responsible-disclosure-policy |
no |
TechGig |
https://www.techgig.com/bugbounty |
no |
TechSmith |
https://www.techsmith.com/security.html |
no |
Tele2 |
https://www.tele2.nl/thuis/internet/veilig-internetten/stappenplan/ |
no |
Telefónica Germany |
https://bugcrowd.com/telefonicavdp |
no |
Telegram |
https://telegram.org/faq#q-what-if-my-hacker-friend-says-they-could-decipher-telegram-mes |
yes |
Telekom |
https://www.telekom.com/en/corporate-responsibility/data-protection-data-security/security/security/closing-security-gaps-360054 |
yes |
Telenet |
https://www.intigriti.com/public/project/telenet/telenet |
no |
Tenable |
https://www.tenable.com/security/report |
no |
Tencent |
http://en.security.tencent.com/ |
yes |
Termius |
https://termius.com/responsible-disclosure |
no |
Terra |
https://www.terra.money/bugcrowd |
|
Tesla |
https://bugcrowd.com/tesla |
yes |
The Atlantic |
https://www.theatlantic.com/responsible-disclosure-policy/ |
no |
The Dutch Security Cluster |
https://www.thehaguesecuritydelta.com/responsible-disclosure |
no |
The Hut Group |
https://www.thg.com/bounty |
|
The Pokémon Company |
https://www.pokemon.com/us/vulnerability-disclosure-program/ |
no |
The Things Network |
https://www.thethingsnetwork.org/responsible-disclosure |
no |
TheStandard |
https://www.standard.com/about-standard/responsible-disclosure-program |
no |
Thinkful |
https://www.thinkful.com/responsible-disclosure/ |
no |
Thumbtack |
https://help.thumbtack.com/article/responsible-disclosure-policy |
no |
Tibco |
https://www.tibco.com/security/vulnerability-disclosure-policy |
no |
TicketSwap |
https://www.ticketswap.com/content/responsible-disclosure |
no |
Ticketcounter |
https://ticketcounter.eu/security/ |
no |
Tidelift |
https://tidelift.com/docs/security |
no |
Tidepool |
https://www.tidepool.org/security/ |
no |
Tinder |
https://www.gotinder.com/security |
no |
Tokopedia |
https://bounty.tokopedia.net/rules |
yes |
TomTom |
https://hackerone.com/tomtom |
no |
TopDesk |
https://www.topdesk.com/us/responsible-disclosure/ |
no |
TradingView |
https://www.tradingview.com/bounty/ |
yes |
TransIP |
https://www.transip.eu/legal-and-security/security |
|
TransferWise |
https://bugcrowd.com/transferwise |
yes |
Transloadit |
https://transloadit.com/security/ |
no |
Trello |
https://bugcrowd.com/trello |
yes |
Trend Micro |
https://success.trendmicro.com/vulnerability-response |
no |
Trevel |
https://trevel.com/responsibledisclosure |
no |
Trezor |
https://trezor.io/security/ |
yes |
Trint Ltd |
https://hackerone.com/trint |
no |
Trip Advisor |
https://bugcrowd.com/tripadvisor-vdp |
no |
Tron Foundation |
https://tron.network/findBug |
yes |
Trovisio |
https://app.trovisio.com/legal?disclosure=disclosure |
no |
Trustpilot |
https://hackerone.com/trustpilot |
yes |
Tube8 |
https://hackerone.com/tube8 |
yes |
Tuenti |
http://corporate.tuenti.com/en/dev/security |
no |
Tumblr |
https://tumblr.zendesk.com/hc/en-us/articles/234583348-Bug-Bounty-Program |
yes |
Twilio |
https://bugcrowd.com/twilio |
yes |
Twintech Solutions |
https://twintechsolutions.in/security-research/vulnerability-disclosure/ |
no |
Twitch |
https://www.twitch.tv/p/security |
no |
Twizo |
https://www.twizo.com/twizo-responsible-disclosure-policy/ |
no |
Typeform |
https://help.typeform.com/hc/en-us/articles/360029314532-How-to-report-a-security-vulnerability-to-Typeform |
no |
Typo3 |
https://typo3.org/teams/security/ |
no |
U.S. Department of Energy Office of Scientific and Technical Information |
https://www.osti.gov/.well-known/security.txt |
no |
U.S. Securities and Exchange Commission |
https://www.sec.gov/vulnerability-disclosure-policy |
no |
UMA Project |
https://hackerone.com/uma_project |
yes |
UNDER ARMOUR |
https://bugcrowd.com/underarmour |
no |
USAA |
https://bugcrowd.com/usaa |
yes |
Ubiquiti - Aside program to the current at HackerOne |
https://ui.com/security/ |
yes |
Ubiquiti Networks |
https://hackerone.com/ui |
yes |
Ubuntu |
https://ubuntu.com/security/disclosure-policy |
|
Udemy |
https://support.udemy.com/hc/en-us/articles/229232627-Report-a-Security-Vulnerability |
yes |
UiPath |
https://hackerone.com/uipath |
no |
Umbraco |
https://umbraco.com/products/umbraco-cms/security/ |
no |
Unilever |
https://bugcrowd.com/unilever-vdp |
no |
Unisyn Voting Solutions |
https://unisynvoting.com/wp-content/uploads/2020/08/Unisyn-Vulnerability-Disclosure_Policy_V-1.0_8.14.2020.pdf |
no |
United Airlines |
https://www.united.com/web/en-US/content/contact/bugbounty.aspx |
yes |
United Nations |
https://unite.un.org/content/hall-fame |
no |
United States Access Board |
https://www.access-board.gov/vulnerability-disclosure-policy |
no |
United States Agency for International Development |
https://www.usaid.gov/vulnerability-disclosure-policy |
no |
United States Commission on Civil Rights |
https://www.usccr.gov/vulnerability-disclosure-policy |
no |
United States Department of Agriculture |
https://www.usda.gov/vulnerability-disclosure-policy |
no |
United States International Trade Commission |
https://www.usitc.gov/vulnerability-disclosure-policy |
no |
Unity3d |
https://unity3d.com/fr/security |
no |
Universiteit Leiden |
https://www.staff.universiteitleiden.nl/binaries/content/assets/ul2staff/ict/responsible-disclosure-eng.pdf |
no |
University of Twente |
https://www.utwente.nl/en/cyber-safety/responsible/ |
no |
University of York |
https://www.york.ac.uk/it-services/security/vulnerability-disclosure/ |
no |
Unloq |
https://unloq.io/security |
no |
Upgrade |
https://hackerone.com/upgrade |
no |
Upscope |
https://upscope.io/security/bug-bounty/ |
no |
Upserve |
https://upserve.com/security/ |
yes |
Upwork |
https://bugcrowd.com/upwork |
yes |
UsabilityHub |
https://app.usabilityhub.com/security/responsible_disclosure |
yes |
Ushahidi |
https://www.ushahidi.com/security |
no |
VHX |
https://hackerone.com/vhx |
yes |
VI Company |
https://www.vicompany.nl/legal/responsible-disclosure |
yes |
VICE |
https://www.vice.com/en_us/page/vice-responsible-disclosure-policy |
no |
VMWare |
https://www.vmware.com/support/policies/security_response.html |
no |
VPNArea |
https://vpnarea.com/front/home/bugbounty |
yes |
VRT |
https://www.vrt.be/en/responsible-disclosure-policy-english-version/ |
no |
VU Security |
https://www.vusecurity.com/vulnerability-disclosure-policy |
no |
VanMoof |
https://www.vanmoof.com/en/responsible-disclosure-policy |
no |
Varo Money |
https://varomoney.responsibledisclosure.com/hc/en-us |
no |
Vdoo |
https://www.vdoo.com/disclosures |
no |
Veracode |
https://www.veracode.com/legal-privacy/responsible-disclosure-policy |
no |
Veriff |
https://www.veriff.com/responsible-disclosure |
no |
Viadeo |
https://www.viadeo.com/en/securite |
no |
Viator |
https://bugcrowd.com/viator |
yes |
Vimeo |
https://hackerone.com/vimeo |
yes |
Vipps AS |
https://www.vipps.no/sikkerhet/responsible-disclosure-policy/ |
no |
Virtru |
https://www.virtru.com/responsible-disclosure/ |
no |
Visa |
https://usa.visa.com/about-visa/vulnerability-disclosure.html |
no |
Visma |
https://www.visma.com/trust-centre/smb/security-and-privacy/operational/responsible-disclosure/ |
yes |
Vista Entertainment Solutions |
https://vista.co/responsible-disclosure-policy/ |
no |
Vivy |
https://hackerone.com/vivy |
no |
Vodafone |
https://www.vodafone.nl/over-deze-website/privacy-en-disclaimer/report-security-leak.shtml |
no |
Volkis |
https://www.volkis.com.au/vulnerability-disclosure/ |
yes |
Vonage |
https://bugcrowd.com/vonage |
no |
Vopak |
https://www.vopak.com/vopak-responsible-disclosure-policy |
no |
Voys |
https://www.voys.nl/security-responsible-disclosure/#rd |
no |
Vultr |
https://www.vultr.com/bug-bounty/ |
yes |
Vyond |
https://help.vyond.com/hc/en-us/articles/360000497723-How-do-I-Report-a-Security-Vulnerability- |
no |
Vyper |
https://github.com/vyperlang/vyper/security/policy |
no |
WP Engine |
https://bugcrowd.com/wpengine |
no |
Wagwalking |
https://wagwalking.com/responsible-disclosure |
yes |
WalletConnect |
https://walletconnect.com/.well-known/security.txt |
yes |
Walmart |
https://corporate.walmart.com/privacy-security |
yes |
Wamba |
http://corp.wamba.com/en/developer/security/#form |
yes |
Wandera |
https://www.wandera.com/responsible-disclosure/ |
no |
WeTransfer |
https://wetransfer.com/legal/disclosure |
yes |
WeVPN |
https://wevpn.com/responsible-disclosure |
yes |
Wearsafe |
https://wearsafe.com/wearsafe-vulnerability-disclosure-policy/ |
no |
WebTorrent |
https://github.com/webtorrent/webtorrent/security/policy |
no |
Webconverger |
http://webconverger.org/security/ |
no |
Websitebuilder.com |
https://bugcrowd.com/endurance-builder |
no |
Wedbio |
https://wedbio.com/report-incident |
no |
Wefact |
https://www.wefact.nl/security/ |
yes |
Wells Fargo |
