更新时间:2024-11-21 13:00:39.463465

BUGCROWD网站资产更新

监控类型 项目名称 赏 金 类 型 范 围
新增地址Linktree7500Websitehttps://*.plannthat.com
新增项目Northwestern Mutual Managed Bug Bounty Engagement6000WebsiteAnything Owned by Northwestern Mutual on the Public Internet Not Listed as Out of Scope
216.20.176.0/20
https://northwesternmutual.com
https://*.nml.com
https://*.nmfn.com
Anything that Clearly Affects Northwestern Mutual But is Not Own by Northwestern Mutual
Androidhttps://play.google.com/store/apps/details?id=com.nm.nm&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/northwestern-mutual/id1132579006

更新时间:2024-11-21 11:05:02.836974

BUGCROWD网站资产更新

监控类型 项目名称 赏 金 类 型 范 围
新增项目Foxy.io Ecommerce Platform600Other*-bugcrowd.foxycart.com (read below for details)
https://api.foxycart.com/
Websitehttps://admin.foxycart.com
https://admin.foxy.io/
https://auth.foxy.io/
https://foxycart-demo.foxycart.com/cart
新增地址Kohl's4500Android█████████████████████████████████████
Ios█████████████████████████████████
Other███████████████████████████████████████████████████████████████████████████████
Website█████████████
新增地址T-Mobile133700Websitehttps://tess.service-now.com
新增项目Under Armour Product Security2500Websitehttps://www.underarmour.com
https://www.underarmour.co.uk
https://www.underarmournext.co.uk/
https://underarmournext.com/
https://consumer-sustainability.underarmour.com/en
Ioshttps://apps.apple.com/us/app/under-armour/id1092704571
Androidhttps://play.google.com/store/apps/details?id=com.ua.shop&hl=en
Apihttps://api.shop.ua.com/graphql
Otherhttps://mapmyfitness.api.ua.com

更新时间:2024-11-14 14:37:36.930342

BUGCROWD网站资产更新

监控类型 项目名称 赏 金 类 型 范 围
漏洞项目Acorns Grow, Inc.3500Websitehttps://acorns.com/
https://www.gohenry.com/
https://www.pixpay.fr/
Otherhttps://apps.apple.com/us/app/acorns-invest-spare-change/id883324671
https://play.google.com/store/apps/details?id=com.acorns.android&hl=en_US&gl=US
Apihttps://graphql.acorns.com
漏洞项目Afterpay Bug Bounty Program5000Ioshttps://apps.apple.com/au/app/afterpay-shop-now-pay-later/id1230286588
https://apps.apple.com/gb/app/clearpay-buy-now-pay-later/id1474022186
Androidhttps://play.google.com/store/apps/details?id=com.afterpaymobile.us&hl=en_US&gl=US
https://play.google.com/store/apps/details?id=com.afterpaymobile.uk
Websitehttps://portal.afterpay.com
https://afterpay.com
https://developers.afterpay.com
https://clearpay.co.uk
https://clearpay.com
https://portal.clearpay.com
https://portal.clearpay.co.uk
Apihttps://mobileapi.afterpay.com
https://portalapi.us.afterpay.com
https://mobileapi.clearpay.com
https://portalapi.eu.clearpay.co.uk
https://api.clearpay.com
漏洞项目 1Password30000Website --> https://my.1password.com/
https://start.1password.com
https://.1password.com/
Other —> Latest stable, beta, or nightly MacOS Build
—> Latest stable, beta, or nightly Command Line Interface (CLI)
—> Latest stable, beta, or nightly Windows Build
—> Latest stable, beta, or nightly Linux Build
—> Latest stable, beta, or nightly Browser Extension (Chrome, Brave, Firefox, Edge, and Safari)
Android —> Latest stable, beta, or nightly Android Build
Ios —> Latest stable, beta, or nightly iOS Build
Api —> https://events.1password.com/ (Event Reporting API is available on 1Password Business Accounts Only)
漏洞项目1Password Bug Bounty CTFNoneWebsitehttps://bugbounty-ctf.1password.com/
漏洞项目Aiven Managed Bug Bounty25000OtherAiven for Clickhouse
Aiven for Dragonfly
Aiven for Metrics
Aiven for Valkey
Aiven for Apache Cassandra
Aiven for AlloyDB Omni
Aiven for OpenSearch
Aiven for Grafana
Aiven for Apache Kafka
Aiven for M3
Aiven for PostgreSQL
Aiven for Caching
Aiven for MySQL
Aiven for Apache Flink
https://github.com/Aiven-Open
https://github.com/Aiven
http://falcon-bug-bounty-flag-pgsql-dev-sandbox.aivencloud.com/
Websitehttps://aiven.io/
https://console.aiven.io/login
Apihttps://api.aiven.io/login
漏洞项目Ampol 4500Websitehttps://ampol.com.au/
https://ampcharge.ampol.com.au/
https://ampolenergy.com.au
https://my.ampol.com.au/
https://carbonneutral.ampol.com.au/
https://cards.ampol.com.au
Ioshttps://apps.apple.com/au/app/caltex-australia/id1314768594
Androidhttps://play.google.com/store/apps/details?id=au.com.ampol.flagship&hl=en_AU&gl=US
https://play.google.com/store/apps/details?id=au.com.ampol.teamapp
漏洞项目Arlo Cash Rewards6000AndroidArlo Safe Android App
Arlo Secure Android App
IosArlo Safe iOS App
Arlo Secure iOS App
IotArlo
Arlo All-In-One Sensor (Home Security System)
Arlo Baby
Arlo Base Station
Arlo Bridge
Arlo Cellular & Battery Backup (Home Security System)
Arlo Chime / Chime 2
Arlo Essential
Arlo Floodlight
Arlo Go / Go 2
Arlo Home Security System
Arlo Pro
Arlo Pro 2
Arlo Pro 3
Arlo Pro 4
Arlo Pro 5S
Arlo Q / Q+
Arlo Safe Button
Arlo Security Light
Arlo Ultra
Arlo Video Doorbell
Arlo Wireless Video Doorbell
Arlo Wire-Free Outdoor Siren (Home Security System)
Other*.arlo.com
*.arloxcld.com
https://downloads.arlo.com
Apihttps://*-prod.arlo.com
https://arlo-device.messaging.netgear.com
https://mcs.arlo.com
https://myapi.arlo.com
https://updates.arlo.com
Websitehttps://beta.arlo.com
https://community.arlo.com
https://my.arlo.com
https://www.arlo.com
漏洞项目HPE Aruba Networking Product Public Program2500OtherAruba Wireless – ArubaOS and Aruba Instant
Aruba ClearPass Policy Manager
ArubaOS-CX Wired Switches
Aruba EdgeConnect Enterprise Orchestrator
Aruba EdgeConnect Enterprise
Aruba InstantOn APs and supporting backend infrastructure
Aruba InstantOn Switches
Aruba AirWave AMP
NetworkAruba Fabric Composer
Aruba NetEdit
Website*.central.arubanetworks.com
Hardwarehttps://www.arubanetworks.com/products/networking/analytics-and-assurance/user-experience-insight-sensors/
漏洞项目HPE Aruba Networking Infrastructure Public Program2000Websiteasp-stg-develop.eks-stg-use1.getaws.arubanetworks.com
lms-stg-develop.eks-stg-use1.getaws.arubanetworks.com
www.arubanetworks.com
www.arubainstanton.com
calculators.arubanetworks.com
mspshowcase.arubanetworks.com
ase.arubanetworks.com
blogs.arubanetworks.com
aed.arubanetworks.com
connect.arubanetworks.com
devhub.arubanetworks.com
漏洞项目Asana6500Websitehttps://app.asana.com
https://asana.com
https://asana.com/apps?category=made-by-asana
*.asana.biz
https://form.asana.com
*.app.asana.com
Otherhttps://asana.com/download
Ioshttps://apps.apple.com/us/app/asana-mobile/id489969512
Androidhttps://play.google.com/store/apps/details?id=com.asana.app&hl=en
漏洞项目Atlassian10000Websitehttps://admin.atlassian.com/atlassian-access
https://admin.atlassian.com/
https://id.atlassian.com/login
https://start.atlassian.com
https://bitbucket.org
https://www.atlassian.com/software/confluence
https://www.atlassian.com/software/confluence/premium
https://www.atlassian.com/software/jira/service-management
https://www.atlassian.com/software/jira
https://www.atlassian.com/software/jira/work-management
https://www.atlassian.com/software/rovo
https://www.atlassian.com/software/compass
https://marketplace.atlassian.com
https://www.atlassian.com/software/atlas
https://www.atlassian.com/enterprise/data-center/bitbucket
https://www.atlassian.com/enterprise/data-center/crowd
https://www.atlassian.com/enterprise/data-center/jira
https://www.atlassian.com/enterprise/data-center/jira/service-management
https://www.atlassian.com/enterprise/data-center/jira
https://*.atlastunnel.com
Any other *.atlassian.com or *.atl-paas.net domain that cannot be exploited directly from a *.atlassian.net instance
https://www.atlassian.com/software/bamboo
https://www.atlassian.com/software/crucible
https://www.atlassian.com/software/fisheye
https://www.atlassian.com/software/jira/product-discovery
Androidhttps://play.google.com/store/apps/details?id=com.atlassian.android.confluence.core&hl=en_US&gl=US
https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core&hl=en_US&gl=US
https://play.google.com/store/apps/details?id=com.atlassian.confluence.server
https://play.google.com/store/apps/details?id=com.atlassian.jira.server&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/confluence-cloud/id1006971684
https://apps.apple.com/us/app/jira-cloud-by-atlassian/id1006972087
https://apps.apple.com/us/app/confluence-server/id1288365159
https://apps.apple.com/us/app/jira-server/id1405353949
OtherAny associated *.atlassian.com or *.atl-paas.net domain that can be exploited DIRECTLY from the *.atlassian.net instance
https://www.atlassian.com/enterprise/data-center/confluence
https://confluence.atlassian.com/doc/install-atlassian-companion-992678880.html
https://www.sourcetreeapp.com/
Other - (all other Atlassian targets)
Forge Platform
https://www.npmjs.com/package/@forge/cli
ApiGraphQL API (bugbounty-test-.atlassian.net/gateway/api/graphql)
漏洞项目Atlassian-Built Apps3000Otherhttps://marketplace.atlassian.com/apps/1216625/jira-trello-power-up?hosting=cloud
https://marketplace.atlassian.com/apps/1215948/jira-cloud-for-slack?hosting=cloud
https://marketplace.atlassian.com/apps/1217230/jira-service-management-widget?hosting=cloud
https://marketplace.atlassian.com/apps/1218864/embedded-marketplace-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1219451/statuspage-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1220711/spreadsheets-for-jira-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1222147/opsgenie?hosting=cloud
https://marketplace.atlassian.com/apps/1216623/confluence-trello-power-up?hosting=cloud
https://marketplace.atlassian.com/apps/1219498/confluence-cloud-for-slack?hosting=cloud
https://marketplace.atlassian.com/apps/1218875/embedded-marketplace-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1215795/analytics-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1215460/automation-for-jira-server?hosting=cloud
https://marketplace.atlassian.com/apps/1221251/opsgenie-incident-timeline?hosting=cloud
https://marketplace.atlassian.com/apps/1221312/opsgenie-incident-timeline-eu?hosting=cloud
https://marketplace.atlassian.com/apps/1220666/jira-cloud-for-outlook-official?hosting=cloud
https://marketplace.atlassian.com/apps/1229704/cloud-migration-planner?hosting=cloud
https://marketplace.atlassian.com/apps/1217110/training-for-jira?hosting=datacenter
https://marketplace.atlassian.com/apps/1217110/training-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1225406/reconcile-unknown-attachments?hosting=datacenter
https://marketplace.atlassian.com/apps/1215175/change-management-workflow-for-jira-service-management?hosting=server
https://marketplace.atlassian.com/apps/1225689/admin-kit-for-jira-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1225664/form-macro-builder-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1225691/admin-kit-for-confluence-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1219592/github-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1226127/confluence-cloud-for-microsoft-teams?hosting=cloudhttps://marketplace.atlassian.com/apps/1226127/confluence-cloud-for-microsoft-teams?hosting=cloud
https://marketplace.atlassian.com/apps/1211203/bitbucket-server-protect-unmerged-hook?hosting=datacenter
https://marketplace.atlassian.com/apps/1215175/change-management-workflow-for-jira-service-management?hosting=datacenter
https://marketplace.atlassian.com/apps/1224758/confluence-recent-edits-overview?hosting=cloud
https://marketplace.atlassian.com/apps/1226610/bitbucket-cloud-migration-assistant?hosting=server
https://marketplace.atlassian.com/apps/1226478/jira-cloud-for-microsoft-teams?hosting=cloud
https://marketplace.atlassian.com/apps/1221117/cloud-compatibility-for-jira?hosting=datacenter
https://marketplace.atlassian.com/apps/1226380/decisions-helper-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1227744/jira-enterprise-scale-assessment-tool?hosting=server
https://marketplace.atlassian.com/apps/1217745/troubleshooting-and-support-bamboo?hosting=datacenter
https://marketplace.atlassian.com/apps/1226610/bitbucket-cloud-migration-assistant?hosting=datacenter
https://marketplace.atlassian.com/apps/1227949/hackathon-workflow-alan?hosting=cloud
https://marketplace.atlassian.com/apps/1227949/hackathon-workflow-alan?hosting=datacenter
https://marketplace.atlassian.com/apps/1227901/application-tunnels?hosting=server
https://marketplace.atlassian.com/apps/1227901/application-tunnels?hosting=datacenter
https://marketplace.atlassian.com/apps/1228153/comms-dashboard?hosting=cloud
https://marketplace.atlassian.com/apps/1218117/ipython-notebook-viewer?hosting=cloud
https://marketplace.atlassian.com/apps/1228937/atlas-for-jira-cloud?hosting=cloud&tab=overview
https://marketplace.atlassian.com/apps/1227744/jira-enterprise-scale-assessment-tool?hosting=datacenter&tab=overview
https://marketplace.atlassian.com/apps/1229183/add-watchers-at-issue-creation?hosting=cloud
https://marketplace.atlassian.com/apps/1212137/assets?hosting=server
https://marketplace.atlassian.com/apps/1229446/developer-assistant-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1229343/developer-assistant-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/72307/team-calendars-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1215460/automation-for-jira-data-center-and-server?hosting=datacenter
https://marketplace.atlassian.com/apps/1215460/automation-for-jira-data-center-and-server?hosting=server
https://marketplace.atlassian.com/apps/72307/team-calendars-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/72307/team-calendars-for-confluence?hosting=server
https://marketplace.atlassian.com/apps/1212136/advanced-roadmaps-formerly-portfolio?hosting=datacenter
https://marketplace.atlassian.com/apps/1212136/advanced-roadmaps-formerly-portfolio?hosting=server
https://marketplace.atlassian.com/apps/23915/atlassian-universal-plugin-manager?hosting=server
https://marketplace.atlassian.com/apps/23915/atlassian-universal-plugin-manager?hosting=datacenter
https://marketplace.atlassian.com/apps/1211644/questions-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/1211644/questions-for-confluence?hosting=server
https://marketplace.atlassian.com/apps/1211644/questions-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1217696/troubleshooting-and-support-jira?hosting=datacenter
https://marketplace.atlassian.com/apps/1217696/troubleshooting-and-support-jira?hosting=server
https://marketplace.atlassian.com/apps/1217697/troubleshooting-and-support-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/1217697/troubleshooting-and-support-confluence?hosting=server
https://marketplace.atlassian.com/apps/1219672/confluence-cloud-migration-assistant?hosting=datacenter
https://marketplace.atlassian.com/apps/1219672/confluence-cloud-migration-assistant?hosting=server
https://marketplace.atlassian.com/apps/1216096/sso-for-atlassian-server-and-data-center?hosting=datacenter
https://marketplace.atlassian.com/apps/1216096/sso-for-atlassian-server-and-data-center?hosting=server
https://marketplace.atlassian.com/apps/293/jira-calendar-plugin?hosting=server
https://marketplace.atlassian.com/apps/1211836/automation-for-jira-server-lite?hosting=server
