amazonvrp

HackerOneView on HackerOne
RawAI Enhanced
100
In Scope
10
Out of Scope

In-Scope Assets (100)

AssetCategoryBountyQuick Links
*.amazon.aeWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.caWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.clWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.cnWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.co.jpWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.co.ukWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.co.zaWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.comWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.com.auWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.com.beWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.com.brWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.com.coWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.com.mxWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.com.ngWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.com.trWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.deWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.egWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.esWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.frWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.inWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.itWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.nlWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.plWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.saWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.seWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
*.amazon.sgWILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
1057338687IOSYes-
1151746202IOSYes-
1265170914IOSYes-
1276296103IOSYes-
1454725763IOSYes-
1475021574IOSYes-
1478350915IOSYes-
1494755014IOSYes-
1498197033IOSYes-
1532153219IOSYes-
1552455423IOSYes-
1579372261IOSYes-
1592204907IOSYes-
1659883691IOSYes-
297606951IOSYes-
335187483IOSYes-
342576766IOSYes-
348712880IOSYes-
358861688IOSYes-
374254473IOSYes-
510855668IOSYes-
545519333IOSYes-
6444868926IOSYes-
6452192521IOSYes-
6471528064IOSYes-
6479334468IOSYes-
6560104638IOSYes-
794141485IOSYes-
988788863IOSYes-
Amazon Subsidiaries (Please only actively test explicitly stated scope)OTHERNo-
GenAI Apps under *.amazon.*AIYes-
Other Amazon Retail Assets (Please only actively test explicitly stated scope)OTHERNo-
Other Amazon Retail Mobile Apps (Please only actively test explicitly stated scope)OTHERNo-
Other Amazon Retail Sites (Please only actively test explicitly stated scope)OTHERNo-
amazon.speech.simANDROIDYes
Play Store
amazonpayinsurance.inURLYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
com.amazon.aba.applicationANDROIDYes
Play Store
com.amazon.amazonone.androidappANDROIDYes
Play Store
com.amazon.amazonvideo.livingroomANDROIDYes
Play Store
com.amazon.astroANDROIDYes
Play Store
com.amazon.avod.thirdpartyclientANDROIDYes
Play Store
com.amazon.enterprise.access.androidANDROIDYes
Play Store
com.amazon.firetv.recast.blaster.aospANDROIDYes
Play Store
com.amazon.flex.rabbitANDROIDYes
Play Store
com.amazon.helix.prodANDROIDYes
Play Store
com.amazon.ihm.candycaneANDROIDYes
Play Store
com.amazon.imdb.tv.mobile.appANDROIDYes
Play Store
com.amazon.kisan.appANDROIDYes
Play Store
com.amazon.mShop.android.business.shoppingANDROIDYes
Play Store
com.amazon.mShop.android.shoppingANDROIDYes
Play Store
com.amazon.minitv.android.appANDROIDYes
Play Store
com.amazon.mp3ANDROIDYes
Play Store
com.amazon.mp3.automotiveOSANDROIDYes
Play Store
com.amazon.music.tvANDROIDYes
Play Store
com.amazon.primenow.seller.androidANDROIDYes
Play Store
com.amazon.relayANDROIDYes
Play Store
com.amazon.sellerflexmobileANDROIDYes
Play Store
com.amazon.sellermobile.androidANDROIDYes
Play Store
com.amazon.sft.rangoli.seller.appANDROIDYes
Play Store
com.amazon.shopperpanel.android.mobile.appANDROIDYes
Play Store
com.amazon.swa.mobileappANDROIDYes
Play Store
com.amazon.tahoe.grownupsANDROIDYes
Play Store
com.amazon.technician.androidANDROIDYes
Play Store
com.amazon.vendormobile.androidANDROIDYes
Play Store
com.amazon.vendormobile.india.androidANDROIDYes
Play Store
com.amazon.warhol.androidANDROIDYes
Play Store
com.amazon.ziggy.androidANDROIDYes
Play Store
com.imdbtv.livingroomANDROIDYes
Play Store
com.localqueenANDROIDYes
Play Store
https://www.amazonpay.in/*OTHERYes-
in.amazon.mShop.android.business.shoppingANDROIDYes
Play Store
in.amazon.mShop.android.shoppingANDROIDYes
Play Store
primevideo.com/*WILDCARDYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
www.amazon.*URLYes
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
Out-of-Scope Assets (10)
AssetCategoryBounty
"Contact Us" FunctionalityOTHERNo
*.*a2z*.*OTHERNo
*.aws.*OTHERNo
*.devOTHERNo
AWS and AWS customer assets are strictly out of scopeOTHERNo
Amazon Web Services (AWS)OTHERNo
Anything considered a non-prod assetOTHERNo
Anything which redirects to AWSOTHERNo
amazongames.comURLNo
learning.logistics.amazon.comOTHERNo