https://www.wellsfargo.com/privacy-security/fraud/responsible-disclosure-program/ |
no |
Western Digital |
https://www.westerndigital.com/support/productsecurity |
no |
Western Union |
https://bugcrowd.com/westernunion |
yes |
Westjet |
https://bugcrowd.com/westjet-disclose |
no |
Whatbox |
https://whatbox.ca/policies/security |
yes |
Whmcs |
https://bugcrowd.com/whmcs |
yes |
Wickr |
https://wickr.com/security/bug-bounty/ |
yes |
Winni |
https://www.winni.in/bug-bounty |
no |
Wisekey |
https://www.wisekey.com/vulnerabilities/ |
no |
Woodpecker |
https://woodpecker.co/vulnerability-disclosure-program/ |
no |
Wordfence |
https://www.wordfence.com/security/ |
no |
Wordfence Intelligence |
https://www.wordfence.com/threat-intel/bug-bounty-program/ |
yes |
Wordpress |
https://wordpress.org/about/security/ |
no |
Workmarket |
https://www.workmarket.com/security |
no |
Worldline |
https://worldline.com/en/home/responsible-disclosure-program.html |
no |
Xen Project |
https://www.xenproject.org/security-policy.html |
no |
Xerox |
https://www.xerox.com/perl-bin/formeng.pl?form=product_security_information_request_7285 |
no |
Xfinity |
https://my.xfinity.com/vulnerabilityreport |
no |
Xilinx |
https://hackerone.com/xilinx |
no |
YATRA |
https://www.yatra.com/online/bug-bounty |
no |
Yammer |
https://technet.microsoft.com/en-us/security/dn800983 |
yes |
Yandex |
https://yandex.com/bugbounty/report/ |
yes |
Yesware |
https://www.yesware.com/security/ |
no |
You Need a Budget (YNAB) |
https://bugcrowd.com/ynab |
yes |
YouTube |
https://g.co/vrp |
yes |
Yum! |
https://yum.responsibledisclosure.com/hc/en-us |
no |
Z-Cert |
https://www.z-cert.nl/en/responsible-disclosure-z-cert |
no |
ZEIT |
https://hackerone.com/zeit |
no |
Zaful |
https://www.zaful.com/report-security-issues |
yes |
Zapier |
https://zapier.com/engineering/bug-bounty-program/ |
yes |
Zaplabs |
https://www.zaplabs.com/docs/Security%20Vulnerability%20Disclosure%20Program.pdf |
no |
Zarx |
https://www.zarx.co.za/rights/terms-and-conditions |
no |
Zelle |
https://www.zellepay.com/responsible-disclosure-program |
no |
Zendesk |
https://www.zendesk.de/company/policies-procedures/responsible-disclosure-policy/ |
yes |
Zero Disclo |
https://zerodisclo.com/ |
no |
Zerocopter |
https://www.zerocopter.com/en/responsible-disclosure |
no |
Zeta |
https://www.zeta.tech/security/ |
no |
Zetetic |
https://www.zetetic.net/security/ |
no |
Zilliqa |
https://dev.zilliqa.com/docs/contributors/contribute-bug-bounty/ |
yes |
Zimbra |
https://wiki.zimbra.com/wiki/Zimbra_Responsible_Disclosure_Policy |
no |
Zoho |
https://bugbounty.zoho.com/bb/info#guide |
yes |
Zomato |
https://www.zomato.com/security |
yes |
Zoom |
https://zoom.us/docs/en-us/vulnerability-disclosure-policy.html |
yes |
Zooz |
https://developers.paymentsos.com/docs/disclosure-policy.html |
no |
Zscaler |
https://www.zscaler.com/company/vulnerability-disclosure-program |
no |
Zynga Whitehat |
https://bugcrowd.com/zynga-vdp |
no |
abantecart.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
abcdefghi.com |
https://g.co/vrp |
|
acacian.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
accengage.com |
https://www.airship.com/legal/full-disclosure-security-policy/ |
|
accodeing.com |
https://accodeing.com/security/policy |
|
ace.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
active24.cz |
https://faq.active24.com/cz/933388-Hl%C3%A1%C5%A1en%C3%AD-bezpe%C4%8Dnostn%C3%ADch-zranitelnost%C3%AD |
|
adaware.com |
https://www.adaware.com/privacy-policy |
|
adex.network |
https://www.adex.network/security-policy.txt |
|
admin.amidfamily.net |
https://g.co/vrp |
|
administrator.de |
https://administrator.technology/privacy.php |
|
admirable.one |
https://g.co/vrp |
|
adp.ca |
https://www.adp.com/about-adp/data-security.aspx |
|
adp.co.uk |
https://www.adp.com/about-adp/data-security.aspx |
|
adp.com |
https://www.adp.com/about-adp/data-security.aspx |
|
aeon.to |
https://xmr.to/security |
|
agepartnership.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
aircrack-ng.org |
https://aircrack-ng.org/security.html |
|
airship.com |
https://www.airship.com/legal/full-disclosure-security-policy/ |
|
airvpn.org |
https://airvpn.org/security_policy/ |
|
akral.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
aldolat.it |
https://www.aldolat.it/info/privacy-policy/ |
|
aleria.fr |
https://aleria.fr/legales.php |
|
allegro.pl |
https://hackerone.com/allegro?view_policy=true |
|
amoCRM |
https://www.amocrm.com/vulnerability-disclosure-program/ |
no |
amr.net |
https://www.amr.net/site/privacy-policy |
|
angular-team.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
api.joomla.org |
https://developer.joomla.org/security.html |
|
api.trello.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
apnic.net |
https://www.apnic.net/community/security/apnic-vulnerability-reporting-program/ |
|
app.grammarly.com |
https://hackerone.com/grammarly |
|
applab.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
apps.odoo.com |
https://www.odoo.com/security-report |
|
apptimize.com |
https://www.airship.com/legal/full-disclosure-security-policy/ |
|
appveyor.statuspage.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
appxotica.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
archiv.cesnet.cz |
https://csirt.cesnet.cz/en/vulnerability_report |
|
arieg.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
arkadiyt.com |
https://hackerone.com/arkadiyt-projects |
|
armbian.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
artsyproduct.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
arup.com |
https://www.arup.com/Reporting-Policy.pdf |
|
arxiv-org.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
ashut.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
askfavor.com |
https://favordelivery.com/security |
|
atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
atlassian.design |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
attack.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
au.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
aug.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
avanza.se |
https://www.avanza.se/sakerhet-villkor/sakerhet.html |
|
avatar.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
avm.de |
https://avm.de/service/sicherheitsinfos-zu-updates/ |
|
axelerant.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
b2b2013.everydayhero.com |
https://www.blackbaud.com/security/responsible-disclosure |
|
bahmni.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
bankid.com |
https://www.bankid.com/disclosure |
|
beep.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
bestchai.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
betaalvereniging.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
beyondtextbooks.org |
https://mindtouch.com/disclosure |
|
bill.com |
https://www.bill.com/security |
|
bio.libretexts.org |
https://mindtouch.com/disclosure |
|
bird.co |
https://docs.google.com/document/d/1uONlnLYC55398Y2EfyIJu5jRzf4qGa3tJvKlXfLp9MY/view |
|
bitbucket.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
bitdefender.co.uk |
https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html |
|
bitdefender.com |
https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html |
|
bitdefender.de |
https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html |
|
bitdefender.fr |
https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html |
|
bitdefenderlogin.de |
https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html |
|
bitfinex.statuspage.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
bitprim.org |
https://g.co/vrp |
|
black-dog-larapinta.everydayhero.com |
https://www.blackbaud.com/security/responsible-disclosure |
|
blackducksoftware.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
blockport.io |
https://bugcrowd.com/blockport |
|
blog.agilecraft.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
blog.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
blog.jvmguy.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
blog.oneiroi.co.uk |
https://oneiroi.co.uk/.well-known/policy.txt |
|
blogs.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
blogspot.co.uk |
https://g.co/vrp |
|
bloomscape.com |
https://bloomscape.com/.well-known/security-policy.html |
|
bluesnap |
https://home.bluesnap.com/security-bounty/ |
yes |
boardgamegeek.com |
https://boardgamegeek.com/responsible_disclosure_policy |
|
bol.com |
https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html |
|
botium.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
bro-tracker.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
brookhouseinquiry.org.uk |
https://mojdigital.blog.gov.uk/vulnerability-disclosure-policy/ |
|
bytebucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