https://marketplace.atlassian.com/apps/1220099/jira-server-for-slack-official?hosting=datacenter
https://marketplace.atlassian.com/apps/1220099/jira-server-for-slack-official?hosting=server
https://marketplace.atlassian.com/apps/1213092/google-drive-for-confluence-official-legacy-editor-only?hosting=cloud
https://marketplace.atlassian.com/apps/1211449/auto-unapprove-for-bitbucket-server?hosting=datacenter
https://marketplace.atlassian.com/apps/1211449/auto-unapprove-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1217745/troubleshooting-and-support-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1211539/web-post-hooks-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1212632/look-and-feel-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1214988/icons-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1217747/troubleshooting-and-support-fecru?hosting=server
https://marketplace.atlassian.com/apps/1217661/jira-cloud-for-crm-official?hosting=cloud
https://marketplace.atlassian.com/apps/1218011/trello-connector-for-jira-server?hosting=server
https://marketplace.atlassian.com/apps/1220186/confluence-server-for-slack-official?hosting=datacenter
https://marketplace.atlassian.com/apps/1220186/confluence-server-for-slack-official?hosting=server
https://marketplace.atlassian.com/apps/1216079/statuspage-for-jira-service-management?hosting=server
https://marketplace.atlassian.com/apps/1216079/statuspage-for-jira-service-management?hosting=datacenter
https://marketplace.atlassian.com/apps/1216079/statuspage-for-jira-service-management?hosting=cloud
https://marketplace.atlassian.com/apps/1211619/reviewer-suggester-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1220151/mobile-plugin-for-jira-data-center-and-server?hosting=server
https://marketplace.atlassian.com/apps/1222010/jira-cloud-migration-assistant?hosting=server
https://marketplace.atlassian.com/apps/1220729/bitbucket-server-for-slack-official?hosting=datacenter
https://marketplace.atlassian.com/apps/1220729/bitbucket-server-for-slack-official?hosting=server
https://marketplace.atlassian.com/apps/1211203/bitbucket-server-protect-unmerged-hook?hosting=server
https://marketplace.atlassian.com/apps/1221237/advanced-roadmaps-for-jira-in-confluence?hosting=server
https://marketplace.atlassian.com/apps/1221237/advanced-roadmaps-for-jira-in-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/1221882/microsoft-onedrive-for-business-legacy-editor-only?hosting=cloud
https://marketplace.atlassian.com/apps/1220745/centralized-license-visibility?hosting=server
https://marketplace.atlassian.com/apps/1220745/centralized-license-visibility?hosting=datacenter
https://marketplace.atlassian.com/apps/1216357/atlassian-team-playbook-blueprints?hosting=server
https://marketplace.atlassian.com/apps/1221430/troubleshooting-and-support-crowd?hosting=server
https://marketplace.atlassian.com/apps/1221602/jet-by-jira-align?hosting=server
https://marketplace.atlassian.com/apps/1221602/jet-by-jira-align?hosting=datacenter
https://marketplace.atlassian.com/apps/1221602/jet-by-jira-align?hosting=cloud
https://marketplace.atlassian.com/apps/5581/pre-post-build-command-runner?hosting=server
https://marketplace.atlassian.com/apps/1217941/permission-lockdown-for-bitbucket-server?hosting=datacenter
https://marketplace.atlassian.com/apps/1217941/permission-lockdown-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/30318/directory-scanning-plugin?hosting=server
https://marketplace.atlassian.com/apps/1221551/aws-service-catalog-for-jsm-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1217957/vfs-for-git-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1218630/delegated-directory-pruning-for-crowd?hosting=server
https://marketplace.atlassian.com/apps/1221117/cloud-compatibility-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1219105/xcode-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1216863/jira-cloud-for-slack-official?hosting=cloud&tab=overview
https://marketplace.atlassian.com/apps/1219518/confluence-cloud-for-slack-official?hosting=cloud
https://marketplace.atlassian.com/apps/1222132/jenkins-integration-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1210951/atlassian-plugin-sdk-mac-os-x?hosting=server
https://marketplace.atlassian.com/apps/1210993/atlassian-plugin-sdk-tgz?hosting=server
https://marketplace.atlassian.com/apps/1216850/jira-cloud-power-up-for-trello?hosting=cloud
https://marketplace.atlassian.com/apps/1220382/jira-cloud-for-google-sheets-official?hosting=cloud
https://marketplace.atlassian.com/apps/1210950/atlassian-plugin-sdk-windows?hosting=server
https://marketplace.atlassian.com/apps/1218781/bitbucket-cloud-for-slack-official?hosting=cloud
https://marketplace.atlassian.com/apps/1210991/atlassian-plugin-sdk-rpm?hosting=server
https://marketplace.atlassian.com/apps/1210992/atlassian-plugin-sdk-deb?hosting=server
https://marketplace.atlassian.com/apps/1210992/atlassian-plugin-sdk-deb?hosting=cloud
https://marketplace.atlassian.com/apps/1211500/bitbucket-server-backup-client?hosting=server
https://marketplace.atlassian.com/apps/1221301/jira-cloud-for-excel-official?hosting=cloud
https://marketplace.atlassian.com/apps/1227791/jenkins-for-jira-official?hosting=cloud
https://marketplace.atlassian.com/apps/1219311/atlassian-cloud-for-gmail?hosting=cloud
https://marketplace.atlassian.com/apps/1220820/bitbucket-pipelines-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1220151/mobile-plugin-for-jira-data-center-and-server?hosting=datacenter
https://marketplace.atlassian.com/apps/1210722/confluence-source-editor?hosting=server
https://marketplace.atlassian.com/apps/1211246/autolink-plugin-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1217751/insight-tempo-integration?hosting=server
https://marketplace.atlassian.com/apps/1217751/insight-tempo-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1219908/insight-jamf-integration?hosting=server
https://marketplace.atlassian.com/apps/1219908/insight-jamf-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/5902/jmeter-aggregator-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1219632/insight-device42-integration?hosting=server
https://marketplace.atlassian.com/apps/1219632/insight-device42-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1212137/insight-asset-management?hosting=datacenter
https://marketplace.atlassian.com/apps/1218757/insight-aws-integration?hosting=server
https://marketplace.atlassian.com/apps/1218757/insight-aws-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1219212/insight-google-cloud-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1219212/insight-google-cloud-integration?hosting=server
https://marketplace.atlassian.com/apps/1220353/insight-nvd-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1220353/insight-nvd-integration?hosting=server
https://marketplace.atlassian.com/apps/1212549/variable-tasks-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1215175/change-management-for-jsm?hosting=server
https://marketplace.atlassian.com/apps/1217836/microsoft-teams-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1217836/microsoft-teams-for-jira?hosting=datacenter
https://marketplace.atlassian.com/apps/1214351/disable-referer-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1214668/insight-discovery?hosting=datacenter
https://marketplace.atlassian.com/apps/678725/jira-to-jira-issue-copy?hosting=server
https://marketplace.atlassian.com/apps/1214527/javascript-charts-for-jira-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1214509/entity-property-tool-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1211312/confluence-issue-tab-plugin-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1212778/my-reminders-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1218271/code-coverage-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1215924/agent-usage-visualization-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1219561/insight-servicenow-integration?hosting=server
https://marketplace.atlassian.com/apps/1219561/insight-servicenow-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1213440/asana-importer-plugin-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1217289/announcement-plugin-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1223584/github-webhooks-for-fisheye?hosting=server
https://marketplace.atlassian.com/apps/1220798/assign-reviewer-groups?hosting=server
https://marketplace.atlassian.com/apps/1219472/mandatory-reviewers-for-crucible?hosting=server
https://marketplace.atlassian.com/apps/772972/release-report-for-fisheye?hosting=server
https://marketplace.atlassian.com/apps/1211094/archive-plugin-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1214632/rich-text-gadget-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/602870/continuous-plugin-deployment-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1223382/previous-next-navigation?hosting=cloud
https://marketplace.atlassian.com/apps/1214757/hackathon-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1211596/whos-looking-for-jira-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1212736/predator-plugin-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1214713/sbt-task-plugin-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1215979/dependency-graph-plugin-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1216177/agent-notifications-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1219706/conditional-tasks-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1215965/build-times-for-bamboo-5-10?hosting=server
https://marketplace.atlassian.com/apps/1215235/fail-build-trigger-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1216136/after-deployment-trigger-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1216287/queue-priority-plugin-for-bamboo?hosting=server
https://marketplace.atlassian.com/apps/1216074/insight-macro-for-confluence?hosting=server
https://marketplace.atlassian.com/apps/1218974/insight-azure-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1219094/insight-sccm-integration?hosting=server
https://marketplace.atlassian.com/apps/1219094/insight-sccm-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1219298/insight-snow-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1217750/insight-jira-bitbucket-integration?hosting=datacenter
https://marketplace.atlassian.com/apps/1219298/insight-snow-integration?hosting=server
https://marketplace.atlassian.com/apps/1216074/insight-macro-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/1218974/insight-azure-integration?hosting=server
https://marketplace.atlassian.com/apps/1217750/insight-jira-bitbucket-integration?hosting=server
https://marketplace.atlassian.com/apps/1218250/mobile-plugin-for-confluence-data-center-and-server?hosting=server
https://marketplace.atlassian.com/apps/1218250/mobile-plugin-for-confluence-data-center-and-server?hosting=datacenter
https://marketplace.atlassian.com/apps/1211715/inbox-hook-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1218118/release-plugin-for-bitbucket-server?hosting=server
https://marketplace.atlassian.com/apps/1215192/image-paste-for-fisheye-crucible?hosting=server
https://marketplace.atlassian.com/apps/1215624/copy-source-for-fisheye-and-crucible?hosting=server
https://marketplace.atlassian.com/apps/1216128/look-and-feel-for-fisheye-and-crucible?hosting=server
https://marketplace.atlassian.com/apps/1212100/repository-quickadd-for-fisheye-crucible?hosting=server
https://marketplace.atlassian.com/apps/14896/review-creator-for-fisheye?hosting=server
https://marketplace.atlassian.com/apps/1215089/bulk-delete-review-files-for-crucible?hosting=server
https://marketplace.atlassian.com/apps/1211738/file-tagging-plugin-for-crucible?hosting=server
https://marketplace.atlassian.com/apps/1221227/project-transfer-for-crucible?hosting=server
https://marketplace.atlassian.com/apps/212/copy-space-for-confluence?hosting=server
https://marketplace.atlassian.com/apps/1214046/favorites-dialog-for-confluence?hosting=server
https://marketplace.atlassian.com/apps/288/jira-charting-plugin?hosting=server
https://marketplace.atlassian.com/apps/1215704/workflow-screenshot-for-jira?hosting=server
https://marketplace.atlassian.com/apps/5142/toolkit-plugin-for-jira?hosting=server
https://marketplace.atlassian.com/apps/322837/mobile-connect-plugin-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1211087/ssl-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1210725/data-generator-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1222010/jira-cloud-migration-assistant?hosting=datacenter
https://marketplace.atlassian.com/apps/1214899/thready-give-tomcat-threads-a-name?hosting=server
https://marketplace.atlassian.com/apps/1211542/atlassian-rest-api-browser?hosting=server
https://marketplace.atlassian.com/apps/1211504/issue-edit-notifications-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1222124/sticker-printer-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1214912/better-code-macro-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1218941/microsoft-teams-for-bitbucket-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1219516/microsoft-teams-for-confluence-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1214351/disable-referer-for-bitbucket-server?hosting=datacenter
https://marketplace.atlassian.com/apps/1224300/opsgenie-bamboo-plugin?hosting=server
https://marketplace.atlassian.com/apps/1212632/look-and-feel-for-bitbucket-server?hosting=datacenter
https://marketplace.atlassian.com/apps/1214668/insight-discovery?hosting=cloud
https://marketplace.atlassian.com/apps/1224729/bamboo-build-status-notifier?hosting=server
https://marketplace.atlassian.com/apps/1224728/crucible-build-status?hosting=server
https://marketplace.atlassian.com/apps/1219499/proforma-lite-forms-checklists?hosting=server
https://marketplace.atlassian.com/apps/1215833/proforma-forms-checklist-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1215833/proforma-forms-checklist-for-jira?hosting=datacenter
https://marketplace.atlassian.com/apps/1219499/proforma-lite-forms-checklists?hosting=datacenter
https://marketplace.atlassian.com/apps/1225406/reconcile-unknown-attachments?hosting=server
https://marketplace.atlassian.com/apps/1217110/training-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1232506/jsm-assets-microsoft-entra-id-azure-ad-beta-integration?hosting=cloud
https://marketplace.atlassian.com/apps/1232887/mermaid-diagrams-viewer?hosting=cloud
https://marketplace.atlassian.com/apps/1230672/extension-point-finder-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1230671/extension-point-finder-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1231916/issue-status-helper?hosting=cloud
https://marketplace.atlassian.com/apps/1230032/databricks-visualization?hosting=cloud
https://marketplace.atlassian.com/apps/1233346/audio-recorder-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1231985/localised-date-macro-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1232254/bump-build-number?hosting=datacenter
