Bug Bounty Programs

True Vikings never entered the battlefield without their helmets. And we believe a secure environment, just like free access to open communication, is a worldwide human right. But even the best Viking Drakkars may sometimes encounter vulnerabilities. Brave sailors who discover leaks should be honored - not executed. Together with you and our broad community, we want to create a secure and safe environment for everyone.

Fing device recognition is the foundation of digital products. Just from the MAC address, Fing can recognise all wireless and wired devices in home, office or enterprise networks by type, make, model and OS (name and version). Fing device intelligence and knowledge give you full visibility of your connected environment. The free Fing App identifies connected devices, troubleshoots network and device issues, detects network intruders and runs Wi-Fi and internet speed tests anywhere.

Vlerick Business School is an international business school at the heart of Europe. We offer fully-accredited, world class education programs combining a healthy mix of theoretical knowledge and practical insight.

Personio is Europe's leading HR Software for SMEs - your one-stop HR solution with automated processes, seamless integrations, and data-driven insights. Our Security Team knows that a solid Bounty Program helps build customer trust in our platform. So we are looking forward to working with you to help hold our platform up to the highest of standards.

SimScale is a browser-based, online engineering simulation platform that provides powerful modeling and simulation capabilities. With in-browser 3D visualization, scalable on-demand computing capacity, the SimScale platform enables a new way of using simulation technology. SimScale integrates a broad variety of simulation software tools for structural mechanics, fluid dynamics, and thermodynamics. The SimScale team and our partners are constantly expanding the features of the platform.

Moralis is a blockchain technology platform providing developers with backend infrastructure for building and scaling decentralized applications (dapps). This page is a safe way for you to communicate found bugs in a responsible way. All contributions are highly appreciated.

Want to try a new technique or methodology on private bug bounty programs? Submit your research, get invited to private programs, and start collecting bounties.

"Digitaal Vlaanderen" is the IT and digital transformation departement within the Flanders’ governmental IT. Positioned as the digital gateway and data broker between all Flemish government entities, we want to be at the top of our game. Our security ought to be too. For this program we are focusing at first instance on some of our main assets.

HERE Technologies, is a global company that’s rooted in the evolution of digital maps and location technology. We offer a location data and technology platform, that moves people, businesses and cities forward by harnessing the power of location. The HERE platform caters to a variety of tasks related to bringing your own data, map, service, logic and algorithms for location enrichment.

At PDQ our mission is to make device management simple, secure, and pretty damn quick. We know how important the security of our products is. We're a bunch of former sysadmins ourselves. Every decision we make revolves around ensuring our products are safe to use for managing your devices, which is why we have a bug bounty program. It’s a true win-win: We improve the security of our products, and you reap the rewards.

BMC is number one in connecting professionals

The Swiss Federal Railways (SBB) operates one of the most complex and digitally integrated transportation systems in Europe. Our infrastructure spans mission-critical systems including real-time scheduling, ticketing, passenger and freight information. These systems are supported by a diverse set of platforms, APIs, mobile and web applications, and cloud-native services. To ensure the resilience and integrity of our digital ecosystem, we are operating a Bug Bounty program aimed at identifying and mitigating security vulnerabilities before they can be exploited. We invite ethical hackers and security researchers to rigorously test our systems within a defined scope and under responsible disclosure guidelines. Program Objectives: Identify vulnerabilities that could compromise the confidentiality, integrity, or availability of SBB systems or customer data. Validate the robustness of authentication, authorization, and session management mechanisms. Detect insecure configurations, exposed services, or flawed implementations in APIs, web/mobile apps, and backend systems. Strengthen the security posture of our cloud infrastructure. Why Participate? Contribute to the security of critical swiss infrastructure Collaborate with a transparent and responsive security team Receive recognition and monetary rewards based on impact and severity

At KU Leuven, we are committed to maintaining high standards of security for our systems and user data. We value the research and expertise of security researchers and ethical hackers who help us identify potential vulnerabilities before they can be exploited. Therefore, we would like to invite you to help us in this effort. Our Responsible Disclosure Program allows working closely with security researchers to identify vulnerabilities. By participating in our program, you are helping us maintain the security and integrity of our systems, ensuring a safer experience for all. KU Leuven appreciates the effort and commitment of all contributors, as long as the vulnerability is within scope, is detected without intrusive testing, and follows the disclosure guidelines. Thank you for your contribution to our security! Note: We may award a bonus if we determine that a serious vulnerability has been discovered and the quality of the report meets our standards for thoroughness and clarity. Recent Bonus Awards: - 2022: €2000 - 2023: €2500

