Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

callsign

HackerOneView on HackerOne

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (5)

Asset	Category	Bounty	Quick Links
*.s02.callsign.com	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
app.s02.callsign.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
b2b.s02.callsign.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
com.callsign.app.android	ANDROID	No	Play Store APKPure APKMirror
southfields-v2.s02.t00-csglobal.a2develop.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa

Out-of-Scope Assets (7)

Asset	Category	Bounty
connector.callsign.com	URL	No
dashboard.callsign.com	URL	No
pathway.callsign.com	URL	No
portal.callsign.com	URL	No
programs.callsign.com	URL	No
support.callsign.com	URL	No
www.callsign.com	URL	No

Scope Changes (36)

Feb 25, 2026

Change	Asset	Category	Scope	Time
Added	app.s02.callsign.com	URL	In Scope	19:12
Added	*.s02.callsign.com	WILDCARD	In Scope	19:12
Added	b2b.s02.callsign.com	URL	In Scope	19:12
Added	southfields-v2.s02.t00-csglobal.a2develop.com	URL	In Scope	19:12
Added	dashboard.callsign.com	URL	Out of Scope	19:12
Added	portal.callsign.com	URL	Out of Scope	19:12
Added	www.callsign.com	URL	Out of Scope	19:12
Added	pathway.callsign.com	URL	Out of Scope	19:12
Added	com.callsign.app.android	ANDROID	In Scope	19:12
Added	connector.callsign.com	URL	Out of Scope	19:12
Added	programs.callsign.com	URL	Out of Scope	19:12
Added	support.callsign.com	URL	Out of Scope	19:12

Feb 22, 2026

Change	Asset	Category	Scope	Time
Added	support.callsign.com	URL	Out of Scope	00:43
Added	b2b.s02.callsign.com	URL	In Scope	00:43
Added	southfields-v2.s02.t00-csglobal.a2develop.com	URL	In Scope	00:43
Added	connector.callsign.com	URL	Out of Scope	00:43
Added	www.callsign.com	URL	Out of Scope	00:43
Added	app.s02.callsign.com	URL	In Scope	00:43
Added	*.s02.callsign.com	WILDCARD	In Scope	00:43
Added	com.callsign.app.android	ANDROID	In Scope	00:43
Added	dashboard.callsign.com	URL	Out of Scope	00:43
Added	portal.callsign.com	URL	Out of Scope	00:43
Added	programs.callsign.com	URL	Out of Scope	00:43
Added	pathway.callsign.com	URL	Out of Scope	00:43

Feb 21, 2026

Change	Asset	Category	Scope	Time
Added	app.s02.callsign.com	URL	In Scope	19:12
Added	*.s02.callsign.com	WILDCARD	In Scope	19:12
Added	b2b.s02.callsign.com	URL	In Scope	19:12
Added	southfields-v2.s02.t00-csglobal.a2develop.com	URL	In Scope	19:12
Added	com.callsign.app.android	ANDROID	In Scope	19:12
Added	dashboard.callsign.com	URL	Out of Scope	19:12
Added	connector.callsign.com	URL	Out of Scope	19:12
Added	portal.callsign.com	URL	Out of Scope	19:12
Added	www.callsign.com	URL	Out of Scope	19:12
Added	programs.callsign.com	URL	Out of Scope	19:12
Added	pathway.callsign.com	URL	Out of Scope	19:12
Added	support.callsign.com	URL	Out of Scope	19:12