https://marketplace.atlassian.com/apps/1235122/event-sign-up-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1234690/data-manager-clients-for-jsm-assets?hosting=cloud
https://marketplace.atlassian.com/apps/1234690/data-manager-clients-for-jsm-assets?hosting=datacenter
https://marketplace.atlassian.com/apps/1230311/app-usage-for-jira?hosting=datacenter
https://marketplace.atlassian.com/apps/1230311/app-usage-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1232793/azure-devops-for-jira-official?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1234673/jsm-incident-timeline?hosting=cloud
https://marketplace.atlassian.com/apps/1233977/sentry-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1234027/github-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233993/gitlab-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1234004/bitbucket-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233931/snyk-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233986/slack-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233988/opsgenie-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233987/statuspage-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233979/new-relic-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233943/circleci-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233990/swagger-ui-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1233942/pagerduty-for-compass?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1232285/jira-confluence-smart-chips-for-google-docs-slides-sheets?tab=overview&hosting=cloud
https://marketplace.atlassian.com/apps/1229906/confluence-mail-archiving-plugin?tab=overview&hosting=datacenter
https://marketplace.atlassian.com/apps/1211246/autolink-plugin-for-jira?hosting=datacenter
https://trello.com/power-ups/588a331cc86ffbe08f5d2c67/bitbucket-cloud
https://trello.com/power-ups/55a5d915446f517774210001/box
https://trello.com/power-ups/57b47fb862d25a30298459b1/card-repeater
https://trello.com/power-ups/58dd18bdccfca7af8311792e/card-snooze
https://trello.com/power-ups/586be37142f94dc0871fbcbb/confluence-cloud
https://trello.com/power-ups/56d5e249a98895a9797bebb9/custom-fields
https://trello.com/power-ups/55a5d915446f517774210003/evernote
https://trello.com/power-ups/568c1415eeaeb62f5a43aa01/giphy
https://trello.com/power-ups/55a5d916446f517774210004/github
https://trello.com/power-ups/55a5d916446f517774210006/google-drive
https://trello.com/power-ups/55a5d916446f517774210007/google-hangouts
https://trello.com/power-ups/5e3886cd2ae34410748d0d5b/jira-align-
https://trello.com/power-ups/55a5d917446f51777421000c/mailchimp
https://trello.com/power-ups/5940440775fbe327abd3329f/onedrive
https://trello.com/power-ups/55a5d917446f51777421000d/package-tracker
https://trello.com/power-ups/5a2de0c41ae4a1537bb0055d/read-me
https://trello.com/power-ups/55a5d917446f517774210009/salesforce
https://trello.com/power-ups/55a5d917446f51777421000a/slack
https://trello.com/power-ups/568c143d95adcd7308cbc3fb/surveymonkey
https://trello.com/power-ups/55a5d917446f51777421000b/twitter
https://trello.com/power-ups/56940ede94fd60cf95f7ce6a/zendesk
https://trello.com/power-ups/6048e897c73d032a983e2a7c/dashcards
https://trello.com/power-ups/586be36326cc4c7e9f70beb3/jira
漏洞项目Aurory Managed Bug Bounty Engagement (Public)3500Websitehttps://app.aurory.io
Otherhttps://store.epicgames.com/en-US/p/seekers-of-tokane-a5986d
漏洞项目AustralianSuper Bug Bounty Program7500Websitehttps://www.australiansuper.com/
https://portal.australiansuper.com/
https://business.australiansuper.com/
https://adviser.australiansuper.com/
Apihttps://apis.australiansuper.com/
https://apis-v5.australiansuper.com/
漏洞项目Auth0 by Okta50000Websiteconfig.cic-bug-bounty.auth0app.com
https://manage.cic-bug-bounty.auth0app.com/
*.cic-bug-bounty.auth0app.com
https://marketplace.auth0.com
https://dashboard.fga.dev/
https://play.fga.dev/
auth0.com
samltool.io
webauthn.me
openidconnect.net
jwt.io
auth0.net
Androidhttps://play.google.com/store/apps/details?id=com.auth0.guardian&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/auth0-guardian/id1093447833
OtherMFA Integrations
https://github.com/auth0/auth0.js
https://github.com/auth0/lock
https://github.com/auth0/auth0-spa-js
https://github.com/auth0/Auth0.Net
https://github.com/auth0/nextjs-auth0
https://github.com/auth0/auth0-java
https://github.com/auth0/react-native-auth0
https://github.com/auth0/auth0-php
Apihttps://api.us1.fga.dev/
https://customers.us1.fga.dev/
漏洞项目AXIS OS20000Iothttps://195.60.68.241
https://195.60.68.242
https://195.60.68.243
https://195.60.68.244
https://195.60.68.245
https://195.60.68.246
https://195.60.68.247
https://195.60.68.248
https://195.60.68.249
https://195.60.68.250
漏洞项目Pornhub Managed Bug Bounty Program5000Websitehttps://www.pornhub.com/
https://mobile.pornhub.com/
https://www.pornhubpremium.com/
https://www.redtube.com/
https://www.redtubepremium.com/
https://www.youporn.com/
https://www.youpornpremium.com/
https://pornhub.mainhub.com
https://*.tube8.com
https://www.thumbzilla.com/
Apihttps://api.pornhub.com/
漏洞项目TrafficJunky Managed Bug Bounty Program3000Websitehttps://*.trafficjunky.com
https://*.adultforce.com
漏洞项目Backblaze6500Androidhttps://play.google.com/store/apps/details?id=com.backblaze.android&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/backblaze/id628638330
OtherMac Personal Backup Clients
Windows Personal Backup Clients
Mac Restore Downloaders
Windows Restore Downloaders
Git Repositories (b2-sdk-java & B2 Command Line Tool)
Apihttps://*.backblazeb2.com
Websitehttps://backblaze.com
漏洞项目Appliances - Barracuda Networks, Inc.NoneOtherhttps://www.barracuda.com/products/messagearchiver
https://www.barracuda.com/products/websecuritygateway
https://www.barracuda.com/products/loadbalancer?utm_source=google&utm_medium=search_cpc&utm_campaign=387189501&utm_adgroup=116181947964&utm_term=&utm_position=&utm_matchtype=b&utm_device=c&utm_content=484352050459&_bt=484352050459&_bk=&_bm=b&_bn=g&_bg=116181947964&gclid=Cj0KCQjwvr6EBhDOARIsAPpqUPFtfKELYb2ysp1O29NyBMwStaYpYAxq1oso9BaXpcPo9yrcy13uuc0aAtQDEALw_wcB
https://www.barracuda.com/products/webapplicationfirewall
https://www.barracuda.com/products/emailsecuritygateway
https://www.barracuda.com/products/cloudgenfirewall
漏洞项目BigCommerce5000Websitehttps://*..mybigcommerce.com
https://www.bigcommerce.com
login.bigcommerce.com
https://bigcommerce.com/make-it-big
https://bigcommerce.com/blog
https://*.bigcommerce.net
Ioshttps://apps.apple.com/au/app/bigcommerce/id1418570678
Androidhttps://play.google.com/store/apps/details?id=com.bigcommerce.mobile
Otherhttps://github.com/bigcommerce/
漏洞项目Binance10000Apiapi.coinmarketcap.com
pro-api.coinmarketcap.com
api.binance.com
portal-api.coinmarketcap.com
3rdparty-apis.coinmarketcap.com
Websitehttps://www.binance.com/
pro.coinmarketcap.com
coinmarketcap.com
https://www.binance.us/
https://trbinance.com
Trustwallet Chrome Extension
OtherBinance Desktop Application
Binance macOS Application
https://github.com/trustwallet/wallet-core/
AndroidBinance Mobile Application for Android
CoinMarketCap Android app
Trustwallet Android App
IosBinance Mobile Application for iOS
Trustwallet iOS App
CoinMarketCap iOS app
漏洞项目Bitdefender15000OtherBitdefender Total Security
Bitdefender Antimalware Engines
https://www.bitdefender.com/business/smb-products/business-security.html?cid=ppc|b|google|smb&s_kwcid=AL!6076!3!514235572261!p!!g!!bitdefender%20business&utm_term=bitdefender%20business&utm_campaign=USA+SMB+Branded+30&utm_source=adwords&utm_medium=ppc&hsa_acc=8155205354&hsa_cam=7848657822&hsa_grp=124745713150&hsa_ad=514235572261&hsa_src=g&hsa_tgt=kwd-308396066873&hsa_kw=bitdefender%20business&hsa_mt=p&hsa_net=adwords&hsa_ver=3&gclid=CjwKCAjwqIiFBhAHEiwANg9szk-Rr3iSn4mrwsvAUOn-pzrO12ufWDmyCLopWigaLQW0t_xtlBE65RoCr6kQAvD_BwE
Website*.bitdefender.net
*.bitdefender.com
漏洞项目Bitdefender Box v25000IotBitdefender BOX v2
漏洞项目BitGo Managed Public Bug Bounty Engagement 4500Websitehttps://www.bitgo.com
https://app.bitgo.com
https://app.bitgo-test.com
漏洞项目Bitpanda Ongoing Bug Bounty15000Websitehttps://web.bitpanda.com
https://www.bitpanda.com/
wss://socket.bitpanda.com
https://account.bitpanda.com
https://blog.bitpanda.com/en
https://www.bitpanda.com/academy/en/
Apihttps://api.bitpanda.com
OtherAll the Blockchain Infrastructure
Androidhttps://play.google.com/store/apps/details?id=com.bitpanda.bitpanda
Ioshttps://apps.apple.com/app/bitpanda-buy-bitcoin-crypto/id1449018960
漏洞项目Bitstamp12000Websitehttps://www.bitstamp.net/
*.bitstamp.net - Bitstamp Supporting Services
Ioshttps://apps.apple.com/us/app/bitstamp/id1406825640
Androidhttps://play.google.com/store/apps/details?id=net.bitstamp.app
https://play.google.com/store/apps/details?id=net.bitstamp.appgo
漏洞项目Braze Public BB5000Apihttps://bug-bounty-api.k8s.tools-001.d-use-1.braze-dev.com
Websitehttps://bug-bounty-dashboard.k8s.tools-001.d-use-1.braze-dev.com
漏洞项目Bugcrowd10000Websitehttps://docs.bugcrowd.com/
https://bugcrowd.com/programs
https://identity.bugcrowd.com/
*.bugcrowd.com/auth/*
Apihttps://tracker.bugcrowd.com
https://api.bugcrowd.com
漏洞项目Bullish.com12000Websitehttps://bullish.com/
https://investor.bullish.com/
漏洞项目Bullish Exchange25000Websitehttps://simnext.bullish-test.com
Apihttps://api.simnext.bullish-test.com
漏洞项目Caffeine5000Api████████████████████████
███████████████████████████
████████████████████████
████████████████████████████
█████████████████████████████
Website████████████████████████████
████████████████████████
██████████████████████████
Other███████████████████████████
███████████████████████
████████████
███████████████████████
███████████████████
Ios████████████████████████
Android█████████████████████████████
漏洞项目Canva15000Website*.canva.cn
*.canva.com
https://canva.com/developers
https://canva.cn/developers
https://*.canva.tech
AndroidCanva (Android)
OtherCanva (Chrome Extension)
https://canva.com/developers
Canva Desktop (macOS / Windows)
IosCanva (iOS)
漏洞项目Majid Al Futtaim Retail4000Ios█████████████████
Android█████████████████████
Website████████████████
Api██████████████████████████████
漏洞项目Cash App18000Ioshttps://itunes.apple.com/us/app/cash-app/id711923939?mt=8
Androidhttps://play.google.com/store/apps/details?id=com.squareup.cash
Websitehttps://cash.app
*.cashstaging.app
漏洞项目Council on Foreign Relations2100Websitehttps://www.foreignaffairs.com/
https://www.cfr.org/
https://thinkglobalhealth.org
https://education.cfr.org/
漏洞项目Cisco Meraki10000Website*.meraki.com
*.ikarem.io
*.network-auth.com
https://meraki.cisco.com
apps.meraki.io
OtherCisco Meraki Systems Manager
Cisco Meraki Virtual Security Appliances
IosCisco Meraki Dashboard Mobile Application (iOS and Android)
HardwareCisco Meraki MX Security Appliances
Cisco Meraki MS Switches
Cisco Meraki MR Access Points
Cisco Meraki MV Security Cameras
Cisco Meraki Z Series (Z1,Z3(C))
漏洞项目ClassDojo2100IosIoS App
Apihttps://api.classdojo.com
AndroidAndroid App
Websitehttps://teach.classdojo.com
https://student.classdojo.com
https://www.classdojo.com
https://home.classdojo.com
https://dev.tutoring.classdojo.com
https://ws.multiplayer.classdojo.com/
https://ticket.multiplayer.classdojo.com
https://clients.multiplayer.classdojo.com/launcher/prod/latest
https://monster-customizer.classdojo.com/cf6dfa68-1a81-4c6d-bc0b-38f3666b37d6/index.html
漏洞项目ClickHouse2500Websitehttps://clickhou.se/bugcrowd
OtherClickHouse Cloud environment hosted by ClickHouse
https://github.com/ClickHouse/ClickHouse
漏洞项目Cloudinary4000Websitehttps://cloudinary.com/console
https://mediaflows.cloudinary.com/
https://dimensions.cloudinary.com
Apihttps://api.cloudinary.com
https://res.cloudinary.com
漏洞项目codefortynine1500Websitehttps://marketplace.atlassian.com/apps/1218652/deep-clone-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1219514/merge-agent-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1220136/quick-filters-for-jira-dashboards?hosting=cloud
https://marketplace.atlassian.com/apps/1219476/comment-custom-fields-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1221733/external-data-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1219288/comment-history-log-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1215055/slack-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1219807/version-sync-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1220964/snipe-it-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1218211/secure-google-calendar-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1219994/external-data-for-jira-fields?hosting=cloud
https://marketplace.atlassian.com/apps/1232630/external-data-for-jira-fields-extension?hosting=cloud
https://marketplace.atlassian.com/apps/1222978/dynamic-fields-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1223455/advanced-bulk-edit-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1226627/prime-custom-fields-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1230689/easy-confluence-gadget-for-jira-dashboards?hosting=cloud
漏洞项目Code.org2500Websitehttps://adhoc-bugcrowd.cdn-code.org
https://adhoc-bugcrowd-studio.cdn-code.org
漏洞项目Comcast Xfinity Bug Bounty5500Website*.xfinity.com
*.comcast.com
*.xcal.tv
Staging, QA, Dev, and Test Environments
漏洞项目 Comcast Xfinity Vulnerability Disclosure Program3500Website*.sys.comcast.net
https://business.comcast.com/account
HardwareTV - Xfinity hardware and services
Flex - Xfinity hardware and services
Voice - Hardware and service
Otherhttps://www.xfinity.com/apps
漏洞项目Contrast Security3000Websitehttps://www.contrastsecurity.com/
https://contrastsecurity.dev/
漏洞项目Craft Coders Marketplace Bug Bounty1500Websitehttps://marketplace.atlassian.com/apps/1223249/mailto-wiki-send-emails-to-confluence?hosting=cloud&tab=overview
https://marketplace.atlassian.com/apps/1223249/mailto-wiki-send-emails-to-confluence?tab=overview&hosting=server
https://marketplace.atlassian.com/apps/1223249/mailto-wiki-email-for-confluence?hosting=datacenter&tab=overview
漏洞项目CyberGhost1250OtherCyberGhost VPN servers
https://www.cyberghostvpn.com/en_US/apps/linux-vpn
https://www.cyberghostvpn.com/en_US/apps/macos-vpn
https://www.cyberghostvpn.com/en_US/apps/windows-vpn
https://addons.mozilla.org/en-US/firefox/addon/cyberghost-vpn-free-proxy/
https://chrome.google.com/webstore/detail/stay-secure-with-cybergho/ffbkglfijbcbgblgflchnbphjdllaogb
CyberGhost PS3+PS4 apps
CyberGhost Xbox One + Xbox360 apps
Ioshttps://apps.apple.com/us/app/id583009522
Androidhttps://play.google.com/store/apps/details?id=de.mobileconcepts.cyberghost
ApiCyberGhost APIs
Websitehttps://cyberghost.com
*.cyberghost.com
cyberghost.app
https://www.cyberghostvpn.com/
漏洞项目Dell Technologies Application Bug Bounty2500Website*.dell.com/*
*.delltechnologies.com/*
https://console.delltechnologies.com/nav/administration
https://console.delltechnologies.com/nav/invoice
https://console.delltechnologies.com/nav/billing
OtherAny Verified Dell-Controlled Endpoint (domains/IP space/etc.)