cPanel |
https://cpanel.net/cpanel-security-bounty-program/ |
yes |
cPaperless |
https://hackerone.com/cpaperless |
no |
ca.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
cal.new |
https://g.co/vrp |
|
calmsolutions.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
calorieking.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
cambridgez88.jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
cancercentrum.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
canon-europe.com |
https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy |
|
canon-me.com |
https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy |
|
canon.co.uk |
https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy |
|
canon.de |
https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy |
|
canon.es |
https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy |
|
canon.fr |
https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy |
|
canon.ie |
https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy |
|
captainfact.io |
https://captainfact.io/help/bug_report |
|
card.com |
https://www.card.com/responsible-disclosure-policy |
no |
caspar-health.com |
https://caspar-health.com/rdp/ |
|
casper.com |
https://hackerone.com/casper |
|
casperlabs.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
caspersleep.com |
https://hackerone.com/casper |
|
centralitydev.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
cert.at |
https://cert.at/de/ueber-uns/rfc2350/ |
|
cert.govt.nz |
https://www.cert.govt.nz/it-specialists/guides/reporting-a-vulnerability/cert-nz-coordinated-vulnerability-disclosure-policy/ |
|
cesnet.cz |
https://csirt.cesnet.cz/en/vulnerability_report |
|
channelintelligence.com |
https://g.co/vrp |
|
chem.libretexts.org |
https://mindtouch.com/disclosure |
|
chemwiki.ucdavis.edu |
https://mindtouch.com/disclosure |
|
childcare.co.uk |
https://www.childcare.co.uk/responsible-disclosure-policy |
|
chip.de |
https://www.burda-forward.de/en/security/ |
|
chitchats.com |
https://admin.reinvent.com/security/security.policy.txt |
|
chocolatey.org |
https://chocolatey.org/security |
|
chromecast.com |
https://g.co/vrp |
|
clamxav.com |
https://clamxav.com/.well-known/vulnerability_disclosure_policy.txt |
|
clarionmag.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
clever-cloud.com |
https://www.clever-cloud.com/security-policy |
|
clojure.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
cloud.elastic.co |
https://www.elastic.co/cloud/security |
|
cloudbees.com |
https://www.cloudbees.com/security-policy |
|
cloudflarestatus.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
code.kiwi.com |
https://www.kiwi.com/us/pages/security |
|
code.l0g.in |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
code.mattzuba.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
codeoftalent.io |
https://g.co/vrp |
|
coderpatsy.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
codeweavers.com |
https://www.codeweavers.com/support/wiki/website/security |
|
codice.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
coinsbit.io |
https://coinsbit.io/ru/privacy-policy |
|
collabim.cz |
https://www.collabim.cz/bezpecnost-collabimu.html |
|
community.joomla.org |
https://developer.joomla.org/security.html |
|
community.optimizely.com |
https://mindtouch.com/disclosure |
|
conference.first.org |
https://www.first.org/about/bugs |
|
conferencebadge.com |
https://www.conferencebadge.com/security |
|
confluence.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
connect.atlassian.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
connid.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
console.vespa.ai |
https://hackerone.com/verizonmedia?view_policy=true |
|
contentful.com |
https://www.contentful.com/security/ |
|
corporate.xing.com |
https://www.xing.com/rfc-2350.txt |
|
cosyfeet.com |
https://www.cosyfeet.com/security-privacy |
|
countryfinancial.com |
https://www.countryfinancial.com/en/privacy-and-security.html |
|
covid19.nhs.uk |
https://hackerone.com/nhscovid19app |
|
crunchbase.com |
https://www.crunchbase.com/.well-known/security-policy.txt |
|
cs.duolingo.com |
https://www.duolingo.com/privacy |
|
cs50.statuspage.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
csfd.cz |
https://www.csfd.cz/vyvojari/ |
|
dashpay.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
data.mx.com |
https://www.mx.com/security-policy |
|
data443.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
dataself.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
datastax-oss.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
de.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
de.duolingo.com |
https://www.duolingo.com/privacy |
|
de.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
defcon.org |
https://www.defcon.org/html/links/dc-policy.html |
|
defiant.com |
https://www.defiant.com/security/ |
|
democracy.york.gov.uk |
https://www.york.gov.uk/security |
|
dennisbabkin.com |
https://dennisbabkin.com/security/ |
|
desiclub.com |
https://g.co/vrp |
|
design.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
dev.swergroup.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
developer.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
developer.connectwise.com |
https://mindtouch.com/disclosure |
|
developer.joomla.org |
https://developer.joomla.org/security.html |
|
developers.tezos.com |
https://tezos.foundation/security/ |
|
df.eu |
https://df.eu/whitehat/policy |
|
dfrank.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
dfuse Platform |
https://hackerone.com/dfuse |
yes |
diging.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
digitalassetlinks.org |
https://g.co/vrp |
|
director.tjhsst.edu |
https://tjhsst.edu/security/policy.txt |
|
dmoj.ca |
https://dmoj.ca/security/ |
|
doc.google.com |
https://g.co/vrp |
|
docker.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
docs.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
docs.connectwise.com |
https://mindtouch.com/disclosure |
|
docs.joomla.org |
https://developer.joomla.org/security.html |
|
docs.new |
https://g.co/vrp |
|
documentation.meraki.com |
https://mindtouch.com/disclosure |
|
documents.google.com |
https://g.co/vrp |
|
docverse.com |
https://g.co/vrp |
|
doubleclick.net |
https://g.co/vrp |
|
downloads.joomla.org |
https://developer.joomla.org/security.html |
|
dp3.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
dpd.co.uk |
https://hackerone.com/dpdgroup_uk |
|
dropbox.com |
https://hackerone.com/dropbox/ |
|
dropbox.com.go.snip.ly |
https://hackerone.com/dropbox/ |
|
dsnet.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
dssw.co.uk |
https://www.dssw.co.uk/readme/security.html |
|
dtl-fair.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
duggmirror.com |
https://g.co/vrp |
|
duolingo.com |
https://www.duolingo.com/privacy |
|
dynstatus.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
eBay |
https://pages.ebay.com/securitycenter/security_researchers.html |
no |
eClinicalWorks |
https://www.eclinicalworks.com/responsible-disclosure-policy/ |
no |
ea-foundation.org |
https://ea-foundation.org/security-policy/ |
|
easysign.io |
https://g.co/vrp |
|
ecosystem.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
ed.voicethread.com |
https://voicethread.com/howto/category/security-faq/ |
|
edas.info |
https://www.edas.info/doc/disclosure.html |
|
edun.com |
https://g.co/vrp |
|
egeninsamling.minstoradag.org |
https://intl.betternow.org/security |
|
el.duolingo.com |
https://www.duolingo.com/privacy |
|
electroneek.com |
https://electroneek.com/disclosure-policy/ |
|
email.indiainc.ca |
https://g.co/vrp |
|
en-ae.namshi.com |
https://namshi.com/security |
|
en.duolingo.com |
https://www.duolingo.com/privacy |
|
en.lichess.org |
https://lichess.org/contact#help-security |
|
encrypted.google.com |
https://g.co/vrp |
|
engage.vic.gov.au |
https://harvestdp.com/security-research-policy |
|
enjin.io |
https://enj.in/security |
|
enjinx.io |
https://enj.in/security |
|
enovar.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
epionemaiko.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
es.duolingo.com |
https://www.duolingo.com/privacy |
|
esig-dss.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
eths.ed.voicethread.com |
https://voicethread.com/howto/category/security-faq/ |
|
etsi.org |
https://www.etsi.org/standards/coordinated-vulnerability-disclosure |
|
eveonline.com |
https://www.eveonline.com/article/responsible-disclosure-reporting-security-issues |
|
everydayhero.com |
https://www.blackbaud.com/security/responsible-disclosure |
|
exabeam.com |
https://www.exabeam.com/.well-known/security.txt |
|
exoscale.ch |
https://www.exoscale.com/security/ |
|
