Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

qinetiq

HackerOneView on HackerOne

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (30)

Asset	Category	Bounty	Quick Links
*.airaffairs.com.au	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.naimuri.com	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.qinetiq.ca	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.qinetiq.cloud	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.qinetiq.co.uk	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.qinetiq.com	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.qinetiq.com.au	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.us.qinetiq.com	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
128.98.0.0/16	CIDR	No	Shodan Censys BGP HE
148.252.225.26	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
185.76.92.0/24	CIDR	No	Shodan Censys BGP HE
185.76.95.0/24	CIDR	No	Shodan Censys BGP HE
192.102.214.0/24	CIDR	No	Shodan Censys BGP HE
192.150.204.0/24	CIDR	No	Shodan Censys BGP HE
194.61.176.0/20	CIDR	No	Shodan Censys BGP HE
209.91.67.138/31	CIDR	No	Shodan Censys BGP HE
209.91.67.140/31	CIDR	No	Shodan Censys BGP HE
209.91.67.142/32	CIDR	No	Shodan Censys BGP HE
85.159.168.0/22	CIDR	No	Shodan Censys BGP HE
85.159.172.0/24	CIDR	No	Shodan Censys BGP HE
85.159.173.0/24	CIDR	No	Shodan Censys BGP HE
85.159.174.0/23	CIDR	No	Shodan Censys BGP HE
Security vulnerabilities found in any digital assets owned, operated, or controlled by QinetiQ, or by its publicly listed subsidiaries, are considered in scope.	OTHER	No	-
airaffairs.com.au	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
offline.qinetiq.co.uk	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
qinetiq.com.au	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
www.naimuri.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
www.ncsiss.org.uk	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
www.qinetiq.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
www.t3e.uk	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa

Out-of-Scope Assets (1)

Asset	Category	Bounty
accessibility.qinetiq.com	URL	No