漏洞项目Dell Technologies' Products Bug Bounty Program5000OtherActively Supported, Bounty Eligible Dell Products
HardwareActively Supported, Non-Reward Eligible Dell Products
漏洞项目Directly3000Websiteapp.sandbox.directly.com
*.sandbox.directly.com/
https://sandbox.directly.com/dashboard/index
漏洞项目Dropbox10000Apiapi.dropboxapi.com
Website*.dropbox.com
*.hellosign.com
*.helloworks.com
*.hellofax.com
*.dropboxforum.com
*.docsend.com
*.dropboxer.net
https://www.dash.ai/
Androidhttps://play.google.com/store/apps/details?id=com.dropbox.paper&hl=en_US&gl=US
https://play.google.com/store/apps/details?id=com.dropbox.android&hl=en_US&gl=US
https://play.google.com/store/apps/details?id=com.dropbox.app.hellosign&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/dropbox-secure-cloud-storage/id327630330
https://apps.apple.com/us/app/paper-by-dropbox/id1126623662
https://apps.apple.com/us/app/dropbox-emm/id1080074001
Otherhttps://www.dropbox.com/desktop
https://www.dropbox.com/capture
https://www.dropbox.com/capture
https://www.dropbox.com/paper
https://dropbox.com/dash/download
漏洞项目eazyBI1500Otherhttps://marketplace.atlassian.com/apps/1211051/eazybi-reports-and-charts-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1219504/eazybi-reports-and-charts-for-confluence?hosting=cloud
Websitehttps://marketplace.atlassian.com/apps/1211051/eazybi-reports-and-charts-for-jira?hosting=server
https://marketplace.atlassian.com/apps/1211051/eazybi-reports-and-charts-for-jira?hosting=datacenter
https://marketplace.atlassian.com/apps/1219504/eazybi-reports-and-charts-for-confluence?hosting=server
https://marketplace.atlassian.com/apps/1219504/eazybi-reports-and-charts-for-confluence?hosting=datacenter
https://docs.eazybi.com/
漏洞项目Electroneum12000Websitehttps://my.electroneum.com/
https://electroneum.com/
https://www.anytask.com/
https://blockexplorer.electroneum.com
https://my.thesecurityteam.rocks/
https://anytask.thesecurityteam.rocks/
Apihttps://api.electroneum.com/
https://api.anytask.com/
Androidhttps://play.google.com/store/apps/details?id=com.electroneum.mobile&hl=en_US
Ioshttps://apps.apple.com/us/app/electroneum/id1270774992
Otherhttps://github.com/electroneum/electroneum-sc/
漏洞项目Elementor: Bug Bounty Program4000Websitehttps://elementor.com/
https://my.elementor.com/
https://go.elementor.com/
https://translate.elementor.com/
https://developers.elementor.com/
https://he.elementor.com/
https://code.elementor.com/
https://library.elementor.com/
https://app.strattic.com
漏洞项目Entain Game Logic Flaws Bug Bounty Program6500Websitehttps://casino.partycasino.com
https://casino.bwin.com
https://casino.sportingbet.com
https://www.ladbrokes.com/en/games
https://www.coral.co.uk/en/games
https://casino.*.betmgm.com/en/games (read "Find a Game to test on our targets")
漏洞项目Entain Public Managed Bug Bounty Engagement 20245000Websitehttps://www.partypoker.com
https://www.ladbrokes.com
https://www.coral.co.uk
https://www.galabingo.com
https://www.partycasino.com
https://www.bwin.com
https://www.galacasino.com
Androidhttp://media.itsfogo.com/media/upload/mobile/android/apk/partycasino_com.apk
Ioshttps://apps.apple.com/gb/app/bwin-poker-and-casino-games/id410242773
https://apps.apple.com/gb/app/bwin-sports-betting/id393760245
https://apps.apple.com/gb/app/partycasino-play-casino-games/id818432894
https://apps.apple.com/gb/app/partypoker-texas-holdem-poker/id687740281
漏洞项目EPAM Systems Managed Bug Bounty Program1000Websitehttps://www.epam.com/
https://projects.epam.com
https://lab.epam.com
https://opensource.epam.com
*.emakina.nl
*.emakina.group
*.emakina.com
*.emakina.ch
*.emakina.fr
*.emakina.us
*.emakina.at
open redirect at *.epam.com
Open redirect at *.projects.epam.com, *.lab.epam.com, *.opensource.epam.com
Otherhttps://*.epam.com
In Scope - Points only
漏洞项目Etsy10000Websitehttps://www.etsy.com
https://blog.etsy.com
https://careers.etsy.com
https://help.etsy.com
https://community.etsy.com
*.etsy.com
Androidhttps://www.etsy.com/mobile
Ioshttps://www.etsy.com/mobile
Apihttps://www.etsy.com/developers/documentation/getting_started/api_basics
Otherhttps://etsypayments.com
漏洞项目Exoscale10000OtherVirtualisation layer
https://sks-ch-gva-2.exo.io
Websitehttps://portal.exoscale.com/
https://internal.exoscale.ch
Apihttps://api-ch-gva-2.exoscale.com/v2
https://sos-ch-gva-2.exo.io/
https://api-ch-gva-2.exoscale.com/v2
https://api-ch-gva-2.exoscale.com/v2
漏洞项目ExpressVPN2500OtherVPN servers
ExpressVPN Linux application
ExpressVPN macOS application
ExpressVPN Windows application
ExpressVPN Router
ExpressVPN Firefox extension
ExpressVPN Chrome extension
MediaStreamer DNS servers
*.xvservice.net
*.xvtest.net
Google Play (com.expressvpn.vpn)
Apple App Store (886492891)
https://github.com/expressvpn/lightway-core
ExpressVPN Keys Browser Extension
IosExpressVPN iOS application
AndroidExpressVPN Android application
ApiExpressVPN APIs
Websitehttps://www.expressvpn.com
*.expressvpn.com
http://expressobutiolem.onion
漏洞项目Certinia (formerly FinancialForce)4500Websitehttps://financialforce.com
https://*.certinia.com
漏洞项目FIS20000WebsiteAny FIS asset is in scope
漏洞项目Flourish6000Websitehttps://flo.uri.sh
https://flourish.studio/
https://xyzbmojn.net/
flourish-user-templates.com
flourish-user-preview.com
https://*.kiln.it
漏洞项目ForgeRock BB2500Android█████████████████████████████████████
Ios███████████████████████████████████
Website████████████████████████████████
漏洞项目ForgeRock Identity Platform2500Other██████████████████████
█████████████████████████
█████████████████████████
█████████████████████
漏洞项目ForgeRock Identity Cloud Platform2500Website██████████████████████████████████████████████
██████████████████████████████████████████████████
漏洞项目FoxyCart600Other*-bugcrowd.foxycart.com (read below for details)
https://api.foxycart.com/
Websitehttps://admin.foxycart.com
https://admin.foxy.io/
https://auth.foxy.io/
https://foxycart-demo.foxycart.com/cart
漏洞项目SecureDrop2500Otherhttps://github.com/freedomofpress/securedrop
https://github.com/freedomofpress/securedrop-log
https://github.com/freedomofpress/securedrop-proxy
https://github.com/freedomofpress/securedrop-sdk
https://github.com/freedomofpress/securedrop-workstation
https://github.com/freedomofpress/securedrop-client
https://github.com/freedomofpress/securedrop-export
https://github.com/freedomofpress/securedrop-debian-packaging
漏洞项目Gearset: Managed Bug Bounty6000Websitehttps://staging.gearset.com/
https://hipaa.staging.gearset.com/
Apihttps://staging.gearset.com/
漏洞项目Glean Technologies Public Engagement3000Websitehttps://app.glean.com/login?qe=https://bug-bounty-be.glean.com&skip_to_sso=1
Backend endpoint: bug-bounty-be.glean.com
https://marketplace.atlassian.com/apps/1222714/scio-search-crawler-for-confluence?hosting=cloud&tab=overview
https://marketplace.atlassian.com/apps/1222715/scio-search-crawler-for-jira?hosting=cloud&tab=overview
https://marketplace.atlassian.com/apps/1229003/glean-activity-plugin-for-jira-cloud?hosting=cloud&tab=overview
漏洞项目GoPro Awards Webapp Public Program2500Website████████████
漏洞项目HostGator Latam Bug Bounty2500Websitehttps://www.hostgator.com.br/
https://financeiro.hostgator.com.br
漏洞项目HotDoc8000Websitehttps://bugcrowd.hotdoc.com.au
https://bugcrowd.hotdoc.com.au/dashboard
Apihttps://bugcrowd.hotdoc.com.au/api
漏洞项目HubSpot10000Websitehttps://app.hubspot.com/
https://app-eu1.hubspot.com
https://chatspot.ai
https://connect.com
*.hubspotemail.net
*.hs-sites(-eu1)?.com
*.hubspotpagebuilder.com
*.hubspotpagebuilder.eu
https://knowledge.hubspot.com/inbox/set-up-a-customer-portal
Customer connected domain (2)
Apihttps://api.hubspot.com/
https://developers.hubspot.com/docs/api/overview
Androidhttps://play.google.com/store/apps/details?id=com.hubspot.android&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/hubspot/id1107711722
Otherhttps://knowledge.hubspot.com/connected-email/get-started-with-the-hubspot-sales-office-365-add-in
Other HubSpot-owned (sub)domains not listed as Out of Scope . Please make sure to exercise due diligence before testing. You must include proof that the subdomain is registered to HubSpot to be eligible for a reward.
Special Conditions
漏洞项目Humble BundleNoneOther█████████████████████████████
漏洞项目The Hut Group: Public Managed Bug Bounty Engagement2500Websitehttps://www.ameliorate.com/
https://www.beautyexpert.com/
https://www.cultbeauty.co.uk/
https://www.dermstore.com
https://www.espaskincare.com/
https://www.exantediet.com/
https://www.eyeko.com/
https://www.glossybox.com/
https://www.growgorgeous.com/
https://www.hqhair.com/
https://www.illamasqua.com/
https://www.mioskincare.com/
https://www.mankind.co.uk/
https://www.mybag.com/
https://www.myvitamins.com/
https://www.powerman.co.uk/
https://www.skinstore.com/
https://www.thehut.com/
https://checkout.myvitamins.com
https://checkout.eyeko.com
https://checkout.glossybox.com
漏洞项目Ibotta7500Otherhttps://chrome.google.com/webstore/detail/ibotta-browser-extension/mfaedmjlefifhnhpgipjjiiekchaimpk?hl=en-US
Ibotta App Data & Memory
Androidhttp://market.android.com/details?id=com.ibotta.android
Ioshttp://itunes.apple.com/us/app/ibotta/id559887125
Apihttps://content-server.ibotta.com/graphql
https://api.ibotta.com
https://api.ibops.net
https://api.int.ibops.net
https://api.int.ibops.net/customer-loyalty-service
https://api.ibops.net/ad-management
Websitehttps://app.ibotta.com/sign-in

http://ibotta.com
https://backend.ibotta.com/
漏洞项目iFood: Bug Bounty Program2500Websitehttps://www.ifood.com.br
https://*.movilepay.com
https://*.movilepay.com.br
https://shop.ifood.com.br
https://marketplace.ifood.com.br
https://wsloja.ifood.com.br
https://wslatam.ifood.com.br
https://static-images.ifood.com.br
https://gestordepedidos.ifood.com.br
https://www.sitemercado.com.br
https://service.sitemercado.com.br
https://developer.ifood.com.br
Apihttps://api.fstr.rocks
https://rc.fstr.rocks
Androidhttps://play.google.com/store/apps/details?id=br.com.brainweb.ifood&hl=pt_BR
Ioshttps://apps.apple.com/br/app/ifood-pedir-comida-e-mercado/id483017239
漏洞项目Immutable Bug Bounty25000Websitehttps://guildofguardians.com
https://passport.immutable.com/
https://hub.immutable.com/
*.immutable.com
*.imtbl.com
https://link.x.immutable.com/
https://market.immutable.com/
https://docs.immutable.com/
imx.community
Other*.guildofguardians.com
https://github.com/immutable/ts-immutable-sdk/tree/main/packages/passport/
Apihttps://auth.immutable.com
https://api.immutable.com
https://api.x.immutable.com/
Networktestnet.immutable.com
*.testnet.immutable.com
漏洞项目Imperva Bug Bounty2500Websitehttps://*.imperva.com
https://www.cloudvector.com/
PTaaS Reference
Apihttps://*.incapsula.com
漏洞项目Indeed10000Otherhttps://*.indeed.com
Any host/web property/mobile app verified to be owned by Indeed
Websitehttps://*.indeedflex.com
https://*.indeed.tech
https://*.indeed.net
https://resume.com
https://wowjobs.ca
https://chromewebstore.google.com/detail/indeed-recruiter-extensio/kiodpphbmnmcmnfgpnmkkhmkllnlflef
Apihttps://apis.indeed.com/graphql
Androidhttps://play.google.com/store/apps/details?id=com.indeed.android.jobsearch
https://play.google.com/store/apps/details?id=com.syftapp.android
https://play.google.com/store/apps/details?id=com.indeed.resume
Ioshttps://apps.apple.com/us/app/indeed-job-search/id309735670
https://apps.apple.com/gb/app/indeed-flex-job-search/id1013812731
https://apps.apple.com/us/app/%E5%B1%A5%E6%AD%B4%E6%9B%B8%E4%BD%9C%E6%88%90-%E3%82%A4%E3%83%B3%E3%83%87%E3%82%A3%E3%83%BC%E3%83%89/id1484451230
https://apps.apple.com/us/app/indeed-connect-for-employers/id6443822731
漏洞项目Intercom6000Ioshttps://developers.intercom.com/installing-intercom/docs/about-the-sdk-ios
Apihttps://api.intercom.com
Websitehttps://app.intercom.com
*.intercomassets.com / *.intercomcdn.com
https://app.intercom.io/
https://www.intercom.com/
Androidhttps://developers.intercom.com/installing-intercom/docs/about-the-sdk-android
漏洞项目iRobot7000HardwareiRobot cloud-connected robot that you own (i.e. j7, s9, i7, 980, 960, 690, Braava, etc.)