exoscale.com |
https://www.exoscale.com/security/ |
|
exp.cdn-hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
extensions.joomla.org |
https://developer.joomla.org/security.html |
|
factorialhr.com |
https://www.factorialhr.com/security |
|
farcry.jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
fastweb.it |
https://www.fastweb.it/corporate/responsible-disclosure/ |
|
favordelivery.com |
https://favordelivery.com/security |
|
ficanguitars.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
finder.com.au |
https://www.finder.com.au/vulnerability-disclosure-policy |
|
finnie.org |
https://www.finnie.org/vuln/ |
|
finosfoundation.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
first.org |
https://www.first.org/about/bugs |
|
fit.google.com |
https://g.co/vrp |
|
fitmetrix.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
flatmates.com.au |
https://www.rea-group.com/security |
|
flowcrypt.com |
https://flowcrypt.com/docs/technical/bug-bounty.html |
|
fluiddyn.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
focus.de |
https://www.burda-forward.de/en/security/ |
|
followupboss.com |
https://www.followupboss.com/vulnerability-disclosure-policy |
|
fondy.eu |
https://www.openbugbounty.org/bugbounty/FONDY_EU/ |
|
forcepoint.com |
https://www.forcepoint.com/company/innovation/product-security-report-issue |
|
forms.new |
https://g.co/vrp |
|
forum.joomla.org |
https://developer.joomla.org/security.html |
|
forums.studentdoctor.net |
https://www.studentdoctor.net/security-policy/ |
|
fotoforensics.com |
http://fotoforensics.com/faq.php?show=Security |
|
fr.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
fr.duolingo.com |
https://www.duolingo.com/privacy |
|
fr.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
friendsite.com |
https://sportsa.com/policies/ |
|
ftx.com |
https://help.ftx.com/hc/en-us/articles/360031171351 |
|
g.cn |
https://g.co/vrp |
|
gRPC |
https://github.com/grpc/proposal/blob/master/P4-grpc-cve-process.md |
no |
gavrikos.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
gbs-schweiz.org |
https://ea-foundation.org/security-policy/ |
|
gchq.gov.uk |
https://www.ncsc.gov.uk/information/vulnerability-reporting |
|
gd.google.com |
https://g.co/vrp |
|
geekzone.co.nz |
https://www.geekzone.co.nz/content.asp?contentid=105 |
|
genbattle.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
gene.com |
https://hackerone.com/roche?view_policy=true |
|
genentech.com |
https://hackerone.com/roche?view_policy=true |
|
gener8ads.com |
https://hackerone.com/gener8 |
no |
geoffreyhuntley.com |
https://ghuntley.com/security/ |
|
getdropbox.com |
https://hackerone.com/dropbox/ |
|
getonbrd.cl |
https://www.getonbrd.com/about/privacy |
|
gexsi.com |
https://gexsi.com/about/en/privacy-policy/ |
|
ghostshipgames.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
ghuntley.com |
https://ghuntley.com/security/ |
|
give.everydayhero.com |
https://www.blackbaud.com/security/responsible-disclosure |
|
givehopegiveeducation.everydayhero.com |
https://www.blackbaud.com/security/responsible-disclosure |
|
gizlilik-ilkeleri.hesaplama.net |
https://gizlilik-ilkeleri.hesaplama.net/ |
|
gmail.google.com |
https://g.co/vrp |
|
goalapl.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
gocardless.com |
https://gocardless.com/faq/merchants/security/ |
|
goetzpf.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
goodwillnne.org |
https://goodwillnne.org/privacy/ |
|
google.ac |
https://g.co/vrp |
|
google.ad |
https://g.co/vrp |
|
google.ae |
https://g.co/vrp |
|
google.af |
https://g.co/vrp |
|
google.ag |
https://g.co/vrp |
|
google.al |
https://g.co/vrp |
|
google.am |
https://g.co/vrp |
|
google.as |
https://g.co/vrp |
|
google.at |
https://g.co/vrp |
|
google.az |
https://g.co/vrp |
|
google.ba |
https://g.co/vrp |
|
google.be |
https://g.co/vrp |
|
google.bf |
https://g.co/vrp |
|
google.bg |
https://g.co/vrp |
|
google.bi |
https://g.co/vrp |
|
google.bj |
https://g.co/vrp |
|
google.bs |
https://g.co/vrp |
|
google.bt |
https://g.co/vrp |
|
google.by |
https://g.co/vrp |
|
google.ca |
https://g.co/vrp |
|
google.cat |
https://g.co/vrp |
|
google.cc |
https://g.co/vrp |
|
google.cd |
https://g.co/vrp |
|
google.cf |
https://g.co/vrp |
|
google.cg |
https://g.co/vrp |
|
google.ch |
https://g.co/vrp |
|
google.ci |
https://g.co/vrp |
|
google.cl |
https://g.co/vrp |
|
google.cm |
https://g.co/vrp |
|
google.cn |
https://g.co/vrp |
|
google.co.ao |
https://g.co/vrp |
|
google.co.bw |
https://g.co/vrp |
|
google.co.ck |
https://g.co/vrp |
|
google.co.cr |
https://g.co/vrp |
|
google.co.hu |
https://g.co/vrp |
|
google.co.id |
https://g.co/vrp |
|
google.co.il |
https://g.co/vrp |
|
google.co.im |
https://g.co/vrp |
|
google.co.in |
https://g.co/vrp |
|
google.co.je |
https://g.co/vrp |
|
google.co.jp |
https://g.co/vrp |
|
google.co.ke |
https://g.co/vrp |
|
google.co.kr |
https://g.co/vrp |
|
google.co.ls |
https://g.co/vrp |
|
google.co.ma |
https://g.co/vrp |
|
google.co.mz |
https://g.co/vrp |
|
google.co.nz |
https://g.co/vrp |
|
google.co.th |
https://g.co/vrp |
|
google.co.tz |
https://g.co/vrp |
|
google.co.ug |
https://g.co/vrp |
|
google.co.uk |
https://g.co/vrp |
|
google.co.uz |
https://g.co/vrp |
|
google.co.ve |
https://g.co/vrp |
|
google.co.vi |
https://g.co/vrp |
|
google.co.za |
https://g.co/vrp |
|
google.co.zm |
https://g.co/vrp |
|
google.co.zw |
https://g.co/vrp |
|
google.com |
https://g.co/vrp |
|
google.com.af |
https://g.co/vrp |
|
google.com.ag |
https://g.co/vrp |
|
google.com.ai |
https://g.co/vrp |
|
google.com.ar |
https://g.co/vrp |
|
google.com.au |
https://g.co/vrp |
|
google.com.bd |
https://g.co/vrp |
|
google.com.bh |
https://g.co/vrp |
|
google.com.bn |
https://g.co/vrp |
|
google.com.bo |
https://g.co/vrp |
|
google.com.br |
https://g.co/vrp |
|
google.com.by |
https://g.co/vrp |
|
google.com.bz |
https://g.co/vrp |
|
google.com.cn |
https://g.co/vrp |
|
google.com.co |
https://g.co/vrp |
|
google.com.cu |
https://g.co/vrp |
|
google.com.cy |
https://g.co/vrp |
|
google.com.do |
https://g.co/vrp |
|
google.com.ec |
https://g.co/vrp |
|
google.com.eg |
https://g.co/vrp |
|
google.com.et |
https://g.co/vrp |
|
google.com.fj |
https://g.co/vrp |
|
google.com.gh |
https://g.co/vrp |
|
google.com.gi |
https://g.co/vrp |
|
google.com.gr |
https://g.co/vrp |
|
google.com.gt |
https://g.co/vrp |
|
google.com.hk |
https://g.co/vrp |
|
google.com.jm |
https://g.co/vrp |
|
google.com.kh |
https://g.co/vrp |
|
google.com.kw |
https://g.co/vrp |
|
google.com.lb |
https://g.co/vrp |
|
google.com.ly |
https://g.co/vrp |
|
google.com.mm |
https://g.co/vrp |
|
google.com.mt |
https://g.co/vrp |
|
google.com.mx |
https://g.co/vrp |
|
google.com.my |
https://g.co/vrp |
|
google.com.na |
https://g.co/vrp |
|
google.com.nf |
https://g.co/vrp |
|
google.com.ng |
https://g.co/vrp |
|
google.com.ni |
https://g.co/vrp |
|
google.com.np |
https://g.co/vrp |
|
google.com.om |
https://g.co/vrp |
|
google.com.pa |
https://g.co/vrp |
|
google.com.pe |
https://g.co/vrp |
|
google.com.pg |
https://g.co/vrp |
|
google.com.ph |
https://g.co/vrp |
|
google.com.pk |
https://g.co/vrp |
|
google.com.py |
https://g.co/vrp |
|
google.com.qa |
https://g.co/vrp |
|
google.com.ru |
https://g.co/vrp |
|
google.com.sa |
https://g.co/vrp |
|
google.com.sb |
https://g.co/vrp |
|
google.com.sg |
https://g.co/vrp |
|
google.com.sl |
https://g.co/vrp |
|
google.com.sv |
https://g.co/vrp |
|
google.com.tj |
https://g.co/vrp |
|
google.com.tn |
https://g.co/vrp |
|
google.com.tr |
https://g.co/vrp |
|
google.com.tw |
https://g.co/vrp |
|
google.com.ua |
https://g.co/vrp |
|
google.com.uy |
https://g.co/vrp |
|
google.com.vc |
https://g.co/vrp |
|
google.com.vn |
https://g.co/vrp |
|
google.cv |
https://g.co/vrp |
|
google.cz |
https://g.co/vrp |
|
google.de |
https://g.co/vrp |
|
google.dj |
https://g.co/vrp |
|
google.dk |
https://g.co/vrp |
|
google.dm |
https://g.co/vrp |
|
google.dz |
https://g.co/vrp |
|
google.ee |
https://g.co/vrp |
|
google.es |
https://g.co/vrp |
|
google.fi |
https://g.co/vrp |
|
google.fm |
https://g.co/vrp |
|
google.fr |
https://g.co/vrp |
|
google.ga |
https://g.co/vrp |
|
google.ge |
https://g.co/vrp |
|
google.gg |
https://g.co/vrp |
|
google.gl |
https://g.co/vrp |
|
google.gm |
https://g.co/vrp |
|
google.gp |
https://g.co/vrp |
|
google.gr |
https://g.co/vrp |
|
google.gy |
https://g.co/vrp |
|
google.hk |
https://g.co/vrp |
|
google.hn |
https://g.co/vrp |
|
google.hr |
https://g.co/vrp |
|
google.ht |
https://g.co/vrp |
|
google.hu |
https://g.co/vrp |
|
google.ie |
https://g.co/vrp |
|
google.im |
https://g.co/vrp |
|
google.iq |
https://g.co/vrp |
|
google.is |
https://g.co/vrp |
|
google.it |
https://g.co/vrp |
|
google.je |
https://g.co/vrp |
|
google.jo |
