A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Contact: mailto:infosec@lovecrafts.com Contact: mailto:sysadmins@lovecrafts.com Encryption: http://keys.gnupg.net/pks/lookup?op=vindex&fingerprint=on&search=0x8E141ABD57283D98 #infosec@ Encryption: http://keys.gnupg.net/pks/lookup?op=vindex&fingerprint=on&search=0x84FAD8EE05EE393C #sysadmins@ Preferred-Languages: en Canonical: https://www.lovecrafts.com/.well-known/security.txt Policy: https://www.lovecrafts.com/security.html Hiring: https://team.lovecrafts.com/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEE2Ow6r7Bv8eIt7O8SjhQavVcoPZgFAl0CApkACgkQjhQavVco PZizxw//TGiSYwM724ABPOEd+IX+l83Swy7O93KbsugAmrJ7zgz/zMUdqr/A949C 1XfvFZBCAxqSYGZlBvN7ZZMnxr7BUEvwOVYKkYGUYCx2fHSfnYD/9S/VLLwlbV60 /HoGPh2MkwyX4ZRXY41G6zHda+AKPGHNICsxBDK2U10Kg6mlgswahGY4ZiiC2Kd+ Ouz5WDnwblY5kMEqDmvUOUmayYlCVvgTh+mdhcTdPEhf1iBgfVaAdqQJ6Gtet4YS DcbU7l6nTAzlfWbW7JxTBu9LobeF9lwIHoqDxTVzALdpz6ZV+A9FMZ+KJGrvZdzm KL4fsiUBMl2byQenXB/a27G/E0kyKTzhEHWVNh5LzmzUlIAD2zUy58/MINy3dQlv ayNLIsIojj3jG8NfF/fzxS2NyReJqi29Vck/bdUZsEbv7VWMP5h9yt1YVBWJv+tB PMkgnpmqQRMLULmPvsV4CYUP5A7xf9G2v44vsSpSH3vywisezlmGEMNOU5CDRIQh yOjgbTTTgB6F4WT3NBpyVoSrM/Pe5FHMP5cte7nQn/7S6FOWYq8ZvUVtCffcnfbu FYWOIA1g6D3vZ+EUvhBgfuAquIvILWSL74mHtxpQz42GT0frtdYzfx2fHT9I5Q2J ZnOw2+l/x7Sm5qWLxZWWJnap7nFolnSvMn1o2LNLHPlUFwhbBJw= =TcfO -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2020-04-24 is sorted as securitytxt.
FireBounty © 2015-2024