//
Detail Updates Leaderboard
Description

The purpose of this website is to publish general information about bpost and its subsidiaries and their respective activities.

Bounties
Low
0.1 - 3.9
Medium
4.0 - 6.9
High
7.0 - 8.9
Critical
9.0 - 9.4
Exceptional
9.5 - 10.0
Tier 2
0
100
250
1,000
1,500
Tier 2
Up to €1,500
Rules of engagement
Required
Not applicable
max. 5 requests /sec
Not applicable

Cloud services

  • For that part of our services that are hosted on the cloud , there's a limitiation on which cloud services you can test without additional approval. Check the respective services and reassure you're not violation their policies. eg Amazon: The most up to date info is available on https://aws.amazon.com/security/penetration-testing/

Guidelines

  • It’s forbidden to use automatic scanners - be creative and do it yourself! We cannot accept any submissions found by using automatic scanners. Scanners also won't improve your skills, and can cause a high server load (we'd like to put our time in thanking researchers rather than blocking their IP's :-))
  • Do NOT discuss bugs. You can send us a video as proof of concept, but remember to change its privacy settings to private

Reporting Guidelines

  • Provide detailed but to-the point reproduction steps
  • Include a clear attack scenario. How will this affect us exactly?
  • Remember: quality over quantity!
Domains
tier
type
imove.bpost.cloud
Tier 2
URL

Coorporate application :
Make your reservation to save a spot at the office

*.acbpost.be

No bounty
Wildcard

*.bpost.be

No bounty
Wildcard

*.bpost.cloud

No bounty
Wildcard

*.landmarkglobal-group.com

No bounty
Wildcard

*.stbpost.be

No bounty
Wildcard
be.bpost.mobilecard
No bounty
Android

With Mobile Postcard you can send real personalized postcards based on photos and videos on your smartphone or tablet. We print them for you and ship them anywhere in the world.

be.bpost.mybpost
No bounty
Android

Track, receive, send. With the My bpost app you can arrange all your parcels in 1 app.

bpost Parcel Lockers

Device

More info about these lockers on https://www.bpost.be/en/parcel-locker

Whe have parcel lockers with screen and screenless.
You need the mybpost app to open a screenless locker.

Severity assessment

Currently we don't give a reward. You could be elected though for a bonus.

All aboard!
Please log in or sign up on the platform

For obvious reasons we can only allow submissions or applications for our program with a valid Intigriti account.

It will only take 2 minutes to create a new one or even less to log in with an existing account, so don't hesitate and let's get started. We would be thrilled to have you as part of our community.