https://g.co/vrp |
|
google.jp |
https://g.co/vrp |
|
google.kg |
https://g.co/vrp |
|
google.ki |
https://g.co/vrp |
|
google.kz |
https://g.co/vrp |
|
google.la |
https://g.co/vrp |
|
google.li |
https://g.co/vrp |
|
google.lk |
https://g.co/vrp |
|
google.lt |
https://g.co/vrp |
|
google.lu |
https://g.co/vrp |
|
google.lv |
https://g.co/vrp |
|
google.md |
https://g.co/vrp |
|
google.me |
https://g.co/vrp |
|
google.mg |
https://g.co/vrp |
|
google.mk |
https://g.co/vrp |
|
google.ml |
https://g.co/vrp |
|
google.mn |
https://g.co/vrp |
|
google.ms |
https://g.co/vrp |
|
google.mu |
https://g.co/vrp |
|
google.mv |
https://g.co/vrp |
|
google.mw |
https://g.co/vrp |
|
google.ne |
https://g.co/vrp |
|
google.net |
https://g.co/vrp |
|
google.ng |
https://g.co/vrp |
|
google.nl |
https://g.co/vrp |
|
google.no |
https://g.co/vrp |
|
google.nr |
https://g.co/vrp |
|
google.nu |
https://g.co/vrp |
|
google.off.ai |
https://g.co/vrp |
|
google.pl |
https://g.co/vrp |
|
google.pn |
https://g.co/vrp |
|
google.ps |
https://g.co/vrp |
|
google.pt |
https://g.co/vrp |
|
google.ro |
https://g.co/vrp |
|
google.rs |
https://g.co/vrp |
|
google.ru |
https://g.co/vrp |
|
google.rw |
https://g.co/vrp |
|
google.sc |
https://g.co/vrp |
|
google.se |
https://g.co/vrp |
|
google.sh |
https://g.co/vrp |
|
google.si |
https://g.co/vrp |
|
google.sk |
https://g.co/vrp |
|
google.sm |
https://g.co/vrp |
|
google.sn |
https://g.co/vrp |
|
google.so |
https://g.co/vrp |
|
google.sr |
https://g.co/vrp |
|
google.st |
https://g.co/vrp |
|
google.td |
https://g.co/vrp |
|
google.tg |
https://g.co/vrp |
|
google.tk |
https://g.co/vrp |
|
google.tm |
https://g.co/vrp |
|
google.tn |
https://g.co/vrp |
|
google.to |
https://g.co/vrp |
|
google.tt |
https://g.co/vrp |
|
google.us |
https://g.co/vrp |
|
google.vg |
https://g.co/vrp |
|
google.vu |
https://g.co/vrp |
|
google.ws |
https://g.co/vrp |
|
grammarly.com |
https://hackerone.com/grammarly |
|
greenshot.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
group.jumia.com |
https://group.jumia.com/security/ |
|
growsumo.com |
https://www.partnerstack.com/policies#security-practices |
|
gsma.com |
https://www.gsma.com/aboutus/legal/privacy |
|
gsuite.google.jp |
https://g.co/vrp |
|
guillermooo.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
halfes.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
halp.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hardsuit.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hcahealthcare.com |
https://hcahealthcare.com/legal/index.dot#responsible-disclosure |
|
helios-gesundheit.de |
www.helios-gesundheit.de/bugbounty.html |
|
help.avalara.com |
https://mindtouch.com/disclosure |
|
help.joomla.org |
https://developer.joomla.org/security.html |
|
help.liaisonedu.com |
https://mindtouch.com/disclosure |
|
help.optimizely.com |
https://mindtouch.com/disclosure |
|
help.sumologic.com |
https://mindtouch.com/disclosure |
|
hesaplama.net |
https://gizlilik-ilkeleri.hesaplama.net/ |
|
hg.postspectacular.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hi.duolingo.com |
https://www.duolingo.com/privacy |
|
hia-ai.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hibernate.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
higherfrequencytrading.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hiltermannlease.nl |
https://www.xpos.nl/security.html |
|
hinterlandgames.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hirezstudios.statuspage.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hisnek.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hogeschoolrotterdam.nl |
https://rotterdamuas.com/security/ |
|
home-assistant.io |
https://www.home-assistant.io/security/ |
|
home.saxo |
https://www.home.saxo/legal/vulnerability-disclosure-policy/vulnerability-disclosure-policy |
|
horizenofficial.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hosted.weblate.org |
https://docs.weblate.org/en/latest/contributing/issues.html#security |
|
hotcopper.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
hoteis.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
hoteles.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
hu.duolingo.com |
https://www.duolingo.com/privacy |
|
hylozoic.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
iFixit |
https://www.ifixit.com/Info/Responsible_Disclosure |
no |
iPaidThat |
https://ipaidthat.io/en/faq/safety/vulnerability-disclosure-program/ |
no |
iRobot |
https://bugcrowd.com/irobot |
yes |
ibreak.yourepo.com |
https://www.yourepo.com/user/privacy |
|
id.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
id.duolingo.com |
https://www.duolingo.com/privacy |
|
idempiere.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
ienterprises.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
images.paypal.com |
https://hackerone.com/paypal?view_policy=true |
|
img.bol.com |
https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html |
|
inDrive |
https://hackerone.com/indrive |
yes |
incibe-cert |
https://www.incibe-cert.es/en/what-is-incibe-cert/vulnerability-disclosure-policy |
no |
inetstart.de |
https://g.co/vrp |
|
infoblox |
https://www.infoblox.com/company/legal/vulnerability-responsible-disclosure-policy/ |
no |
infocon.org |
https://www.defcon.org/html/links/dc-policy.html |
|
internetcensus2012.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
ion.tjhsst.edu |
https://tjhsst.edu/security/policy.txt |
|
ipbessecretariat.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
ipv4.google.com |
https://g.co/vrp |
|
irccloud.com |
https://www.irccloud.com/whitehat |
|
issa.org.pl |
https://issa.org.pl/it/dokumenty/polityka-prywatnosci |
|
issues.joomla.org |
https://developer.joomla.org/security.html |
|
it.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
iwalton.com |
https://iwalton.com/legal.html |
|
ja.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
ja.duolingo.com |
https://www.duolingo.com/privacy |
|
jardinesoftware.com |
https://www.jardinesoftware.com/security-policy |
|
jdknight.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
jendrikillner.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
jerrdan.com |
http://jlg.com/.well-known/security.txt |
|
jet.com |
https://corporate.walmart.com/article/responsible-disclosure-policy |
|
jira.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
jira.ats.ucla.edu |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
johnlewis.co.uk |
https://hackerone.com/john_lewis |
|
johnlewis.com |
https://hackerone.com/john_lewis |
|
joomla.org |
https://developer.joomla.org/security.html |
|
jp.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
jummbus.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
justgiving.com |
https://www.blackbaud.com/security/responsible-disclosure |
|
k15t.jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
kaik3apps.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
keeping.nl |
https://305.nl/en/terms-and-conditions/security/ |
|
kenputer.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
keymotes.io |
https://g.co/vrp |
|
kiwi.com |
https://www.kiwi.com/us/pages/security |
|
knowledge.exlibrisgroup.com |
https://mindtouch.com/disclosure |
|
knowledgecenter.zuora.com |
https://mindtouch.com/disclosure |
|
knowyourcompany.com |
https://federacy.com/knowyourteam |
|
knowyourteam.com |
https://federacy.com/knowyourteam |
|
komodoplatform.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
korukids.co.uk |
https://www.korukids.co.uk/privacy-policy/ |
|
krisp.ai |
https://krisp.ai/security/ |
|
labs.google.com |
https://g.co/vrp |
|
lafabriquedelacite.com |
https://www.vinci.com/publi/vinci/cert/index-en.html |
|
lavasoftusa.com |
https://www.adaware.com/privacy-policy |
|
learn.conferencebadge.com |
https://www.conferencebadge.com/security |
|
lfintaiwan.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
lib-rary.com |
https://g.co/vrp |
|
librepilot.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
lichess.org |
https://lichess.org/contact#help-security |
|
lichess1.org |
https://lichess.org/contact#help-security |
|
limawi.io |
https://blog.limawi.io/en/security-vulnerability-reporting-policy/ |
|
lingotek.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
linkedln.ivantay.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
linode.com |
https://hackerone.com/linode |
|
liquibase.jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
lisk.io |
https://lisk.io/bug-bounty-program |
|
littlstar.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
livsstil.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
loans.cashconverters.co.nz |
https://loans.cashconverters.co.nz/security-policy |
|
logicalclocks.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
