Banner object (1)

4217 policies in database
  Back Link to program      
TTC | SDK logo
Hall of Fame


600 HKN 


The SDK allows developers and communities to easily integrate TTC Protocol into their services which will grant access to the TTC Ecosystem. The release of TTC SDK lays the foundation for DAPPs in TTC Ecosystem and TReE (TTC Reward Engine.) Currently, TTC SDK is implemented into tataUFO and ALIVE, the first two DAPPs in the TTC Ecosystem.


In Scope

Target | Type | Severity | Reward

TTC SDK Android

| Android | Critical | Bounty


| iOS | Critical | Bounty


Severity (CVSSv3) | Reward
Critical | 5000$
High | 3000$
Medium | 1500$
Low | 600$

__Focus Area


  1. TTC SDK Docs -
  2. Getting Started with the TTC SDK for Android -
  3. Getting Started with the TTC SDK for iOS -

In-Scope Vulnerabilities

TTC accepts all reports that demonstrate vulnerabilities and has real-life impact. Those reports are rewarded in accordance to the severity of the vulnerability. Some examples of security issues in scope of the program for TTC are listed below:

  1. Business Logic
  2. Privilege escalation
  3. Cryptography issues
  4. Account management flows
  5. Transactions forging
  6. Database vulnerability
  7. Privilege escalation
  8. Authentication bypass
  9. Sensitive data exposure

__Program Rules

  1. Avoid compromising any personal data, interruption or degradation of any service .
  2. Don’t access or modify other user data, localize all tests to your accounts.
  3. Don’t exploit any DoS/DDoS vulnerabilities, social engineering attacks or spam.
  4. In case you find chain vulnerabilities we pay only for vulnerability with the highest severity.
  5. Only the first valid bug is eligible for reward.
  6. Don’t disclose publicly any vulnerability until you are granted permission to do so.

  7. Don’t break any law and stay in the defined scope.

  8. Any details of found vulnerabilities must not be communicated to anyone who is not a HackenProof Team or an authorized employee of this Company without appropriate permission.
  9. Comply with the rules of the program.
  10. The rewards will be paid out in HKN based on the current price.

In Scope

Scope Type Scope Name

TTC SDK Android



On this program you get up to 5000.0 HKN for the most critical vulnerability.

FireBounty © 2015-2020

Legal notices