Androidhttps://play.google.com/store/apps/details?id=com.irobot.home
Ioshttps://itunes.apple.com/us/app/irobot-home/id1012014442?mt=8
Apihttps://w2ab2i60y4.execute-api.us-east-1.amazonaws.com/dev/v1/ecommerce/entitlements
https://w2ab2i60y4.execute-api.us-east-1.amazonaws.com/dev/v1/ecommerce/entitlements/{entitlement_id}
https://w2ab2i60y4.execute-api.us-east-1.amazonaws.com/dev/v1/ecommerce/notifications/raas
https://w2ab2i60y4.execute-api.us-east-1.amazonaws.com/dev/v1/ecommerce/users/{user_id}/entitlements
iRobot API Endpoint
https://w2ab2i60y4.execute-api.us-east-1.amazonaws.com/dev/v1/ecommerce/robots/{robot_id}/entitlements
漏洞项目Jora2500Website*.jora.com
*.jora.xyz
Ioshttps://apps.apple.com/us/app/jora-jobs-job-search-app/id917565665
Androidhttps://play.google.com/store/apps/details?id=com.jora.android&hl=en_US
漏洞项目Just Eat Takeaway.com4000Apirestaurant-api.takeaway.com
https://api.justeat-int.com
*.just-eat.com
https://public.je-apis.com
https://just-eat.io/
Website*.lieferando.at
*.yourdelivery.de
*.takeaway.com
*.scoober.com
*.citymeal.com
*.lieferando.de
*.thuisbezorgd.nl
https://takeawaypay.azurefd.net/en/takeawaypay/
*.bistro.sk
*.just-eat.fr
*.eat.ch
*.just-eat.no
*.just-eat.dk
*.pyszne.pl
https://www.justeattakeaway.com
https://www.justeat.it/rider
https://status-takeaway.com/status
*.10bis.co.il
https://www.takeaway.com/foodwiki/
https://www.takeaway.com/drivers
https://www.takeaway.com/deals
https://www.thuisbezorgd.nl/aanmelden
https://shop.thuisbezorgd.nl
https://tv.takeaway.com
static.thuisbezorgd.nl
dev.takeaway.com/html/
intranet.takeaway.com
atarkasher.co.il
https://brand.takeaway.com
https://careers.takeaway.com
https://newsletter.thuisbezorgd.nl
https://www.status-takeaway.com/status
https://www.lieferando.de/thetakeaway/
cloud.update.takeaway.com
cloud.connect.takeaway.com
cloud.connect.justeattakeaway.com
cloud.update.justeattakeaway.com
*.beta.scoober.com
https://www.just-eat.co.uk
https://www.just-eat.ie
https://menulog.co.nz
https://menulog.com.au
https://just-eat.it
https://just-eat.es
https://skipthedishes.com
Ioshttps://itunes.apple.com/us/app/lieferando-de/id419724490?l=es&mt=8
Androidhttps://play.google.com/store/apps/details?id=com.yopeso.lieferando&hl=en_US
Other*.just-data.io
漏洞项目K15t1500Otherhttps://marketplace.atlassian.com/apps/1215199/backbone-issue-sync-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1217608/scroll-documents-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/7019/scroll-pdf-exporter-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/24982/scroll-word-exporter-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1217037/scroll-exporter-extensions?hosting=cloud
https://marketplace.atlassian.com/apps/253/scroll-imagemap-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1211636/scroll-viewport-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1226295/variants-for-scroll-documents?hosting=cloud
https://marketplace.atlassian.com/apps/7019/scroll-pdf-exporter-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/24982/scroll-word-exporter-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/420604/scroll-html-exporter-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/1210818/scroll-versions-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/1211616/scroll-translations-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/253/scroll-imagemap-for-confluence?hosting=datacenter&tab=overview
https://marketplace.atlassian.com/apps/1215199/backbone-issue-sync-for-jira?hosting=datacenter&tab=overview
https://marketplace.atlassian.com/apps/1217608/scroll-documents-for-confluence?hosting=datacenter&tab=overview
https://marketplace.atlassian.com/apps/1226295/variants-for-scroll-documents?hosting=datacenter
https://marketplace.atlassian.com/apps/1211636/scroll-viewport-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/1227238/translations-for-scroll-documents?hosting=cloud
https://marketplace.atlassian.com/apps/1227238/translations-for-scroll-documents?hosting=datacenter
https://marketplace.atlassian.com/apps/1224799/scroll-content-quality-for-confluence
Websitehttps://marketplace.atlassian.com/apps/420604/scroll-html-exporter-for-confluence?hosting=cloud&tab=overview
漏洞项目Kaleido6000Websitehttps://www.remove.bg
https://www.designify.com
https://www.kaleido.ai
https://www.unscreen.com
漏洞项目Keeper Security Public Bounty Program20000Otherhttps://www.keepersecurity.com/download.html
https://www.microsoft.com/en-us/p/keeperchat/9pdqtcpn4kxn#activetab=pivot:overviewtab
https://www.keepersecurity.com/download.html
https://apps.apple.com/us/app/keeperchat/id1273303729?mt=12
https://docs.keeper.io/kcm
Ioshttps://www.keepersecurity.com/download.html
https://apps.apple.com/app/id1216446440
Websitehttps://keepersecurity.com
https://keepersecurity.com/vault
https://keepersecurity.com/console
Apihttps://docs.keeper.io/keeper-bridge/
https://docs.keeper.io/en/v/secrets-manager
https://docs.keeper.io/sso-connect-guide/
https://docs.keeper.io/sso-connect-cloud/
Androidhttps://play.google.com/store/apps/details?id=com.keepersecurity.chat&hl=en_US&gl=US
https://play.google.com/store/apps/details?id=com.callpod.android_apps.keeper&hl=en_US&gl=US
漏洞项目Kenna Security4500Website██████████████████████████████████████████
Api█████████████████████████████
Other██████████████████████████████████████████████████████████████
漏洞项目Kiteworks25000Websitehttps://kw-bugcrowd-pub.bounty.kiteworks.dev/
漏洞项目Kohl's4500OtherKohl’s entire public digital footprint that is not Out-Of-Scope(See list below)
Websitehttps://www.kohls.com
Ioshttps://www.kohls.com/feature/app.jsp
Androidhttps://www.kohls.com/feature/app.jsp
漏洞项目KuCoin Managed Bug Bounty Program5000Websitehttps://kucoin.com
Ioshttps://apps.apple.com/us/app/kucoin-buy-bitcoin-crypto/id1378956601?mt=8
Androidhttps://play.google.com/store/apps/details?id=com.kubi.kucoin
漏洞项目LastPass5000Websitehttps://lastpass.com
https://support.lastpass.com
https://blog.lastpass.com
https://admin.lastpass.com
https://auth.lastpass.com
https://accounts.lastpass.com
https://www.lastpass.com
Otherhttps://lastpass.com/misc_download2.php
https://lastpass.com/misc_download2.php
Workstation MFA (WMFA)
Androidhttps://play.google.com/store/apps/details?id=com.lastpass.lpandroid
https://play.google.com/store/apps/details?id=com.lastpass.authenticator&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/lastpass-password-manager/id324613447
https://apps.apple.com/us/app/lastpass-authenticator/id1079110004
漏洞项目Latitude Financial Services Bug Bounty 2500Apihttps://api.test.latitudefinancial.com
https://images.latitudepayapps.com/
https://app.latitudepayapps.com/
Websitehttps://master.servicecentre.digitalservicing-np.lfscnp.com/
https://master.servicecentre-nz.digitalservicing-np.lfscnp.com/
https://28degreescard.com.au
https://buyersedge.co.nz
https://carecredit.com.au
https://gemcreditline.co.nz
https://gemfinance.co.nz
https://gemvisa.com.au
*.genoapay.co.nz
*.genoapay.com
https://gomastercard.com.au
https://interestfree.com.au
*.latitudefinancial.co.nz
*.latitudefinancial.com
*.latitudefinancial.com.au
https://latitudeinfinity.com.au
*.latitudepay.com.au
*.latitudepay.com
https://umiloans.com.au
*.test.*.lfscnp.com
*.dev.*.lfscnp.com
*.sandbox.*.lfscnp.com
*.-np.*.lfscnp.com
漏洞项目Lightspeed Hospitality2000Websitehttps://manager.trial.lsk.lightspeed.app/
https://hq.breadcrumb.com/hq/restaurants/bounty-cafe-2/
漏洞项目Lightspeed Retail6250Websitehttps://secure.vendhq.com
https://developers.vendhq.com/
https://payment-connectors.vendhq.com/
https://www.vendhq.com/
https://store.retail.lightspeed.app
https://my.ecwid.com
[yourstore].company.site
Apihttps://app.ecwid.com/api/v3/
漏洞项目Lightspeed Hospitality Private1000Websitehttps://hq.breadcrumb.com/hq/restaurants/bounty-cafe-2/
漏洞项目Lime7000Apiproxy-production.lime.bike
web-message.lime.bike
web-message-high.lime.bike
web-production.lime.bike
external-api.lime.bike
Data.lime.bike
admintool.lime.bike
juicer.lime.bike
help.lime.bike
ops.lime.bike
Ioshttps://apps.apple.com/ca/app/lime-supply/id1620058457
https://apps.apple.com/ca/app/lime-ridegreen/id1199780189
Androidhttps://play.google.com/store/apps/details?id=com.limebike
https://play.google.com/store/apps/details?id=com.lime.supply&hl=en_US
Websitehttps://data.limeinternal.com
https://admintool.lime.bike
https://lp.lime.bike/
https://orchard.limeinternal.com
https://www.li.me/
https://gpt.lime.bike
漏洞项目Linktree7500Websitehttps://linktr.ee
https://linktree.com
https://tr.ee
*.linktree-extensions.com
https://odesli.co
https://odesli.com
https://song.link
https://songlink.io
https://album.link
https://artist.link
https://pods.link
https://playlist.link
https://mylink.page
https://*.plannthat.com
Ioshttps://linktree.app.link/LinktreeWebsite?utm_medium=Linktree_Footer
https://apps.apple.com/au/app/plann-preview-for-instagram/id1106201141
Androidhttps://linktree.app.link/LinktreeWebsite?utm_medium=Linktree_Footer
https://play.google.com/store/search?q=plann&c=apps
漏洞项目lululemon4000Websitehttps://shop.lululemon.com
https://www.lululemon.com.au/
https://www.lululemon.de/
https://www.lululemon.es/
https://www.eu.lululemon.com/
https://www.lululemon.fr/
https://www.lululemon.com.hk/
https://www.lululemon.co.jp/
http://www.lululemon.co.kr/
https://www.lululemon.co.nz/
https://www.lululemon.co.uk/
Other*.lululemon.com
Ioshttps://apps.apple.com/us/app/lululemon/id920098546
漏洞项目Luno Bug Bounty Program7500Androidhttps://play.google.com/store/apps/details?hl=en&id=co.bitx.android.wallet
Ioshttps://apps.apple.com/app/bitx-wallet/id927362479
Apihttps://mobileapi.staging.luno.com/
https://api.staging.luno.com/
Websitehttps://staging.luno.com/
https://ajax.staging.luno.com/
https://app.staging.luno.com/
漏洞项目Majid Al Futtaim Lifestyle3500Websitehttps://www.crateandbarrel.me
https://thatconceptstore.com
https://www.cb2.ae/en
https://www.allsaints.me/
https://www.lululemon.me
https://www.shiseido.me/
lego.me
psychobunny.me
fashion4less.me
Apihttps://api-prod.thatconceptstore.com/
https://lapi.yellowblocks.me
Ioshttps://apps.apple.com/app/id1503045795
Androidhttps://play.google.com/store/apps/details?id=com.maf.thatandroid
漏洞项目Majid Al Futtaim Loyalty Program (Share Rewards)2500Websitehttps://www.sharerewards.com/
Ioshttps://apps.apple.com/us/app/share-rewards/id1465450657
Androidhttps://play.google.com/store/apps/details?id=com.maf.share&hl=en_US&gl=US
Apihttps://www.vtcprodapi.maf.ae/svc/svcHifi.svc/SaveOCRReceipt
https://production.maf.auth0.com/api/v2/
https://production.maf.auth0.com
https://maf-holding-prod.apigee.net
漏洞项目Mastercard Public Bug Bounty 5000Websitehttps://www.simplify.com/commerce/
https://www.mastercard.us/en-us.html
https://www.mastercard.ch/de-ch.html
https://www.mastercard.ch/fr-ch.html
https://www.mastercard.com.au/en-au.html
https://www.mastercard.nl/nl-nl.html
https://developer.mastercard.com
https://donate.mastercard.com
https://demo.priceless.com/
https://europe.priceless.com/shb
https://priceless.com/golf/
https://pricelesssurprises.com/
https://priceless.com/aa/
https://priceless.com/aviator/
https://priceless.com/citiaadvantage/
https://performancemarketing.mastercard.com/portal/
https://src.mastercard.com/profile/enroll
https://src.mastercard.com/*
SRC integration on https://masterpassteststore.com/. Only the Masterpass checkout functionality is in scope
https://www.finicity.com
https://consumer.finicityreports.com
Api Finicity Connect
Finicity- Data Services
Finicity Decisioning
Finicity- Open Banking Payment History application
Finicity - OBB (Open Banking Business Service)
OtherPublic Others Target
漏洞项目Mattermost Managed Bug Bounty Engagement Public2000Androidhttps://play.google.com/store/search?q=mattermost&c=apps
Ioshttps://apps.apple.com/us/app/mattermost/id1257222717
Otherhttps://mattermost.com/apps/
https://github.com/mattermost/mattermost-plugin-jira
https://github.com/mattermost/mattermost-plugin-zoom
https://github.com/mattermost/mattermost-plugin-github
https://github.com/mattermost/mattermost-plugin-gitlab
https://github.com/mattermost/mattermost-plugin-calls
https://github.com/mattermost/mattermost-plugin-playbooks
https://github.com/mattermost/mattermost-plugin-boards
https://github.com/mattermost/mattermost-plugin-ai
https://github.com/mattermost/mattermost-plugin-mscalendar
https://github.com/mattermost/mattermost-plugin-msteams-meetings
Websitehttps://bugcrowd-*your-own-instance*.cloud.mattermost.com/
漏洞项目Mettle5000Other██████████████████
Ios██████████████████████
Android██████████████████████████
Website██████████████████████████████
██████████████████████████████████
漏洞项目Monash University Bug Bounty7500Websitehttps://identity.monash.edu/
https://connect.monash.edu
https://identity.monash.edu
https://www.monash.edu
https://staff.monash
http://apps.connect.monash.edu/
VPN: vpn.monash.edu
eassessment.monash.edu
https://fileshare.ze.monash.edu
https://cms.mobile.monash/
https://mobile.monash/
https://status.mobile.monash/
https://monashcollege.edu.au
https://online.monash.edu/
https://myapp.monash.edu/
https://alumni-friends.monash.edu
https://agent.apps.monash.edu/
https://compulsoryunits.monash.edu/
https://monash.app.nutrip.com
https://studentplacements.monash.edu
https://unihub.monash.edu/
https://interviews.monash.edu/
https://shop.monash.edu/
https://mlivetickets.monash.edu
https://alumni-friends.monash.edu
https://partner.apps.monash.edu
https://forms.apps.monash.edu/
https://formative.eassessment.monash.edu/
https://www.monashprofessional.edu.au/
https://account-registration.monash.edu/
http://pay.monashcollege.edu.au/
Api mix.monash.edu
mix-qat.monash.edu/*
mix-dev.monash.edu/*
Ioshttps://apps.apple.com/us/app/monash-study/id1462126829
https://apps.apple.com/au/app/monash-bsafe/id1462241951
Androidhttps://play.google.com/store/apps/details?id=edu.monash.monashmobile
https://play.google.com/store/apps/details?id=com.scu.bsafe
漏洞项目Moneytree KK5000Ioshttps://apps.apple.com/vc/app/moneytree-finance-made-easy/id586847189
Websitehttps://wwws-staging.moneytree.jp/link/
https://vault-staging.getmoneytree.com
https://redash-staging.getmoneytree.com/
https://app-staging.getmoneytree.com
https://wwws-staging.moneytree.jp/link/mobile/
https://wwws-staging.moneytree.jp/link/mobile/#/signup?client_id=38d99a6e8e9fc87c866f5aa82bdc2569c464b2323a55e0b28f658efa678e9623&redirect_uri=https://wwws-staging.moneytree.jp/link/mobile/callback&response_type=token&scope=guest_read+accounts_read+transactions_read+request_refresh
https://myaccount-staging.getmoneytree.com
https://business-staging.getmoneytree.com/
Apihttps://jp-api-staging.getmoneytree.com
Androidhttps://play.google.com/store/apps/details?id=jp.moneytree.moneytree&hl=en_AU&gl=US
漏洞项目Motorola Mobility Hardware Engagement5000AndroidAll Motorola Devices running Android 13 and above.