looktruenorth.com |
https://g.co/vrp |
|
lovenamepix.com |
https://lovenamepix.com/privacy.php |
|
lukforce.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
lumindigital.com |
https://lumindigital.com/security/ |
|
lunatech.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
m.bitdefender.com |
https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html |
|
m.focus.de |
https://www.burda-forward.de/en/security/ |
|
macabacus.com |
https://macabacus.com/vdp |
|
mactalkstech.com |
https://g.co/vrp |
|
mad.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
magazine.joomla.org |
https://developer.joomla.org/security.html |
|
magicable.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
mail.google.com |
https://g.co/vrp |
|
mariacasino.com |
https://hackerone.com/kindred_group |
|
mariadb.com |
https://mariadb.com/security |
|
marketplace.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
mattermost.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
maxdk9.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
mcneiluscompanies.com |
https://www.oshkoshcorp.com/contact/Contacts~CyberSecurity.html |
|
med.libretexts.org |
https://mindtouch.com/disclosure |
|
media.defcon.org |
https://www.defcon.org/html/links/dc-policy.html |
|
medium.statuspage.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
mid.as |
https://security.midas.network/reporting |
|
mifosforge.jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
mikrotik.com |
https://mikrotik.com/support |
|
mindstrong.com |
https://www.mindstronghealth.com/security-policy.html |
|
mindstronghealth.com |
https://www.mindstronghealth.com/security-policy.html |
|
missguided.com |
https://www.missguided.co.uk/responsible-disclosure |
|
mixmastamyk.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
mnm.be |
https://www.vrt.be/en/responsible-disclosure-policy-english-version/ |
|
mobfox.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
mobile.paypal.com |
https://hackerone.com/paypal?view_policy=true |
|
moderntribe.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
moga111.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
moneydesktop.com |
https://mx.com/security-policy |
|
morillas.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
mosastudio.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
movieXchange |
https://moviexchange.com/responsible-disclosure-policy/ |
no |
msd.govt.nz |
http://msd.govt.nz/about-msd-and-our-work/tools/responsible-disclosure-guidelines.html |
|
mx.com |
https://mx.com/security-policy |
|
my.competency.io |
https://sportsa.com/policies/ |
|
mybb.com |
https://mybb.com/get-involved/security/ |
|
mybboard.net |
https://mybb.com/get-involved/security/ |
|
myetherwallet.com |
https://www.myetherwallet.com/security-policy |
|
mypcera.com |
https://g.co/vrp |
|
nachi.org |
https://www.nachi.org/bug-bounty |
|
nahi.org |
https://www.nachi.org/bug-bounty |
|
namshi.com |
https://namshi.com/security |
|
national-lottery.co.uk |
https://www.national-lottery.co.uk/security |
|
navolnenoze.cz |
https://navolnenoze.cz/o-nas/soukromi/ |
|
ncsc.gov.uk |
https://www.ncsc.gov.uk/vulnerability-reporting |
|
neilb.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
nemo.sonarqube.org |
https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317 |
|
netgate.com |
https://www.netgate.com/security/index.html |
|
netmoms.de |
https://www.burda-forward.de/en/security/ |
|
netohq.com |
https://www.netohq.com/privacy-policy |
|
new.whooing.com |
https://whooing.com/info/privacy |
|
news.bitdefender.com |
https://www.bitdefender.com/bitdefender_vulnerability_disclosure_program.html |
|
nhibernate.jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
nl-nl.duolingo.com |
https://www.duolingo.com/privacy |
|
no.de |
https://nodejs.org/en/security/ |
|
no.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
nodejs.org |
https://nodejs.org/en/security/ |
|
nori.com |
https://hackerone.com/nori_e1xxl?view_policy=true |
|
northdecoder.com |
https://g.co/vrp |
|
nospamproxy.de |
https://www.nospamproxy.de/en/cybersecurity-product-security-incident-response-team-psirt/ |
|
npm.im |
https://www.npmjs.com/policies/security |
|
npmjs.com |
https://www.npmjs.com/policies/security |
|
npmjs.org |
https://www.npmjs.com/policies/security |
|
nrk.no |
https://info.nrk.no/hjem/responsible-disclosure-policy/ |
|
nyheder.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
nyhederne-dyn.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
nyhederne.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
odoo.com |
https://www.odoo.com/security-report |
|
ofwat.gov.uk |
https://www.ofwat.gov.uk/vulnerability-disclosure-policy |
|
ohneuz.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
omnisio.com |
https://g.co/vrp |
|
openbanking.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
openbc.com |
https://www.xing.com/rfc-2350.txt |
|
openedx.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
openerp.com |
https://www.odoo.com/security-report |
|
openhubframework.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
openmbee.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
openncp.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
openscience.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
opensource.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
opensourcematters.org |
https://developer.joomla.org/security.html |
|
openwms.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
opsgenie.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
orr.gov.uk |
https://www.orr.gov.uk/ |
|
ortussolutions.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
osgeo-org.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
oshkoshdefense.com |
https://www.oshkoshcorp.com/contact/Contacts~CyberSecurity.html |
|
oviva.com |
https://oviva.com/uk/en/security/ |
|
ozlotteries.com |
https://jumbointeractive.com/security-reporting |
|
p3.no |
https://info.nrk.no/hjem/responsible-disclosure-policy/ |
|
p5.focus.de |
https://www.burda-forward.de/en/security/ |
|
pageoneq.com |
https://g.co/vrp |
|
panazzolo.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
pandaarcade.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
parkhub.com |
https://parkhub.com/policy.txt |
|
participate.melbourne.vic.gov.au |
https://harvestdp.com/security-research-policy |
|
particle.io |
https://www.particle.io/legal/responsible-disclosure/ |
|
partner.bol.com |
https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html |
|
partnerprogramma.bol.com |
https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html |
|
partnerstack.com |
https://www.partnerstack.com/policies#security-practices |
|
patrocinium.com |
https://security.patrocinium.com/ |
|
payline.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
paypalobjects.com |
https://hackerone.com/paypal?view_policy=true |
|
pellepim.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
pfsense.org |
https://www.netgate.com/security/index.html |
|
phData |
https://www.phdata.io/bug-bounty-program/ |
no |
phas.ubc.ca |
https://phas.ubc.ca/.well-known/security-policy.html |
|
phpmyadmin.net |
https://www.phpmyadmin.net/security/ |
|
phys.libretexts.org |
https://mindtouch.com/disclosure |
|
physics.ubc.ca |
https://phas.ubc.ca/.well-known/security-policy.html |
|
pingpongdimsum.us |
https://g.co/vrp |
|
pinwheelapps.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
pitchero.com |
https://www.pitchero.com/security-policy |
|
places.google.com |
https://g.co/vrp |
|
platform.sh |
https://platform.sh/tos/#section-10-disclosures-and-notices |
|
platon.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
playframework.com |
https://www.playframework.com/security/vulnerability |
|
playframework.org |
https://www.playframework.com/security/vulnerability |
|
playlistscreator.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
plex.tv |
https://support.plex.tv/articles/reporting-security-issues/ |
|
plugins.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
pm.me |
https://protonmail.com/blog/protonmail-bug-bounty-program/ |
|
politik.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
polypoly |
https://polypoly.net/en/security/vdp/ |
no |
portix.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
postini.com |
https://g.co/vrp |
|
postrank.com |
https://g.co/vrp |
|
previous.cloudbees.com |
https://www.cloudbees.com/security-policy |
|
producthelp.kitchenaid.com |
https://mindtouch.com/disclosure |
|
producthelp.whirlpool.com |
https://mindtouch.com/disclosure |
|
programmer.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
protonmail.ch |
https://protonmail.com/blog/protonmail-bug-bounty-program/ |
|
pt.duolingo.com |
https://www.duolingo.com/privacy |
|
publi.vinci.com |
