A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Snado is a very l33t website designed for truely hackers.

# Just kidding: we are gathered here to troll lamers.

# However, snado.it is hosted on the same server of webctf.it, a

# cybersecurity project of the University of Milan.

# So, if you think you've found something serious about our

# infrastructure (e.g. Sandbox escaping, Server Misconfigs, DOS, RCE on

# some important files or, in general, anything that seems unintended to you)

# please contact us ASAP at the following addresses.

#

# We will be grateful to you :D

Contact: jacopotediosi@gmail.com

Contact: franco_marino@outlook.it

Preferred-Languages: en, it