Vulnerability Disclosure Program
Working together to keep our users safe
Program Scope
What we want to know about and what's out of bounds
In Scope
-
Web Applications
All *.notsecure.in domains
-
Bypasser
Executable
-
API of Bypasser
https://github.com/NotSecure-IN/bypasser
Out of Scope
-
DDOS
External services we integrate with
-
Clickjacking
Office locations and facilities
Reporting Process
How to responsibly disclose vulnerabilities to us
1
Discovery
Identify and document the vulnerability with clear reproduction steps
2
Submission
Email details to support@notsecure.in
3
Response
We'll acknowledge receipt within 3 working Days
4
Resolution
We'll work to remediate and keep you updated
Security Researchers
We appreciate these contributors who helped make our systems safer
Subhadeep Pramanik
Medium Vulnerability