https://www.vinci.com/publi/vinci/cert/index-en.html |
|
puredocs.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
purelang.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
purple.ai |
https://purple.ai/responsible-disclosure/ |
|
purplewifi.net |
https://purple.ai/responsible-disclosure/ |
|
pushcrew.com |
https://pushcrew.com/security-compliance/responsible-disclosure-policy/ |
|
pushlife.com |
https://g.co/vrp |
|
qpp.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
qualtrics.com |
https://www.qualtrics.com/platform/security/vulnerability-disclosure/ |
|
quantcast.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
quibi.com |
https://quibi.com/privacy-policy |
|
radio.nrk.no |
https://info.nrk.no/hjem/responsible-disclosure-policy/ |
|
raf.mod.uk |
https://www.gov.uk/guidance/report-a-vulnerability-on-an-mod-system |
|
rawfury.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
rbkmoney.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
rcvmhs.vic.gov.au |
https://harvestdp.com/security-research-policy |
|
re-flekt.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
realcommercial.com.au |
https://www.rea-group.com/security |
|
realestate.com.au |
https://www.rea-group.com/security |
|
realpython.com |
https://realpython.com/security/ |
|
recovery.tezos.com |
https://tezos.foundation/security |
|
recsys.xing.com |
https://www.xing.com/rfc-2350.txt |
|
reddit.statuspage.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
redditstatus.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
rekruter.de |
https://www.rekruter.de/impressum/datenschutz.lasso |
|
replay4me.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
reportgarden |
https://reportgarden.com/responsible-disclosure/ |
yes |
revizto.com |
https://revizto.com/csp |
|
ro.duolingo.com |
https://www.duolingo.com/privacy |
|
robocorp.com |
https://robocorp.com/.well-known/responsible-disclosure-policy.html |
|
roboticvision.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
roche.com |
https://hackerone.com/roche?view_policy=true |
|
rockset |
https://rockset.com/legal/responsible-disclosure-policy/ |
yes |
rometools.jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
rotterdamuas.com |
https://rotterdamuas.com/security/ |
|
rpggeek.com |
https://boardgamegeek.com/responsible_disclosure_policy |
|
rtbf.be |
https://www.rtbf.be/cgu/ |
|
ru.duolingo.com |
https://www.duolingo.com/privacy |
|
ryzomcore.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
s.s-bol.com |
https://www.bol.com/nl/m/algemeen/kwetsbaarheid-melden/subject/64209061/index.html |
|
sandbox.paypal.com |
https://hackerone.com/paypal?view_policy=true |
|
sanity.io |
https://www.sanity.io/security |
|
saxobank.com |
https://www.home.saxo/legal/vulnerability-disclosure-policy/vulnerability-disclosure-policy |
|
sbab.se |
https://www.sbab.se/1/sidfotsmeny_2/sakerhet/responsible_disclosure.html |
|
scandiweb.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
sciex |
https://sciex.com/product-security/coordinated-vulnerabilities-disclosure-policy |
no |
scotchgit.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
scotchgit.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
scroll.com |
https://scroll.help/en/articles/3344853-does-scroll-have-a-bug-bounty-or-responsible-disclosure-program |
|
searchmash.com |
https://g.co/vrp |
|
secrethub.io |
https://secrethub.io/security |
|
securepractice.co |
https://securepractice.co/support |
|
securiti.ai |
https://securiti.ai/security/ |
|
seditaville.com |
https://g.co/vrp |
|
segatalab.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
senbox.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
sg.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
shapeup.org |
https://g.co/vrp |
|
sheet.new |
https://g.co/vrp |
|
sheets.new |
https://g.co/vrp |
|
shoelace.nyc |
https://g.co/vrp |
|
showcase.joomla.org |
https://developer.joomla.org/security.html |
|
silverstripe.org |
https://docs.silverstripe.org/en/contributing/release_process/#security-releases |
|
sjl.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
sjl.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
skam.p3.no |
https://info.nrk.no/hjem/responsible-disclosure-policy/ |
|
skypicker.com |
https://www.kiwi.com/us/pages/security |
|
slides.new |
https://g.co/vrp |
|
sluthate.com |
https://g.co/vrp |
|
smartregister.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
smile.co.uk |
https://www.smile.co.uk/global/security/responsible-security-disclosure |
|
smugmug.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
snarfware.com |
https://g.co/vrp |
|
sociality.io |
https://sociality.io/security/#responsible-disclosure |
|
socialmedian.com |
https://www.xing.com/rfc-2350.txt |
|
socifi-doc.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
solidgate.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
sonarcloud.io |
https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317 |
|
sonarqube.org |
https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317 |
|
sonarsource.com |
https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317 |
|
sonarsource.org |
https://community.sonarsource.com/t/responsible-vulnerability-disclosure/9317 |
|
songza.fm |
https://g.co/vrp |
|
sourcetreeapp.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
southamptonairport.com |
https://www.agsairports.co.uk/report-a-vulnerability/ |
|
southwest.com |
https://www.southwest.com/security-researchers.txt |
|
spaceapegames.com |
https://www.spaceapegames.com/privacy-policy |
|
spark.io |
https://www.particle.io/legal/responsible-disclosure/ |
|
spielraum.xing.com |
https://www.xing.com/rfc-2350.txt |
|
splio.com |
https://www.splio.com/data-protection/ |
|
sport.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
sporten-dyn.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
sporten.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
sqreen.com |
https://www.sqreen.com/security |
|
sqreen.io |
https://www.sqreen.com/security |
|
squanchtendo.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
ssl.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
ssl.panoramio.com |
https://g.co/vrp |
|
stanwood.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
starlingbank.co.uk |
https://www.starlingbank.com/security/disclosure/ |
|
starlingbank.com |
https://www.starlingbank.com/security/disclosure/ |
|
status.botterminator.justcool393.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.clever.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.cocoapods.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.codecov.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.coinbase.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.coveralls.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.crossref.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.digitalocean.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.discordapp.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.dropbox.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.epicgames.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.flickr.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.gandi.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.geforcenow.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.github.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.haikulearning.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.hummingbot.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.instructure.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.kraken.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.ledger.fr |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.linode.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.m1finance.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.mediatemple.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.mozilla.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.npmjs.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.packagist.com.br |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.plex.tv |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.popcorntime.app |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.robinhood.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.salemove.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.sentry.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.sipgate.de |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.spacexdata.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.sparkpost.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.squarespace.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.stellar.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.universe.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.voxmedia.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
