Cobalt bug bounty programCobalt bug bounty programCobalt bug bounty program

Square thumb cobalt 29d6c232a4f2057ee39c984cecff4b948bf86900d4877b425acb303d4ef9f5c4

Cobalt

Connected Intelligent Security

#CC1

Targets in scope

Description

The objective of this program is to identify vulnerabilities on the Cobalt platform. Vulnerabilities of special interest include:

  • Unauthorized access to vulnerabilities.
  • Access to admin functionalities.
  • Information leaks.

Please use Dummy Program One for testing on Cobalt. You can create test vulnerabilities on the dummy program as part of your research. Please target your own account when investigating a vulnerability.

Out of scope

  • Missing HttpOnly flags, Secure flag, Browser Cache vulnerabilities, Clickjacking.
  • Social engineering, DOS/DDOS and usability issues.
  • Vulns related to 3rd-party software (Javascript plugins etc.) are not in scope.

Platform

  • Ruby on Rails, Cloudflare, Heroku

The terms for running and engaging in a security program always apply.

Specs

  • Rewards

    High: $1,500
    Medium: $300
    Low: $100

  • Disclosure Rules

    Responsible disclosure

  • Access Level

    Open for all

  • Response Time / Rate

    2 - 7 days / 99%

  • Researcher Feedback

    Average of all evaluations

Response Time per week
Last 6 months weekly

Latest announcements

Square thumb cobalt 29d6c232a4f2057ee39c984cecff4b948bf86900d4877b425acb303d4ef9f5c4
Cobalt posted an update

We changed our name to Cobalt.io!

Square thumb cobalt 29d6c232a4f2057ee39c984cecff4b948bf86900d4877b425acb303d4ef9f5c4
Cobalt posted an update

Thanks for the submissions!

Earlier this week

christian rewarded #CC1_840 by moxie with a bounty and (1.9 Rep)
christian closed a report from ru94mb
christian closed a report from toor
Small thumb jamesclyde90
JamesClyde90 submitted a report
christian rewarded #CC1_841 by JamesClyde90 with a bounty and (2.4 Rep)
Small thumb 1731e809 157a 459d 9e9b ff213acf5ec7
toor submitted a report
Small thumb ru94mb1 369c984d7165099b3d6086f0be09e6522dc1f8c1a56cf914c6f9581c151f4cd2
ru94mb submitted a report
Gravatar
Jagdish submitted a report
christian closed a report from toor
Gravatar
moxie submitted a report

Earlier this month

Small thumb jamesclyde90
JamesClyde90 submitted a report
Gravatar
moxie submitted a report
christian rewarded #CC1_831 by djamel-ghorab with a bounty and (6.5 Rep)
christian rewarded #CC1_820 by lccunha with a bounty and (2.4 Rep)
Small thumb 1731e809 157a 459d 9e9b ff213acf5ec7
toor submitted a report
christian rewarded #CC1_832 by djamel-ghorab with a bounty and (6.5 Rep)
christian closed a report from rootdz
Gravatar
rootdz submitted a report
christian closed a report from djamel-ghorab
christian closed a report from srkgupta