Vigilant Technologies LogoVigilant Technologies
Security Researchers Welcome

Bug Bounty Program

Help us protect our users and earn rewards. Report security vulnerabilities responsibly and get rewarded up to €1,000 for critical findings.

Important Notice

Vigilant Technologies is a small, independent company. While we deeply value security research and are committed to rewarding valid vulnerability reports, we may not always have the resources to pay the full bounty amounts listed. We will always do our best to provide fair compensation for your contributions and will openly communicate about reward availability. Your understanding and support in helping us build a more secure product is greatly appreciated.

CRITICAL
Up to
€1,000
CVSS 9.0-10.0
HIGH
Up to
€500
CVSS 7.0-8.9
MEDIUM
Up to
€250
CVSS 4.0-6.9
LOW
Up to
€100
CVSS 0.1-3.9

Report a Vulnerability

Found a security issue? Submit a detailed report to our security team.

[email protected]

Hall of Fame

Join our list of recognized security researchers who helped improve our security.

Coming soon

Get Rewarded

Earn up to €1,000 for critical vulnerabilities. Payments via bank transfer or PayPal.

30-day processing

Program Scope

In Scope

  • vigilant-tech.io and all subdomains (*.vigilant-tech.io)
  • vigilant.ac and all subdomains (*.vigilant.ac)
  • Vigilant Technologies Anti-Cheat client and driver
  • Vigilant Technologies Anti-Cheat backend API
  • Vigilant Technologies dashboard and web applications
  • Any officially released Vigilant Technologies software

Out of Scope

  • Third-party services and applications
  • Social engineering or physical attacks
  • Denial of Service (DoS/DDoS) attacks
  • Spam or social engineering against users

Priority Vulnerabilities

Remote Code Execution (RCE)
SQL Injection
Authentication Bypass
Privilege Escalation
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
Server-Side Request Forgery (SSRF)
Information Disclosure
Anti-cheat Bypass Techniques
Kernel Driver Vulnerabilities

How to Submit a Report

Send a detailed report to our security team at [email protected]

Your report should include:

  • 1Detailed description of the vulnerability
  • 2Steps to reproduce the issue
  • 3Proof of concept (screenshots, videos, or code)
  • 4Potential impact and attack scenarios
  • 5Your name and contact information for reward payment

Disclosure Guidelines

To qualify for rewards and maintain good standing, please follow these guidelines:

  • Report the vulnerability privately before public disclosure
  • Allow us 90 days to address the issue
  • Don't exploit the vulnerability beyond demonstration
  • Don't access, modify, or delete others' data
  • Don't perform actions that could harm systems or users
  • Don't disclose the vulnerability until we issue a fix
  • Act in good faith and follow all applicable laws

Our Commitment

Fast Response

We respond within 2 business days

Transparent Updates

Keep you informed throughout the process

Public Recognition

Credit you in our Hall of Fame (optional)

Timely Payments

Process rewards within 30 days

Legal Protection

No legal action for good-faith research

Collaboration

Work with you to understand the issue

Ready to Help Secure Vigilant?

We appreciate the security research community and look forward to working with you to keep our users safe.