漏洞项目Navan2500Websitehttps://staging-prime.navan.com
漏洞项目NEOGOV Public Assets3500Websitehttps://secure.neogov.com
https://login.neogov.com
https://performance.neogov.com
https://learn.neogov.com
https://api.neogov.com
https://onboard.neogov.com
https://unified.neogov.com
https://eforms.neogov.com
https://cdn.neogov.com
https://www.governmentjobs.com
https://analytics.neogov.com
https://powerdms.com/
https://secure.cuehit.net
https://app.agency360.com
https://securesignin.neogov.com
https://securesignin.powerdms.com/
https://hr.neogov.com
漏洞项目NETGEAR Cash Rewards1200IotNighthawk Pro Gaming Router
Nighthawk Pro Gaming Switch
Nighthawk Router
Nighthawk Switch
Orbi
Insight Managed Smart Cloud Wireless Access Point
Meural
IosNighthawk iOS App
Orbi iOS App
Insight iOS App
AndroidNighthawk Android App
Orbi Android App
Insight Android App
Apihttps://api.netgear.com
WebsiteInsight Cloud Portal
漏洞项目New Relic Public Bug Bounty Program6000Websitehttps://one.newrelic.com
https://docs.newrelic.com/
https://newrelic.com/
https://newrelic.com/blog
https://support.newrelic.com/
https://forum.newrelic.com
https://knowledge.newrelic.com/
https://learn.newrelic.com/
https://developer.newrelic.com/
Androidhttps://play.google.com/store/apps/details?id=com.newrelic.rpm
Ioshttps://apps.apple.com/ie/app/new-relic/id594038638
Other*.nr-data.net
*.nr-ops.net
漏洞项目Nextup.ai1500Website████████████████████████████████████████████████████████████████████████████████████████████████████
██████████████████████████████████████████████████████████████████████████████████████████████████████████████
███████████████████████████████████████████████████████████████████████████████████████████████████
██████████████████████████████████████████████████████████████████████████████████████████████████████
████████████████████████████████████████████████████████████████████████████████████████████████████████████████
漏洞项目Nubank Brasil Managed Bug Bounty Program4000Androidhttps://play.google.com/store/apps/details?id=com.nu.production&hl=pt_BR&gl=US&pli=1
Ioshttps://apps.apple.com/br/app/nubank-conta-e-cart%C3%A3o/id814456780
Apiprod-*.nubank.com.br
prod-*.nu.com.mx
prod-*.nu.com.co
Otherhttps://nubank.com.br/
https://nubank.com.mx
https://nubank.com.co
Websitehttps://www.nuinvest.com.br/
漏洞项目Octopus Deploy6000Otherhttps://octopus.com/downloads
https://octopus.com/downloads
漏洞项目Octopus6000Website*.octopus.com
https://octopus.com
Otherhttps://github.com/OctopusDeploy
漏洞项目oDesk NoneOther███████████
漏洞项目Okta75000Websitebugcrowd-pam-###.oktapreview.com
bugcrowd-pam-###.pam.oktapreview.com
https://bugcrowd-oie-%username%-1.workflows.oktapreview.com
https://bugcrowd-oie-%username%-2.workflows.oktapreview.com
https://bugcrowd-pam-###.workflows.oktapreview.com
https://support.okta.com
bugcrowd-oie-%username%-1.at.oktapreview.com
bugcrowd-oie-%username%-2.at.oktapreview.com
https://bugcrowd-pam-###.at.oktapreview.com
bugcrowd-oie-%username%-1.oktapreview.com
bugcrowd-oie-%username%-2.oktapreview.com
https://bugcrowd-pam-###.oktapreview.com
https://www.okta.com/products/advanced-server-access/
http://app.scaleft.com/
OtherDesktop MFA for Windows
Desktop MFA for macOS
Password Sync for macOS
https://www.okta.com/fastpass/
https://help.okta.com/asa/en-us/Content/Topics/Adv_Server_Access/docs/client.htm
https://apps.apple.com/us/app/okta-verify/id490179405
Okta Verify (Windows)
Okta On-Prem Agents ( AD, LDAP, RDP, IWA )
https://help.okta.com/en/prod/Content/Topics/Adv_Server_Access/docs/sftd-windows.htm
https://help.okta.com/en/prod/Content/Topics/Settings/download-browser-plugin.htm
Ioshttps://apps.apple.com/us/app/okta-verify/id490179405
Androidhttps://play.google.com/store/apps/details?id=com.okta.android.auth&hl=en_US&gl=US
漏洞项目OneTrust6500Websitehttps://pentest-app.onetrust.com/
漏洞项目OpenAI6500Apihttps://api.openai.com
https://chat.openai.com
OpenAI API Keys
https://*.openai.org
Websitehttps://chat.openai.com
Third Party Targets
https://*.openai.org
https://openai.com/
https://platform.openai.com/playground
Other*.openai.com
Other
漏洞项目OpenSea Managed Bug Bounty Program3000000Websitehttps://opensea.io/
https://pro.opensea.io/
http://wallets.opensea.io/
Broken Link
Androidhttps://play.google.com/store/apps/details?id=io.opensea&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/opensea-nft-marketplace/id1582861796
Otherhttps://github.com/ProjectOpenSea/seaport#deployments
https://etherscan.io/address/0x0000a26b00c1F0DF003000390027140000fAa719
https://etherscan.io/address/0x00005EA00Ac477B1030CE78506496e8C2dE24bf5
漏洞项目Opera Public Bug Bounty5000Websitehttps://auth.opera.com
https://download.opera.com
https://www.opera.com/
https://get.geo.opera.com
https://bugs.opera.com/
https://gx.games
https://create.gx.games
Loomi.tv
*.opera.com
marketplace.gamemaker.io
https://www.gamemaker.io
https://cashback.opera.com/
*.apex-football.com
*.operafootball.com
*.dailyadvent.com
Apihttps://accounts.opera.com
https://flow.opera.com
https://autoupdate.geo.opera.com
https://net.geo.opera.com
https://speeddials.opera.com
https://browser-notifications.opera.com
https://cryptowallet.opera-api.com
https://suggestions.opera-api.com
weather.opera-api.com
push.opera.com
*.osp.opera.software
*.opera.technology
https://features.opera-api.com
https://cdn-store.opera-api.com
*.sec-tunnel.com
exchange.opera.com
merchandise.opera-api.com
blocklist.opera-api.com
https://gx.opera-api.com
37.228.104.0/21
77.111.244.0/22
82.145.208.0/20
91.203.96.0/22
102.23.96.0/22
103.83.120.0/22
107.167.96.0/19
141.0.8.0/21
185.26.180.0/22
195.189.143.0/24
203.89.100.0/22
*.opera-mini.net
*.opera.news
*.operanewsapp.com
*.yoyogames.com
*.feednews.com
api.gx.games/gxc
api.gx.games/dc
api.gx.games/dev
api.gx.games/profile
api.gx.games/session
Otherhttps://www.opera.com/computer/thanks?ni=stable&os=windows
https://www.opera.com/computer/thanks?ni=eapgx&os=windows
*.opera.software
GameMaker Studio 2
Androidhttps://play.google.com/store/apps/details?id=com.opera.browser
https://play.google.com/store/apps/details?id=com.opera.app.news
https://play.google.com/store/apps/details?id=com.opera.gx
https://play.google.com/store/apps/details?id=com.opera.mini.native
https://play.google.com/store/apps/details?id=com.opera.app.sports
漏洞项目Opsgenie4000Websitehttps://app.opsgenie.com
https://mobileapp.opsgenie.com
*.opsgenie.com
IosOpsgenie (IoS)
AndroidOpsgenie (Android)
漏洞项目Optimizely2500Websitehttps://app.optimizely.com/
https://cdn.optimizely.com/
https://cdn-pci.optimizely.com/
https://optimizely-edge.com
https://dxc.episerver.net/
https://paasportal.episerver.net/
https://paasportal.episerver.net/api/v1.0/
https://app.welcomesoftware.com/
https://accounts.welcomesoftware.com/
https://cdn-app.welcomesoftware.com/
https://analytics.welcomesoftware.com/
https://accounts.cmp.optimizely.com/
Apihttps://api.optimizely.com/
https://api.welcomesoftware.com/
https://flags.expeng.optimizely.com
漏洞项目Orderly Network: Bug Bounty Program9000Api████████████████████████████
████████████████████████
Website████████████████████████
漏洞项目Orderly Network Public Managed Bug Bounty Engagement9000Websitehttps://orderly.network/
Apihttps://api.orderly.org/
https://api-evm.orderly.org/
漏洞项目Origin Energy - Retail2500Websitehttps://www.originenergy.com.au/
*.origindigital-pac.com.au
*.odcdn.com.au
https://dataportal.originenergy.com.au
*.support.originenergy.com.au
*.download.originenergy.com.au
https://www.winconnect.com.au/moving-out/
https://www.winconnect.com.au/get-connected/
https://customerportal.winconnect.com.au/login
signup.myconnect.com.au
portal.myconnect.com.au
myconnect.com.au
portal.myconnect.com.au/new-connection
ssu.myconnect.com.au/signup/get-connected
hub.myconnect.com.au
Api*.api.originenergy.com.au
https://api.rx.originenergy.com.au/v1/gateway/schema/graphql
https://api.rx.originenergy.com.au/v1/gateway/schema/kraken/graphql
https://api.rx.originenergy.com.au/v1/lpg/graphql
漏洞项目Pantheon500Otherhttps://dashboard.pantheon.io
漏洞项目Empower Personal Wealth4000Websitehttps://devstaging.pcapcloud.com/*
漏洞项目Pexels6000Websitehttps://www.pexels.com/
漏洞项目Phemex Bug Bounty2500Ios██████████████
Website██████████████
Android██████████████████
漏洞项目Pinterest25000Apiapi.pinterest.com
Website*.pinterest.com Web Apps
Ioshttps://apps.apple.com/us/app/pinterest/id429047995
Androidhttps://play.google.com/store/apps/details?id=com.pinterest&hl=en_US&gl=US
https://play.google.com/store/apps/details?id=com.pinterest.twa&hl=en_US&gl=US
Otherhttps://microsoftedge.microsoft.com/addons/detail/pinterest-save-button/bkgoflemacdadndiohhdnphcmdhacabg
https://chrome.google.com/webstore/detail/pinterest-save-button/gpdjojdkbbmdfjfahjcgigfpmkopogic?hl=en
https://addons.mozilla.org/en-US/firefox/addon/pinterest/
https://github.com/pinterest/
漏洞项目Pixabay6000Websitehttps://pixabay.com/
漏洞项目PlanetHoster3000Websitehttps://my.planethoster.com
https://world.planethoster.net
https://mg.n0c.com/
https://www.planethoster.com
Apihttps://api.planethoster.net
漏洞项目The Plugin People1800Websitehttps://marketplace.atlassian.com/apps/4832/enterprise-mail-handler-for-jira-jemh?hosting=cloud&tab=overview
Otherhttps://marketplace.atlassian.com/apps/4832/enterprise-mail-handler-for-jira-jemh?hosting=datacenter&tab=overview
漏洞项目Plusgrade Loyalty Public Program5000Website*.points.com
漏洞项目Private Internet Access1250OtherPIA VPN servers
https://www.privateinternetaccess.com/download/linux-vpn
https://www.privateinternetaccess.com/download/mac-vpn
https://www.privateinternetaccess.com/download/windows-vpn
https://addons.mozilla.org/en-US/firefox/addon/private-internet-access-ext/
https://chrome.google.com/webstore/detail/private-internet-access/jplnlifepflhkbkgonidnobkakhmpnmh
https://addons.opera.com/en/extensions/details/private-internet-access-extension/
Ioshttps://apps.apple.com/us/app/private-internet-access-anonymous/id955626407
Androidhttps://play.google.com/store/apps/details?id=com.privateinternetaccess.android&hl=en
ApiPIA APIs
Websitehttps://www.privateinternetaccess.com/
*.privateinternetaccess.com
piaservers.com
漏洞项目Prosus1250Websitehttps://dealflow.prosus.com
https://analytics-admin.prosus.com
http://analytics.prosus.com
https://data.prosus.com/
https://hr.prosus.com/
https://tracker.naspers.com/
https://cfc.naspers.com/
https://peopleview.naspers.com
http://nav.naspers.com/
Apihttps://dealflowapi.prosus.com
漏洞项目Quizlet2000Websitehttps://*.quizlet.com
https://*.slader.com
IosIoS
AndroidAndroid
Api3.0 API
漏洞项目Rapyd7500Apiapi.rapyd.net
Websitehttps://dashboard.rapyd.net/
verify.rapyd.net
*.rapyd.net
*.neatcommerce.com
*.korta.is
*.neattest.com
https://jointhemoment.net/
*.neat.com.hk
*.kortathjonustan.is
*.neat.hk
*.neat.wtf
Othercheckout.rapyd.net
*.rapyd.com
*.rapyd.org
漏洞项目Rarible5000Websitedata.rarible.com
admin.rarible.com
test.rarible.com
temp.rarible.com
static.rarible.com
logging.rarible.com
log.rarible.com
links.rarible.com