DataCamp’s mission is to democratize data skills for everyone. Companies and teams of every size use DataCamp to close their data skill gaps and make better data-driven decisions. Data science and analytics are rapidly shaping every aspect of our lives and our businesses. There is incredible power in data—but only if you know what to do with it. DataCamp teaches 1,600+ companies and 7 million individuals from 180+ countries the skills they need to work with data in the real world.

Lansweeper is an IT asset management software provider helping businesses better understand, manage and protect their IT devices and network. Lansweeper helps customers minimize risks and optimize their IT assets by providing actionable insight into their IT infrastructure at all times, offering trustworthy, valuable, and accurate insights about the state of users, devices, and software.

All life needs water. Both people, their company and their environment must at all times have water in the right quantity, of the right quality, at the right time. This water must be supplied within the safety of well-thought-out infrastructures for supply and discharge of water. Water-link wants to inspire everyone to fully tap into the strengths of water. Water-link is a Flemish public organisation that directly or indirecty provides drink water to more than 3 million people.

Intergamma is the biggest DIY retailer of The Netherlands and Belgium with three brands: GAMMA Nederland, GAMMA België, and KARWEI. We have almost 400 DIY stores and operate three eCommerce websites. Our strategy is to be the best omnichannel retailer of the Netherlands and Belgium. This means offline and online are converging, and eCommerce is a growth market. Therefore a secure platform is paramount. For more information on our organization please visit https://www.intergamma.nl/

Flemish Radio and Television Broadcasting Organization bugbounty program

HLN.be is the number one news site in Flanders. 24/7 news with a focus on current events, sports and entertainment. The editors know how to keep their finger on the pulse at all times: on average every 4 minutes a new article appears on the news site. Readers consume their news more and more fragmented through their social media, so it is important for HLN to stay top of mind with its own app.

The Cyber Security Coalition is a unique partnership between players from the public and private sector to join forces in the fight against cybercrime. We are bringing together the skills and expertise of members on a trust-based platform. A lot of information is publicly available on our website but there is also protected data not publicly viewable. We are a reference in security and it is obvious that our website should be secure! We are happy to have your help in finding any vulnerabilities!

Visma delivers software that simplifies and digitizes core business processes in the private and public sector. With presence across the entire Nordic region along with Benelux, Central and Eastern Europe, we are one of Europe’s leading software companies. We want to engage with responsible security researchers around the globe to further secure our services. No code is flawless and we believe that taking part in the Intigriti community can help us improve the security of our systems. Vulnerabilities in any other Visma service, product or web property outside this program's domain scope are not eligible for bounties and should be reported to the Visma Responsible Disclosure program instead, you can find a link to the program in the 'In scope' info box below.

Newpharma is the largest online pharmacy in Belgium. It was the first to dispense medicines over the internet without a prescription in Belgium. Newpharma also offers you a broad range of drugstore products: cosmetics, natural and well-being products and specialist products for babies, children or the elderly at low prices throughout the year. Important note: Please limit your automated tools to 1 request/sec. DDoS or brute force attacks are strictly forbidden!

InnoGames (www.innogames.com) is one of the leading German developers and publishers of mobile and browser games and a certified Great Place to Work®. The climate-neutral company based in Hamburg was founded in 2007 and is now part of Modern Times Group (MTG). Together with 350+ employees from over 40 nations, the company founders develop unique games that provide many years of fun for millions of players around the world. InnoGames is best known for Forge of Empires, Elvenar and Tribal Wars, but the company is continually expanding its now 10-game portfolio across platforms and genres. Most recently, InnoGames launched Heroes of History, a novel combination of city-building and hero-collection.

Sqills provides the leading inventory, reservation, and ticketing system for the bus and rail industry – S3 Passenger. At Sqills we are on a constant journey of innovation, discovery and global market leadership. Our corporate website provides general information about Sqills.