Triangle OS Bug Bounty Program

Help us improve Triangle OS security by finding and reporting vulnerabilities

Program Overview

The Triangle OS Bug Bounty Program rewards security researchers who help us identify and fix vulnerabilities in our products and services.

We believe in the value of ethical hacking and the important role the security community plays in keeping our users safe. By participating in our bug bounty program, you're helping us build a more secure platform for everyone.

Our program covers all Triangle OS products, including the Blockchain Browser, Wallet, Search API, and VPN services.

Rewards

Critical Vulnerabilities

Up to $10,000

High Severity Vulnerabilities

$2,500 - $5,000

Medium Severity Vulnerabilities

$500 - $2,000

Low Severity Vulnerabilities

$100 - $500

In Scope

Triangle OS Blockchain Browser
  • Web application (https://browser.triangleos.com)
  • API endpoints
  • Authentication mechanisms
  • Data processing
Triangle Wallet
  • Web wallet
  • Mobile applications (iOS and Android)
  • Browser extensions
  • Key management
Search API
  • API endpoints
  • Authentication
  • Rate limiting
  • Data validation
Triangle VPN
  • VPN clients (Windows, macOS, Linux, iOS, Android)
  • VPN server infrastructure
  • Connection protocols
  • Authentication mechanisms

Out of Scope

  • Social engineering attacks
  • Physical security attacks
  • DoS/DDoS attacks
  • Rate limiting issues
  • Third-party services not directly controlled by Triangle OS
  • Issues requiring physical access to a user's device
  • Self-XSS
  • Issues in third-party dependencies that are already known

Hall of Fame

Jane Smith
March 2023
12 vulnerabilities reported

Notable finding: Critical authentication bypass vulnerability

Alex Johnson
January 2023
8 vulnerabilities reported

Notable finding: XSS vulnerability in search functionality

Mohammed Al-Farsi
November 2022
15 vulnerabilities reported

Notable finding: API endpoint data exposure vulnerability

Sarah Chen
October 2022
6 vulnerabilities reported

Notable finding: Wallet private key storage vulnerability

Carlos Rodriguez
September 2022
9 vulnerabilities reported

Notable finding: CSRF vulnerability in user settings

Priya Patel
August 2022
11 vulnerabilities reported

Notable finding: VPN data leakage vulnerability

Ready to Start Hunting?

Join our bug bounty program today and help us make Triangle OS more secure while earning rewards.