fs.rarible.com
beta.rarible.com
https://rarible.com/
rari.foundation
https://mintle.x.rarible.com/
Apihttps://api.rarible.com/v0.1/doc
漏洞项目Rec Room Video Games2500Otherhttps://store.playstation.com/en-us/product/UP2662-PPSA05532_00-6681199027107223
https://store.playstation.com/en-us/product/UP2662-CUSA08481_00-RECROOM000000001
https://www.xbox.com/en-us/games/store/rec-room/9pgpqk0xthrz
https://www.oculus.com/experiences/quest/2173678582678296
https://store.steampowered.com/app/471710/Rec_Room/
https://www.oculus.com/experiences/rift/1257029974329451
https://rec.net/download
https://recroom.com/studio
https://www.nintendo.com/us/store/products/rec-room-switch/
Websitehttps://rec.net/
Ioshttps://apps.apple.com/app/id1450306065
Androidhttps://play.google.com/store/apps/details?id=com.AgainstGravity.RecRoom
Apihttps://*.rec.net/*
https://api.rec.net
https://devportal.rec.net/
漏洞项目SAP Private InvitationNoneWebsiteSAP SuccessFactors
SAP S/4HANA Cloud Public Edition
SAP S/4HANA Cloud Private Edition
SAP Integrated Business Planning for Supply Chain
SAP Cloud ALM
SAP Customer Data Cloud portfolio from Gigya
SAP S/4HANA migration cockpit
SAP Risk and Assurance Management
SAP Order Management for Sourcing and Availability
SAP Continuous Integration and Delivery
SAP Order Management foundation
SAP Business Network for Logistics
SAP Signavio
SAP Enable Now
漏洞项目The Security Team Rocks12000Apihttps://api.thesecurityteam.rocks
https://api.anytask.thesecurityteam.rocks
Websitehttps://anytask.thesecurityteam.rocks
https://my.thesecurityteam.rocks
https://legacy-blockexplorer.electroneum.com
Androidhttps://play.google.com/store/apps/details?id=com.electroneum.mobile&hl=en_US
https://public.thesecurityteam.rocks/resources/app/android/etnapp-5.2.2-staging.apk
Ioshttps://apps.apple.com/us/app/electroneum/id1270774992
Otherhttps://github.com/electroneum/electroneum/
漏洞项目SEEK 10000Website*.seek.com.au
*.skinfra.xyz
*.outfra.xyz
*.seekpass.co
*.seekpass-staging.com
*.aips-internal.com
*.certsy.com
*.certsynonprod.com
Otherhttps://seekcdn.com
Ioshttps://apps.apple.com/au/app/seek-jobs-job-search/id520400855
https://apps.apple.com/au/app/certsy/id1617796159
Androidhttps://play.google.com/store/apps/details?id=au.com.seek&hl=en_AU&gl=US
https://play.google.com/store/apps/details?id=com.certsy.app
Api*.sol-data.com
*.jobapi.net
https://graphql.seek.com
https://auth.seek.com
漏洞项目Sendbird2000Websitehttps://dashboard.sendbird.com/
https://sendbird.com/docs
https://sendbird.com
Apihttps://gate.sendbird.com
https://api-{app-id}.sendbird.com
https://ws-{app-id}.sendbird.com
https://desk-api-{region}.sendbird.com
https://ws-{app-id}.calls.sendbird.com
https://api-{app-id}.calls.sendbird.com
https://api-{app-id}.notifications.sendbird.com
漏洞项目ShipwireNoneOther████████████████
████████████████
████████████████
█████████████████████
█████████████████
漏洞项目1Shoppingcart.com2000Websitehttps://1shoppingcart.com
https://mcssl.com
*.mcssl.com
漏洞项目Skroutz Public Managed Bug Bounty4500Websitehttps://www.skroutz.gr/
漏洞项目Skyscanner8000IosSkyscanner iOS App
Skyscanner iOS app
AndroidSkyscanner Android App
Skyscanner Android app
Apigateway.skyscanner.net/*
Websiteskyscanner.net/hotels/book/*
skyscanner.net/*
partnerportal.skyscanner.net/*
*.skyscanner.net
OtherAWS Infrastructure
漏洞项目Smartmockups6000Websitehttps://smartmockups.com/
漏洞项目SnapNames2000Websitehttps://snapnames.com/
https://www.namejet.com/
漏洞项目Sophos80000Otherhttps://www.sophos.com/en-us/products/endpoint-antivirus/free-trial
https://www.sophos.com/en-us/products/endpoint-antivirus/free-trial
https://www.sophos.com/en-us/products/endpoint-antivirus/free-trial
https://www.sophos.com/en-us/products/endpoint-antivirus/free-trial
Sophos IT Infrastructure (all other Sophos domains)
Any Other Sophos Product or Service
IotSophos Firewall (XG/XGS, SFOS) - Pre-auth RCE
https://www.sophos.com/en-us/products/next-gen-firewall
https://docs.sophos.com/central/customer/help/en-us/ManageYourProducts/ThreatAnalysisCenter/Integrations/Sophos/NDR/index.html
https://www.sophos.com/en-us/products
Websitehttps://central.sophos.com
3rd party services hosted at *.sophos.com
Ioshttps://www.sophos.com/en-us/products/mobile-control/free-trial
Androidhttps://www.sophos.com/en-us/products/mobile-control/free-trial
Networkhttps://www.sophos.com/
漏洞项目SoundCloud4500Androidhttps://play.google.com/store/apps/details?id=com.soundcloud.android&hl=en&gl=US
Websitehttps://soundcloud.com
*.soundcloud.org
*.s-cloud.net
http://artists.soundcloud.com/
https://soundcloud.org
Ioshttps://apps.apple.com/us/app/soundcloud-music-audio/id336353151
Apihttps://connect.soundcloud.com
*.services.repostnetwork.com
api-*.soundcloud.com
漏洞项目SpaceX/Starlink100000WebsiteSpaceX and Starlink assets (target information and rewards detailed above on the brief)
漏洞项目Square18000Website*.square.com
https://www.weebly.com/
Other*.squareup.com
Androidhttps://play.google.com/store/apps/details?id=com.squareup&hl=en_US&gl=US
Ioshttps://apps.apple.com/us/app/square-point-of-sale-pos/id335393788
HardwareSquare Register
Square Terminal
漏洞项目Square Open Source5000Other███████████████████████████████████████
█████████████████████████████████
█████████████████████████████████
█████████████████████████████████
████████████████████████████████████
█████████████████████████████████
████████████████████████████████
██████████████████████████████
███████████████████████████████████████
████████████████████████████████████
████████████████████████████████████
██████████████████████████████████
█████████████████████████████████
███████████████████████████████████
███████████████████████████████
██████████████████████████████
漏洞项目Statuspage4000Websitehttps://manage.statuspage.io
*.statuspage.io
漏洞项目Stellantis 7500OtherVehicle Head Units, TPMS sensors, remote keyless entry, and any other system that is present in a hardware product that you own or are authorized to test against
Websitehttps://www.driveuconnect.com
https://www.driveuconnect.eu
Androidhttps://play.google.com/store/apps/details?id=com.acn.uc&hl=en
https://play.google.com/store/apps/details?id=com.fcagroup.us.uconnect
Ioshttps://itunes.apple.com/us/app/uconnect/id1229236724?mt=8
https://itunes.apple.com/pl/app/panda-uconnect/id1117321678?mt=8
https://itunes.apple.com/gb/app/uconnect-live/id881830261?mt=8
漏洞项目Stiltsoft3000Websitehttps://marketplace.atlassian.com/apps/27447/table-filter-and-charts-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1214110/courses-and-quizzes-lms-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1210934/awesome-graphs-for-bitbucket?hosting=cloud
https://marketplace.atlassian.com/apps/1210934/awesome-graphs-for-bitbucket?hosting=server
https://marketplace.atlassian.com/apps/1210934/awesome-graphs-for-bitbucket?hosting=datacenter
https://marketplace.atlassian.com/apps/1222084/spreadsheet-issue-field-editor?hosting=cloud
https://marketplace.atlassian.com/apps/27447/table-filter-and-charts-for-confluence?hosting=datacenter
https://marketplace.atlassian.com/apps/27447/table-filter-and-charts-for-confluence?hosting=server
https://marketplace.atlassian.com/apps/1212507/smart-attachments-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1212531/customer-case-jira-support-feedback?hosting=cloud
https://marketplace.atlassian.com/apps/1210766/teamcity-integration-for-jira?hosting=cloud
https://marketplace.atlassian.com/apps/1214971/handy-macros-for-confluence?hosting=cloud
https://marketplace.atlassian.com/apps/1222102/webhook-manager-for-confluence-cloud?hosting=cloud
https://marketplace.atlassian.com/apps/1222001/employee-performance-ratings?hosting=cloud
https://marketplace.atlassian.com/apps/1224994/poll-maker-for-confluence?hosting=cloud
漏洞项目T-Mobile133700OtherSelf Register Account on T-Mobile Microsoft Entra ID
Assets labeled as in-scope
https://digits.t-mobile.com/
NetworkCellular Network Auth Bypass via Web/Mobile App
T&P Servers
Internal Server via Internet Network
10.128.0.0/10
Websitehttps://account.t-mobile.com
https://metrobyt-mobile.com
https://sprint.com
https://t-mobile.com
https://tfb.t-mobile.com
https://devedge.t-mobile.com
https://digits.t-mobile.com
https://t-mobile.com
https://metrobyt-mobile.com
https://sprint.com
Apihttps://api.t-mobile.com
Ioshttps://apps.apple.com/us/app/t-mobile/id561625752
https://apps.apple.com/us/app/syncup-drive/id1576574297
https://apps.apple.com/us/app/syncup-kids/id1503394062
https://apps.apple.com/us/app/syncup-tracker/id1526380335
https://apps.apple.com/us/app/t-life-t-mobile-tuesdays/id1111876388
Androidhttps://play.google.com/store/apps/details?id=com.tmobile.pr.mytmobile
https://play.google.com/store/apps/details?id=com.tmobile.drive
https://play.google.com/store/apps/details?id=com.tmobile.kids
https://play.google.com/store/apps/details?id=com.tmobile.syncuptag
https://play.google.com/store/apps/details?id=com.tmobile.tuesdays&hl=en_US&gl=US
漏洞项目Tamedia2500Website████████████████████████████
██████████████████████
████████████████████████████
███████████████████████
██████████████████
██████████████████
███████████████████████
████████████████████████
████████████████████████████████
█████████████████████████████
███████████████████████████████████
███████████████████████
漏洞项目Infinite Athlete4500Websitehttps://biocorellc.com
https://tempus-ex.com
https://infiniteathlete.ai
https://platform.infiniteathlete.ai
https://docs.tempus-ex.com
Otherhttps://github.com/tempus-ex
漏洞项目Tesla100000Website*.tesla.cn
*.tesla.services
*.tesla.com
*.teslamotors.com
Any host verified to be owned by Tesla Motors Inc. (domains/IP space/etc.)
*.solarcity.com
*.teslainsuranceservices.com
Ioshttps://apps.apple.com/us/app/tesla/id582007913
Androidhttps://play.google.com/store/apps/details?id=com.teslamotors.tesla&hl=en_US&gl=US
HardwareTesla Energy hardware you own
Tesla vehicle hardware that you own
漏洞项目TheFork - B2C - WNG3500Websitehttps://www.thefork.com/
https://m.thefork.com
https://blog.thefork.com/
https://*.tools.thefork.tech
https://www.restaurant-information.com
https://widget.thefork.com
Apihttps://api.thefork.com
https://api.lafourchette.com
https://review-api.lafourchette.com
https://google-reserve-api.thefork.io
https://m-api.lafourchette.com
Androidhttps://play.google.com/store/apps/details?id=com.lafourchette.lafourchette
Ioshttps://apps.apple.com/app/thefork-restaurants-bookings/id424850908
漏洞项目Cisco ThousandEyes Vulnerability Hunting aka Bug Bounty 4500Apihttps://api.thousandeyes.com/
Websitehttps://app.thousandeyes.com/
https://www.thousandeyes.com/
OtherThousandEyes Enterprise Agent
ThousandEyes Endpoint Agent
漏洞项目TIDAL5000Websitehttps://tidal.com/
*.wimpmusic.com
*.tidalhifi.com
*tidalhi.fi
*.tdl.sh
Apiapi.tidal.com
IosTidal Client for iOS
AndroidTidal Client for Android
Otherhttps://offer.tidal.com/download
Tidal Official Clients (e.g. Sonos integration, Tesla integration, etc.)
