To start December with a bang, all bounty payouts are increased by 10% . Will you find a vulnerability in our systems?

15629 domains & individual IP addresses. That's how many assets we have in our domain scope as of today. With such a huge exposure, it should be easier to find vulnerabilities compared to a program with just a few domains, no?

Need more encouragement? We hear you: All bounties are increased by 10% , with the highest bounty now exceeding 2000 € !

As always, make sure you read our rules of engagement (max 5 req/s (more = ban from our program), mandatory User Agent & e-mail address, ...) before starting your investigation. Before submitting a report, check the domain scope for any documented known issues and out-of-scope wildcard domains.

Today's Halloween, and we want you to give us a good scare by finding & reporting security issues. Need incentive? We just increased bounties for all High/Critical severity submissions by 10%!

We increased our bounties for all High/Critical/Exceptional severity vulnerabilities yet again by 10% . Interested yet?

Additionally, we would like to draw your attention to https://geniecore.dstny.fr/ (Tier 2): until 25-10-2024 12:00 UTC all accepted and unique submissions will get a 20% bonus on top!

We just increased our bounties for all High/Critical/Exceptional severity vulnerabilities by 10% . Can you find a security issue someone hasn't discovered yet?

As always, make sure you read our rules of engagement (max 5 req/s (more = ban from our program), mandatory User Agent & e-mail address, ...) before starting your investigation. Before submitting a report, check the domain scope for any documented known issues.

Hi,

it's been a while since we last added domains to the scope, but today is that day! 300 domains have been added, check them out.

Make sure you read our rules of engagement (max 5 req/s (more = ban from our program), mandatory User Agent & e-mail address, ...) before starting your investigation. Before submitting a report, check the domain scope for any documented known issues.

Good luck,

Dstny Security

We just increased our bounties by 5% for Tier 1 domains, and 10% for Tier 2 domains, meaning you can earn up to 1510 € !

As always, make sure you read our rules of engagement (max 5 req/s (more = ban from our program), mandatory User Agent & e-mail address, ...) before starting your investigation. Before submitting a report, check the domain scope for any documented known issues.

We just added 250+ IPs and subnets, as well as 2 mobile & desktop applications to our domain scope. Check our program details for more information.

As always, make sure you read our rules of engagement (max 5 req/s (more = ban from our program), mandatory User Agent & e-mail address, ...) before starting your investigation. Before submitting a report, check the domain scope for any documented known issues.

Good luck,

Dstny Security

Today we're adding our last batch of wildcard domains:

• *.faqbot.co
• *.faqbot.com
• *.myparis.nl
• *.office-essential.nl
• *.openip-cs.net (Out-of-scope: *.updated.openip-cs.net)
• *.parisxp.com
• *.paris-xp.com
• *.publicanda.nl

After this, the Dstny program will open up to all Intigriti registered researchers.

As always, make sure you read our rules of engagement (max req/s, mandatory User Agent & e-mail address, ...) before starting your investigation. Before submitting a report, check the domain scope for any documented known issues.

Good luck,

Dstny Security

We've almost added all our domains in scope: A few more additions in the coming weeks and then everything will be in scope!

Here's the latest batch:

• *.mottovoip.nl (Out-of-scope: vs664.mottovoip.nl)
• *.office-essential.com
• *.ulysse.be
• *.voicecloud.se
• *.voicecloud.solutions
• *.voips.nl

As always, make sure you read our rules of engagement (max req/s, mandatory User Agent & e-mail address, ...) before starting your investigation. Before submitting a report, check the domain scope for any documented known issues.

Dstny Security