deriv
18
In Scope
11
Out of Scope
In-Scope Assets (18)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| *.deriv.cloud | WILDCARD | Yes | ||
| *.deriv.com | WILDCARD | Yes | ||
| *.derivws.com | WILDCARD | Yes | ||
| academy.deriv.com | URL | No | ||
| api.deriv.com | URL | Yes | ||
| app.deriv.com | URL | Yes | ||
| cashier.deriv.com | URL | Yes | ||
| ct.deriv.com | URL | No | ||
| deriv.partners | URL | No | ||
| derivws.com | URL | Yes | ||
| dx-demo.deriv.com | URL | No | ||
| dx.deriv.com | URL | No | ||
| github.com/binary-com | CODE | Yes | - | |
| github.com/deriv-com | OTHER | Yes | - | |
| oauth.deriv.com | URL | Yes | ||
| partners.deriv.com | URL | No | ||
| secure-dfadmin.deriv.com | URL | Yes | ||
| smarttrader.deriv.com | URL | Yes |
Out-of-Scope Assets (11)
| Asset | Category | Bounty | |
|---|---|---|---|
| *.api-core.deriv.com | WILDCARD | No | |
| *.home.deriv.com | WILDCARD | No | |
| Any 3rd party managed domain | OTHER | No | |
| besquare.deriv.com | URL | No | |
| community.deriv.com | URL | No | |
| deriv.ae | URL | No | |
| deriv.slack.com | URL | No | |
| help.deriv.com | URL | No | |
| https://deriv.atlassian.net/servicedesk/customer/user/signup | URL | No | |
| trade.mql5.com | URL | No | |
| tradingview.deriv.com | URL | No |
Scope Changes (76)
Feb 25, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | app.deriv.com | URL | In Scope | 19:09 |
| Added | cashier.deriv.com | URL | In Scope | 19:09 |
| Added | secure-dfadmin.deriv.com | URL | In Scope | 19:09 |
| Added | deriv.ae | URL | Out of Scope | 19:09 |
| Added | *.home.deriv.com | WILDCARD | Out of Scope | 19:09 |
| Added | *.deriv.cloud | WILDCARD | In Scope | 19:09 |
| Added | github.com/binary-com | CODE | In Scope | 19:09 |
| Added | derivws.com | URL | In Scope | 19:09 |
| Added | ct.deriv.com | URL | In Scope | 19:09 |
| Added | trade.mql5.com | URL | Out of Scope | 19:09 |
| Added | *.api-core.deriv.com | WILDCARD | Out of Scope | 19:09 |
| Added | *.deriv.com | WILDCARD | In Scope | 19:09 |
| Added | smarttrader.deriv.com | URL | In Scope | 19:09 |
| Added | github.com/deriv-com | OTHER | In Scope | 19:09 |
| Added | deriv.partners | URL | In Scope | 19:09 |
| Added | deriv.slack.com | URL | Out of Scope | 19:09 |
| Added | help.deriv.com | URL | Out of Scope | 19:09 |
| Added | tradingview.deriv.com | URL | Out of Scope | 19:09 |
| Added | community.deriv.com | URL | Out of Scope | 19:09 |
| Added | https://deriv.atlassian.net/servicedesk/customer/user/signup | URL | Out of Scope | 19:09 |
| Added | api.deriv.com | URL | In Scope | 19:09 |
| Added | dx.deriv.com | URL | In Scope | 19:09 |
| Added | besquare.deriv.com | URL | Out of Scope | 19:09 |
| Added | oauth.deriv.com | URL | In Scope | 19:09 |
| Added | *.derivws.com | WILDCARD | In Scope | 19:09 |
| Added | academy.deriv.com | URL | In Scope | 19:09 |
| Added | dx-demo.deriv.com | URL | In Scope | 19:09 |
| Added | partners.deriv.com | URL | In Scope | 19:09 |
| Added | any 3rd party managed domain | OTHER | Out of Scope | 19:09 |
Feb 22, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | trade.mql5.com | URL | Out of Scope | 00:40 |
| Added | deriv.ae | URL | Out of Scope | 00:40 |
| Added | help.deriv.com | URL | Out of Scope | 00:40 |
| Added | smarttrader.deriv.com | URL | In Scope | 00:40 |
| Added | secure-dfadmin.deriv.com | URL | In Scope | 00:40 |
| Added | academy.deriv.com | URL | In Scope | 00:40 |
| Added | dx.deriv.com | URL | In Scope | 00:40 |
| Added | partners.deriv.com | URL | In Scope | 00:40 |
| Added | *.api-core.deriv.com | WILDCARD | Out of Scope | 00:40 |
| Added | github.com/deriv-com | OTHER | In Scope | 00:40 |
| Added | besquare.deriv.com | URL | Out of Scope | 00:40 |
| Added | https://deriv.atlassian.net/servicedesk/customer/user/signup | URL | Out of Scope | 00:40 |
| Added | cashier.deriv.com | URL | In Scope | 00:40 |
| Added | *.derivws.com | WILDCARD | In Scope | 00:40 |
| Added | ct.deriv.com | URL | In Scope | 00:40 |
| Added | tradingview.deriv.com | URL | Out of Scope | 00:40 |
| Added | app.deriv.com | URL | In Scope | 00:40 |
| Added | *.deriv.cloud | WILDCARD | In Scope | 00:40 |
| Added | oauth.deriv.com | URL | In Scope | 00:40 |
| Added | deriv.partners | URL | In Scope | 00:40 |
| Added | *.home.deriv.com | WILDCARD | Out of Scope | 00:40 |
| Added | derivws.com | URL | In Scope | 00:40 |
| Added | deriv.slack.com | URL | Out of Scope | 00:40 |
| Added | any 3rd party managed domain | OTHER | Out of Scope | 00:40 |
| Added | *.deriv.com | WILDCARD | In Scope | 00:40 |
| Added | api.deriv.com | URL | In Scope | 00:40 |
| Added | github.com/binary-com | OTHER | In Scope | 00:40 |
| Added | dx-demo.deriv.com | URL | In Scope | 00:40 |
| Added | community.deriv.com | URL | Out of Scope | 00:40 |
Feb 21, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Removed | *.deriv.com | WILDCARD | In Scope | 21:38 |
| Removed | app.deriv.com | URL | In Scope | 21:38 |
| Removed | smarttrader.deriv.com | URL | In Scope | 21:38 |
| Removed | cashier.deriv.com | URL | In Scope | 21:38 |
| Removed | *.deriv.cloud | WILDCARD | In Scope | 21:38 |
| Removed | oauth.deriv.com | URL | In Scope | 21:38 |
| Removed | api.deriv.com | URL | In Scope | 21:38 |
| Removed | github.com/deriv-com | OTHER | In Scope | 21:38 |
| Removed | github.com/binary-com | CODE | In Scope | 21:38 |
| Removed | derivws.com | URL | In Scope | 21:38 |
| Removed | *.derivws.com | WILDCARD | In Scope | 21:38 |
| Removed | secure-dfadmin.deriv.com | URL | In Scope | 21:38 |
| Added | academy.deriv.com | URL | In Scope | 19:11 |
| Added | ct.deriv.com | URL | In Scope | 19:11 |
| Added | dx-demo.deriv.com | URL | In Scope | 19:11 |
| Added | dx.deriv.com | URL | In Scope | 19:11 |
| Added | deriv.partners | URL | In Scope | 19:11 |
| Added | partners.deriv.com | URL | In Scope | 19:11 |