Anon's Lab. | From Recon to Remediation - We Cover It All!
// VULNERABILITY_ADVISORY_PROTOCOL

Responsible_Disclosure

Anon's Lab. values the security community. If you have discovered a security vulnerability, we appreciate your help in disclosing it to us in a responsible manner.

Our_Commitment

We promise not to initiate legal action against researchers who penetrate our systems provided they adhere to the following guidelines. We call this our Safe Harbor agreement.

SAFE_HARBOR: ACTIVE

STEP_01 Reporting_Guidelines

RULE_01

Provide a detailed summary of the vulnerability, including target, steps to reproduce, and a proof-of-concept (PoC).

RULE_02

Give us a reasonable time (minimum 90 days) to investigate and mitigate the issue before making any information public.

RULE_03

Do not access or modify data that does not belong to you. Do not perform Denial of Service (DoS) attacks.

STEP_02 Scope_Definition

IN_SCOPE
  • • anonslab.com and official subdomains
  • • Infrastructure owned and operated by Anon's Lab.
  • • Public-facing services explicitly controlled by Anon's Lab.
OUT_OF_SCOPE
  • • Third-party services and client systems
  • • Social engineering or physical testing
  • • Automated scanning causing service disruption
$$$

Recognition_&_Bounties

Anon's Lab. currently operates on a Hall of Fame basis for our own infrastructure. However, for critical findings, we may offer:

  • >> Financial Rewards (Critical Only)
  • >> Swag & Merch
  • >> Letter of Appreciation
  • >> Public Acknowledgement

How_To_Submit

Encrypted Communication

security@anonslab.com

Submit_Report_Now