status.zoom.us |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
statuspage.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
stefanvd.net |
https://www.stefanvd.net/privacy/ |
|
stratisplatform.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
strem.io |
https://www.stremio.com/security-policy.txt |
|
stremio.com |
https://www.stremio.com/security-policy.txt |
|
studentdoctor.net |
https://www.studentdoctor.net/security-policy/ |
|
studiojvideo.com |
https://g.co/vrp |
|
success.outsystems.com |
https://mindtouch.com/disclosure |
|
summit.atlassian.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
support.8x8.com |
https://mindtouch.com/disclosure |
|
support.bankid.com |
https://www.bankid.com/disclosure |
|
support.biamp.com |
https://mindtouch.com/disclosure |
|
support.bitium.com |
https://g.co/vrp |
|
support.code42.com |
https://mindtouch.com/disclosure |
|
support.d-tools.com |
https://mindtouch.com/disclosure |
|
support.electrolux.com |
https://mindtouch.com/disclosure |
|
support.gainsight.com |
https://mindtouch.com/disclosure |
|
sv.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
sviesolutions.com |
https://www.openbugbounty.org/bugbounty/sviesolutions/ |
|
swabiz.com |
https://www.southwest.com/security-researchers.txt |
|
swankmp.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
switch.ch |
https://www.switch.ch/security/.galleries/files/SWITCH-CERT.txt |
|
sword-of-truth.com |
https://g.co/vrp |
|
sylaps.com |
https://federacy.com/sylaps |
|
syncthing.net |
https://syncthing.net/security/ |
|
synq.statuspage.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
szns |
https://docs.szns.io/smart-contracts/bug-bounty |
yes |
tZERO |
https://bugcrowd.com/tzero-vdp |
no |
tablecheck.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
tadpoledbhub.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
taphome.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
tealyra.co.uk |
https://www.tealyra.com/.well-known/policy.txt |
|
tech234a.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
technicolor.com |
https://www.technicolor.com/privacy-policy |
|
temasys.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
tendrl.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
test.xmr.to |
https://xmr.to/security |
|
texthelp.com |
https://docs.google.com/document/d/e/2PACX-1vQwtwixwk3TzxDEkmLc0NJnEH_u_SJ0FlHX5tFGldG3tK37k4SLeeOc8yFPIc73iMELb3F80z1SOZU4/pub |
|
tezos.com |
https://tezos.foundation/security |
|
tezos.foundation |
https://tezos.foundation/security |
|
theantlrguy.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
thecityfactory.com |
https://www.vinci.com/publi/vinci/cert/index-en.html |
|
thepanhandlegives2019.everydayhero.com |
https://www.blackbaud.com/security/responsible-disclosure |
|
thexyz.com |
https://www.thexyz.com/about/security-policy |
|
thinkquarterly.co.uk |
https://g.co/vrp |
|
tidio.com |
https://www.tidio.com/security-policy/ |
|
tidiochat.com |
https://www.tidio.com/security-policy/ |
|
tjhsst.edu |
https://tjhsst.edu/security/policy.txt |
|
tkatchev.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
tokens.net |
https://www.tokens.net/security-policy/ |
|
tokkonopapa.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
tortoisehg.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
tortoisehg.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
toshbrown.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
trade.ellect.biz |
https://www.kreezalid.com/privacy-policy |
|
tradecloud.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
traviscistatus.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
trello.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
tritarget.org |
https://tritarget.org/static/Privacy%2520Policy.html |
|
tructv.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
trust.tableau.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
tryhackme.com |
https://tryhackme.com/terms |
|
turkja.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
turnoffthelights.com |
https://www.turnoffthelights.com/privacy.html |
|
tv.nrk.no |
https://info.nrk.no/hjem/responsible-disclosure-policy/ |
|
tv.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
tv2sport.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
tvprofil.com |
https://tvprofil.com/privacy/ |
|
tvprofil.net |
https://tvprofil.com/privacy/ |
|
tvtid-dyn.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
tvtid.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
tyle.io |
https://tyle.io/info/privacy |
|
uaestore.canon-me.com |
https://canon.a.bigcontent.io/v1/static/canon_vdp_program-policy |
|
uk.duolingo.com |
https://www.duolingo.com/privacy |
|
uk.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
ukfast.co.uk |
https://www.ukfast.co.uk/terms.html |
|
underholdning.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
unencrypted.nodejs.org |
https://nodejs.org/en/security/ |
|
unicode-org.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
update.joomla.org |
https://developer.joomla.org/security.html |
|
urbanairship.com |
https://www.airship.com/legal/full-disclosure-security-policy/ |
|
valentinaproject.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
vaporware.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
vejr.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
vejret.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
venere.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
venture.com |
https://admin.reinvent.com/security/security.policy.txt |
|
verance.com |
https://www.verance.com/privacy/ |
|
vertical-life.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
vi.duolingo.com |
https://www.duolingo.com/privacy |
|
videogamegeek.com |
https://boardgamegeek.com/responsible_disclosure_policy |
|
vinci.com |
https://www.vinci.com/publi/vinci/cert/index-en.html |
|
visier.com |
https://trust.visier.com/responsible-disclosure/ |
|
visualvirtual.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
vkksu.gov.ua |
https://www.vkksu.gov.ua/userfiles/doc/sec/secpolicy.txt |
|
voicethread.com |
https://voicethread.com/howto/category/security-faq/ |
|
volunteers.joomla.org |
https://developer.joomla.org/security.html |
|
wakatime.com |
https://hackerone.com/wakatime?type=team |
|
was-research.org |
https://ea-foundation.org/security-policy/ |
|
watchup.com |
https://support.plex.tv/articles/reporting-security-issues/ |
|
wcm-io.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
web3 foundation |
https://web3.foundation/security-report/ |
yes |
webarchive.jira.com |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
weberc2.bitbucket.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
weblate.org |
https://docs.weblate.org/en/latest/contributing/issues.html#security |
|
webmethod.nl |
https://www.webmethod.nl/juridisch/responsible-disclosure |
|
webmproject.org |
https://g.co/vrp |
|
webonic.hu |
https://www.websupport.sk/support/kb/nahlasenie-zranitelnosti/ |
|
websupport.sk |
https://www.websupport.sk/support/kb/nahlasenie-zranitelnosti/ |
|
webtld.com |
https://g.co/vrp |
|
weekendesk.es |
https://www.openbugbounty.org/bugbounty/WeekendeskS/ |
|
weekendesk.fr |
https://www.openbugbounty.org/bugbounty/WeekendeskS/ |
|
wiki.crdb.io |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
wiki.cyverse.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
woobe.bitbucket.org |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
xcashteam.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
xing.com |
https://www.xing.com/rfc-2350.txt |
|
xing.de |
https://www.xing.com/rfc-2350.txt |
|
xmr.to |
https://xmr.to/security |
|
xtcommerce.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
xtenlang.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
yeahhub.com |
https://www.yeahhub.com/privacy-policy/ |
|
yor-ok.org.uk |
https://www.york.gov.uk/security |
|
york.gov.uk |
https://www.york.gov.uk/security |
|
yoursay.melbournewater.com.au |
https://harvestdp.com/security-research-policy |
|
zdrojak.cz |
https://www.zdrojak.cz/redakce/podminky-uzivani |
|
zehn.de |
https://www.burda-forward.de/en/security/ |
|
zeit.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
zencash.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
zerotier.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
zh.hotels.com |
https://www.expediagroup.com/about/privacy-data-handling-requirements/ |
|
zigzageducaria.atlassian.net |
https://www.atlassian.com/trust/security/report-a-vulnerability |
|
zkSync |
https://zksync.io/dev/bug-bounty.html |
yes |
zulu.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|
zulu.tv2.dk |
https://omtv2.tv2.dk/media/126365/tv_2_responsible_disclosure.pdf |
|