We offer a reward for providing information about vulnerabilities in the BAS protection system. For information on how to gain access to the source code of a script, we are ready to pay $3000 in WMZ or BTC.
The information must be exhaustive and as detailed as possible.
The method must work for any script, not just one or two. If it works only for certain scripts (for example, very small ones), then this must be separately reported in the letter.
The latest version of BAS must be used.
It is assumed that you can run the script (you have a login and password).
A method involving brute force will be approved only if it can be performed in a short time.
Before receiving the funds, a demonstration must be performed — obtaining the source code of a script uploaded by us.
This information must by no means be public; it cannot be disclosed to third parties.
For contact, use the email [email protected]. In the first letter, write about your intention to report a vulnerability.
If you have any considerations regarding application security and you are an expert in this, you can also report it to the email.
$3000 (WMZ or BTC) for information on how to access a script's source code
Must be exhaustive, work for any script, use the latest BAS, include a demonstration; the information must stay confidential