漏洞项目Trello10000Websitetrello.com
api.trello.com
*.trello.services
https://butlerfortrello.com/
https://trello.com/power-ups/55a5d917446f517774210011/calendar-power-up
https://trello.com/power-ups/55a5d917446f517774210012/card-aging
https://trello.com/power-ups/5c2462c384ab8949b1724a20/list-limits
https://trello.com/power-ups/55a5d917446f517774210013/voting
https://trello.com/power-ups/6052d130068a8c0de7b022b4
Trello Third Party Powerups
OtherTrello Desktop Client
AndroidTrello Mobile App for Android
IosTrello Mobile App for iOS
漏洞项目Tripadvisor 5000Apihttps://api.production.cde.tamg.cloud
https://partnerapi.tapayments.com
https://partnerapi1.tapayments.com
https://partnerapi2.tapayments.com
https://walletproxy.tapayments.com
https://walletproxy1.tapayments.com
https://walletproxy2.tapayments.com
https://api.tripadvisor.com
https://service.platform.tripadvisor.com
https://gwapi.tripadvisor.com
https://gwapi1.tripadvisor.com
https://gwapi2.tripadvisor.com
Websitehttps://www.tripadvisor.com
Localized versions of www.tripadvisor.com available from the site's header or footer
Any publicly accessible Tripadvisor web asset or host (domains, ip space, etc) - except for assets listed as Out-of-Scope below.
https://rentals.tripadvisor.com
https://*.vacationhomerentals.com
https://*.holidaylettings.com
https://*.flipkey.com
https://*.niumba.com
https://*.housetrip.com
http://marlo.ext.tripadvisor.com
https://*.bokundemo.com
https://*.bokuntest.com
AndroidTripadvisor Android App
IosTripadvisor iOS App
https://itunes.apple.com/us/app/vacation-rentals-owner-app-by-tripadvisor/id1045663228?mt=8
漏洞项目20 Minuten5000Websitehttps://www.20min.ch
https://coral.20min.ch/
https://pcm-admin.beta.20min.ch/
https://myshop.20min.ch
https://videoplayer.20min.ch
https://amp.20min.ch
https://comment-moderation-stats.20min.ch
https://partner-feeds.20min.ch
https://pcm-api.beta.20min.ch
https://pcm.beta.20min.ch
https://pcm-api.20min.ch
https://pcm-admin.20min.ch
https://pcm-imaginary.20min.ch
https://pcm.20min.ch
https://screenplayer.20min.ch
Apihttps://api.20min.ch/
https://pcm-imaginary.beta.20min.ch/
漏洞项目Twilio9500Apihttps://api.twilio.com
Twilio APIs
https://api.sendgrid.com
https://www.twilio.com/docs/verify/api
https://www.twilio.com/docs/authy/api
https://www.twilio.com/docs/authy/api/dashboard
https://api.segment.io/
Otherhttps://tsock.us1.twilio.com
*.sip.*.twilio.com
https://www.twilio.com/blog/get-started-webrtc
https://www.twilio.com/wireless
https://www.twilio.com/docs/libraries
https://www.twilio.com/docs/libraries
Twilio CDNs (static*.twilio.com)
smtp.sendgrid.net
https://authy.com/download/
https://segment.com/docs/sources/
Any host / web property verified to be owned by Segment (domains/IP space/etc.)
Websitehttps://www.twilio.com/console
https://twilio.com/blog
https://build.twilio.com/s/
https://sendgrid.com
https://app.sendgrid.com/
https://signup.sendgrid.com/
https://mc.sendgrid.com/
https://www.twilio.com/authy
Any host/web property verified to be owned by Twilio
https://app.segment.com/
Ioshttps://authy.com/download/
Androidhttps://authy.com/download/
漏洞项目Tyler Technologies Data & Insights – Tyler Data Platform, powered by Socrata3500Otherhttps://opendata-demo.test-socrata.com
https://opendata.test-socrata.com
Websitehttps://opendata.test-socrata.com/admin/gateway
漏洞项目Ultra Mobile Managed Bug Bounty Program - (Public) 4500Websitehttps://mintmobile.com
https://ultramobile.com
漏洞项目Ultra Mobile Managed Bug Bounty Program - Retailer Portal 3500Websitehttps://web-retailer-portal.ultramobile.com
漏洞项目Under Armour AppSec2500Websitehttps://www.underarmour.com
https://www.underarmour.co.uk
https://www.underarmournext.co.uk/
https://underarmournext.com/
https://consumer-sustainability.underarmour.com/en
Ioshttps://apps.apple.com/us/app/under-armour/id1092704571
Androidhttps://play.google.com/store/apps/details?id=com.ua.shop&hl=en
Apihttps://api.shop.ua.com/graphql
Otherhttps://mapmyfitness.api.ua.com
漏洞项目Under Armour CorporateNoneWebsitehttps://apphouse.underarmour.com/
https://snc.underarmour.com/
https://snctest-s.underarmour.com/
https://snctest-c.underarmour.com/
https://supplier.underarmour.com/
https://transfer.underarmour.com/
https://vpe-us.underarmour.com/
https://vtxapp9p.underarmour.com/
https://vtxapp9q.underarmour.com/
https://vtxapp9d.underarmour.com/
https://vtxappd.underarmour.com/
52.44.176.187
https://underarmournext.com
Otherhttp://ourhouse.underarmour.com/
204.29.196.0/23
3.223.149.182
3.230.219.249
34.237.130.2
34.239.5.227
52.220.158.49
52.76.174.107
13.238.112.7
52.67.69.35
52.86.17.52
54.83.32.16
13.58.121.166
3.133.230.28
3.19.172.158
漏洞项目Unity Technologies3000Websitehttps://id.unity.com
https://cloud.unity.com
https://store.unity.com
https://pay.unity.com
https://syncsketch.dev
Apihttps://api.unity.com
Otherplayer-login.unity.com
https://unity3d.com/get-unity/download/archive
https://unity3d.com/get-unity/download
漏洞项目Upwork5000Websitehttps://www.upwork.com
Direct Contracts
Upwork - Desktop Application
Upwork - Marketplace Portal
Upwork - Messages
AndroidUpwork - Android Application
Upwork - Mobile Application Android
IosUpwork - iOS Application
Upwork - Mobile Application IOS
HardwareUpwork Dash Messenger Desktop Version (www.upwork.com/downloads)
Apiwww.upwork.com/api
api.upwork.com/graphql
Upwork - api.upwork.com/graphql
漏洞项目USAA6000Websitehttps://www.usaa.com
https://mobile.usaa.com
https://aemdam.usaa360.com/
https://authn.usaa.com/
https://content.usaa.com
https://d1.utv.usaa.com
https://d2.utv.usaa.com
https://externalconnect.usaa.com/
https://guest.usaa.com/
https://liveassist23.usaa.com
https://liveassist24.usaa.com
https://mguest.usaa.com/
https://mstatic.usaa.com
https://mydesktop.usaa.com
https://myvpn.usaa.com
https://nice.wfmusaa.com
https://s1.utv.usaa.com
https://s2.utv.usaa.com
https://securemail.usaa.com
https://static.usaa.com
https://www.usaainsurance.com/
https://utv.usaa.com
https://v.utv.usaa.com
https://vendorss.usaa.com
https://vlagg.usaa.com
Apihttps://api.usaa.com/
https://api-a.usaa.com
https://b2bapi-a.usaa.com
https://b2bapi.usaa.com
https://b2blsapi-a.usaa.com
https://b2blsapi.usaa.com
https://mapi-a.usaa.com
https://mapi.usaa.com/
https://vlapi.usaa.com
https://ws.usaa.com
https://wsmbr.usaa.com/
Otherhttps://partners.usaa.com
https://l.usaa.com/
https://liveassist.usaa.com/
https://liveassist11.usaa.com/
https://liveassist12.usaa.com/
https://liveassist21.usaa.com/
https://liveassist22.usaa.com/
https://mobileapps.usaa.com/
https://nvoice.usaa.com/
https://s.usaa.com/
https://webmail.usaa.com
Androidhttps://play.google.com/store/apps/details?id=com.usaa.mobile.android.usaa&hl=en
Ioshttps://apps.apple.com/us/app/usaa-mobile/id312325565
漏洞项目Verisign10000Otherepptool-ctld.verisign-grs.com (EPP service; DNS related)
a.root-servers.net (DNS service; DNS related)
j.root-servers.net (DNS service; DNS related)
*.gtld-servers.net (DNS service; DNS related)
https://www.verisign.com
*.verisign-grs.com (DNS service; DNS related)
Websitehttps://www.verisign.com
https://youcouldbe.com
https://blog.verisign.com
https://namestudioforsocial.com/
https://namestudio.com
漏洞项目Viator4500Ioshttps://apps.apple.com/us/app/viator-tours-activities/id434832826
Androidhttps://play.google.com/store/apps/details?id=com.viator.mobile.android&hl=en_US&gl=US
Websitehttps://supplier.viator.com/
https://partners.viator.com
https://travelagents.viator.com
https://help.supplier.viator.com/en
https://kiwi.partner.viator.com
https://*.viatorinc.com
https://selector.viator.com
https://partnerhelp.viator.com/
https://*.viator.com
Apihttps://viatorapi.viator.com/service/directory
https://www.toursgds.com/
https://www.toursgds.com/ToursGdsService?wsdl
https://www.toursgds.com/SupplierService?wsdl
漏洞项目Majid Al Futtaim Entertainment2500IosVox Cinemas iOS
AndroidVox Cinemas Android
Websitehttps://uae.voxcinemas.com/
https://www.skidxb.com/
https://www.magicplanetmena.com/
漏洞项目Web.com3000Websitehttps://www.web.com
http://www.register.com
https://www.networksolutions.com
https://uk.web.com
https://www.bluehost.com/
https://www.hostgator.com/
漏洞项目Western Union3000Otherhttps://www.westernunion.com
https://www2.westernunion.com
https://www.westernunion.fr
https://www.westernunion.de
https://www.westernunion.no
https://www.westernunion.se
https://www.westernunion.ca
https://www.westernunion.nl
https://www.westernunion.es
https://www.westernunion.ie
https://www.westernunion.ch
https://www.westernunion.pt
https://www.westernunion.be
https://www.westernunion.dk
https://www.westernunion.fi
https://www.westernunion.pl
https://www.westernunion.ee
https://www.westernunion.lu
https://www.westernunion.gr
https://www.westernunion.at
https://www.westernunion.it
https://www.westernunion.co.nz
https://www.westernunion.co.uk
https://www.westernunion.com.au
https://cuba.westernunion.com
https://egypt.westernunion.com
https://hk.westernunion.com
https://india.westernunion.com
https://jamaica.westernunion.com
https://location.westernunion.com
https://m.westernunion.com
https://senegal.westernunion.com
https://sg.westernunion.com
Any host or verified to be owned by Western Union (domains/IP space/etc.)
Websitehttps://wuagentportal.westernunion.com
https://agentportal.westernunion.com
https://westernunionbank.com
https://ebanking.westernunionbank.com
https://transvision.westernunion.com
https://partnernet.westernunion.com
https://iwgo.westernunion.com
http://agenttraining.westernunion.com
https://paymentstatus.westernunion.com
https://foundation.westernunion.com
https://partners.westernunion.com
https://wucare.westernunion.com
https://secure.westernunion.com
https://corporate.westernunion.com
https://wuinsights.westernunion.com
https://remoteaccess.westernunion.com
https://secureauth.westernunion.com
mydesktop.wu.com
*.westernunion.*
*.wu.*
Ioshttps://apps.apple.com/us/app/western-union-transfer-money/id424716908
Androidhttps://play.google.com/store/apps/details?id=com.westernunion.android.mtapp&hl=en_US&gl=US
漏洞项目WHMCS Client Management Portal5000OtherResearcher owned WHMCS Instance
漏洞项目Wise (ex-TransferWise)4000Websitehttps://transferwise.com
*.transferwise.com
https://wise.com
*.wise.com
Ioshttps://apps.apple.com/us/app/wise-ex-transferwise/id612261027
Androidhttps://play.google.com/store/apps/details?id=com.transferwise.android&hl=en_US&gl=US
OtherAWS infrastructure and services in use by Wise (eg: S3 buckets)
https://github.com/transferwise/*
漏洞项目WOOX: Bug Bounty Program9000Apihttps://api.woox.io/
Websitehttps://woox.io/
Androidhttps://play.google.com/store/apps/details?id=network.woo.mobile&hl=en&gl=US&pli=1
Ioshttps://apps.apple.com/mt/app/woo-x-buy-crypto-btc/id1576648404
漏洞项目Worldpay20000WebsiteAny Worldpay asset is in scope
漏洞项目Wyze Bug Bounty1000Websitehttps://auth.wyze.com
https://my.wyze.com
Apihttps://api.wyzecam.com
HardwareWyze Cam V3
漏洞项目Xfinity Home & xFi5500Websitehttps://home.xfinity.com
Internet.xfinity.com
*-cvr-aws-*.sys.comcast.net
*signalservice.comcast.net
*.dh-commerce.com
*.ssr.ccp.xcal.tv
orc-xfi.com
*.xfiplatform.com
speedtest.xfinity.com
smartinet.xfinity.com
*.xfinityhome.com
Ioshttps://apps.apple.com/us/app/xfinity/id1178765645
Xfinity iOS mobile app
Androidhttps://play.google.com/store/apps/details?id=com.xfinity.digitalhome&hl=en_US&gl=US
Xfinity Android mobile app
Apixhomeapi-*.codebig2.net
xhomeapi-*.cloud.comcast.net
siorc.xfinity.com
gw.api.dh.comcast.com
https://csp-prod.codebig2.net
csp-pci.prod.codebig2.net
aiq-prod.codebig2.net
HardwareXfinity Home Hardware (items listed below in brief)
xFi Gateways (e.g., XB3, XB6, XB7)
xFi Pods
IotXfinity Home cameras
漏洞项目Yieldstreet7500Websitehttps://bc.yieldstreet.net
漏洞项目YNAB3000Websitestaging-app.bany.dev
漏洞项目Zola Managed Bug Bounty 2500Website█████████████████████
Ios████████████