We appreciate all security concerns brought forth and are constantly striving to keep on top of the latest threats. Being pro-active rather than re-active to emerging security issues is a fundamental belief at iwantmyname. Every day new security issues and attack vectors are created. iwantmyname strives to keep abreast on the latest state-of-the-art security developments by working with security researchers and companies. We appreciate the community's efforts in creating a more secure and privacy enhanced world.
This program only awards points for submissions.
Please read and follow the rules in the Standard Disclosure Terms.
TLDR: we can run these automated scans too - please only report things that are actually vulnerable in some way: e.g. openssh/2200 without password auth is not a vuln, dns/53 that returns REFUSED the same, http/80 with a redirect to https isn't either.
The following finding types are specifically excluded from the bounty:
This program follows Bugcrowd’s standard disclosure terms.
This program does not offer financial or point-based rewards for P5 — Informational findings. Learn more about Bugcrowd’s VRT.
This bounty requires explicit permission to disclose the results of a submission.