//
Detail Updates Leaderboard
Description

SimScale enables engineering teams to access accurate and fast simulation, on their terms, without compromises. We make engineering simulation technically and economically accessible from everywhere, at any time, and at any scale, in the cloud. We deliver instant access to fluid, thermal, and structural simulation to over 300,000 users. With SimScale, engineering simulation has moved from a complex and cost-prohibitive desktop application to an inclusive, agile, cloud-native simulation platform.

Bounties
Low
0.1 - 3.9
Medium
4.0 - 6.9
High
7.0 - 8.9
Critical
9.0 - 9.4
Exceptional
9.5 - 10.0
Tier 2
250
750
2,000
4,000
6,000
Tier 2
€250 - €6,000
Tier 3
50
100
200
500
1,000
Tier 3
€50 - €1,000
Rules of engagement
Required
Not applicable
max. 2 requests /sec
Not applicable

By participating in this program, you agree to:

  • Respect the Community Code of Conduct
  • Respect the Intigriti Terms and Conditions
  • Respect the scope of the program
  • Not discuss or disclose vulnerability information without prior written consent (including PoC's on YouTube and Vimeo)

Infrastructure notes

  • We are hosting at AWS, so please take into account their penetration testing policy which you can find at https://aws.amazon.com/security/penetration-testing/
  • We integrate 3rd-party closed-source software. Please be aware that we won't be able to fix all bugs internally but depend on other vendors.
  • We provide compute resources, storage, and data transfer to our users. Please avoid excessive consumption of those resources.
  • Please avoid creation of too many public projects and forum posts, or delete them after testing.

Our promise to you:

  • We are happy to respond to any questions, please use the button in the right top corner for this.
  • We will respond to reports within 2-3 days.
Domains
tier
type

SimScale API

Tier 2
Other

API URL: https://api.simscale.com

The API doc is available at https://api.simscale.com.

API keys can be managed in the API keys page.

SimScale Platform

Tier 2
Other

The following areas and paths under domain https://www.simscale.com:

User registration and login

Paths: /signup/*, /signin/*, /onboarding/*
Examples:

Dashboard and user profile with API key management

Paths: /dashboard
Examples (login required):

Workbench including CAD mode and Post-Processor

Paths: /workbench/*
Examples (login required):

Public project library

Paths: /projects/*
Examples:

Related API endpoints

All API endpoints used by UIs listed above.
Paths: /api/*, /csm/*, /postprocessing/*

SimScale Forum

Other

Everything below https://www.simscale.com/forum/

The SimScale forum is based on the Open-Source software Discourse. Before you create a submission about the forum please consider to also validate your findings against the Discourse demo platform at https://try.discourse.org/.

Severity assessment

This program follows Intigriti's contextual CVSS standard.

FAQ

Where can we get credentials for the app?

You can self-register on the application but please don’t forget to use your @intigriti.me address.

Where can we get credentials for the API?

API keys can be managed in the API keys page.

All aboard!
Please log in or sign up on the platform

For obvious reasons we can only allow submissions or applications for our program with a valid Intigriti account.

It will only take 2 minutes to create a new one or even less to log in with an existing account, so don't hesitate and let's get started. We would be thrilled to have you as part of our community.