goldmansachs

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (46)

Asset	Category	Bounty	Quick Links
*.advisorsolutions.gs.com	OTHER	Yes	-
*.ayco.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.claritymoney.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.folioclient.com	OTHER	Yes	-
*.foliodigitalwealth.com	OTHER	Yes	-
*.foliofirst.com	OTHER	Yes	-
*.foliofn.com	OTHER	Yes	-
*.folioidentity.com	OTHER	Yes	-
*.folioinstitutional.com	OTHER	Yes	-
*.folioinvesting.com	OTHER	Yes	-
*.global-liquidity.gs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.goldman.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.goldmanpfm.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.goldmansachs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.gs-mosaic.gs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.gs-mosaic.qa.gs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.gs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.gs.de	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.gsam.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.gspublishing.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.gsselect.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.honestdollar.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.marcus.co.uk	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.marcus.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.nextcapital.com	OTHER	Yes	-
*.nnip.com	OTHER	Yes	-
*.qaglobal-liquidity.gs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.vennhypotheken.nl	OTHER	Yes	-
GS Select iOS app	IOS	Yes	-
api.foliofn.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
apigw.foliofn.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
com.gs.gsnow.external	IOS	Yes	-
com.gs.gstrader.external	IOS	Yes	-
com.gs.mobile.gsnow	ANDROID	Yes	Play Store APKPure APKMirror
com.gs.mobile.trader	ANDROID	Yes	Play Store APKPure APKMirror
com.gs.pfmg.wellness	ANDROID	Yes	Play Store APKPure APKMirror
com.gs.pwmdigital.external	IOS	Yes	-
com.gs.pwmdigital.external.android	ANDROID	Yes	Play Store APKPure APKMirror
com.marcus.android	ANDROID	Yes	Play Store APKPure APKMirror
com.marcus.android.uk	ANDROID	Yes	Play Store APKPure APKMirror
com.marcus.ios-uk	IOS	Yes	-
com.marcus.ios-us	IOS	Yes	-
developer.gs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
goldmansachsindices.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
marquee.gs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
research.gs.com	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa

Out-of-Scope Assets (19)

Asset	Category	Bounty
*.communicatie.vennhypotheken.nl	OTHER	No
*.events.gs.com	WILDCARD	No
*.overrules.vennhypotheken.nl	OTHER	No
*.rocaton.com,secure.rocaton.com	URL	No
*.scripts.vennhypotheken.nl	OTHER	No
18098.nextcapital.com	URL	No
3rd party hosted assets	OTHER	No
All .cn domains	OTHER	No
billpay.goldman.com	URL	No
deb.nextcapital.com	URL	No
email.nextcapital.com	URL	No
gsg-uk.goldman.com	URL	No
gsg.goldman.com	URL	No
gspf.goldman.com	URL	No
npm-new.nextcapital.com	URL	No
npm.nextcapital.com	URL	No
qa-billpay.goldman.com	URL	No
repo.nextcapital.com	URL	No
rubygems.nextcapital.com	URL	No

Scope Changes (189)

Mar 13, 2026

Change	Asset	Category	Scope	Time
Removed	www.fitvermogen.nl	URL	In Scope	16:39

Feb 25, 2026

Change	Asset	Category	Scope	Time
Added	com.marcus.android.uk	ANDROID	In Scope	19:09
Added	com.gs.mobile.gsnow	ANDROID	In Scope	19:09
Added	gsg.goldman.com	URL	Out of Scope	19:09
Added	18098.nextcapital.com	URL	Out of Scope	19:09
Added	*.global-liquidity.gs.com	WILDCARD	In Scope	19:09
Added	developer.gs.com	URL	In Scope	19:09
Added	*.gs-mosaic.qa.gs.com	WILDCARD	In Scope	19:09
Added	com.gs.gstrader.external	IOS	In Scope	19:09
Added	*.overrules.vennhypotheken.nl	WILDCARD	Out of Scope	19:09
Added	com.gs.pfmg.wellness	ANDROID	In Scope	19:09
Added	gsg-uk.goldman.com	URL	Out of Scope	19:09
Added	deb.nextcapital.com	URL	Out of Scope	19:09
Added	email.nextcapital.com	URL	Out of Scope	19:09
Added	*.gs-mosaic.gs.com	WILDCARD	In Scope	19:09
Added	com.marcus.ios-uk	IOS	In Scope	19:09
Added	com.marcus.android	ANDROID	In Scope	19:09
Added	com.gs.gsnow.external	IOS	In Scope	19:09
Added	*.rocaton.com,secure.rocaton.com	WILDCARD	Out of Scope	19:09
Added	*.goldmanpfm.com	WILDCARD	In Scope	19:09
Added	*.marcus.co.uk	WILDCARD	In Scope	19:09
Added	*.folioclient.com	WILDCARD	In Scope	19:09
Added	*.foliodigitalwealth.com	WILDCARD	In Scope	19:09
Added	*.foliofirst.com	WILDCARD	In Scope	19:09
Added	npm.nextcapital.com	URL	Out of Scope	19:09
Added	repo.nextcapital.com	URL	Out of Scope	19:09
Added	all .cn domains	OTHER	Out of Scope	19:09
Added	*.gsselect.com	WILDCARD	In Scope	19:09
Added	*.folioinvesting.com	WILDCARD	In Scope	19:09
Added	*.vennhypotheken.nl	WILDCARD	In Scope	19:09
Added	com.gs.pwmdigital.external.android	ANDROID	In Scope	19:09
Added	com.gs.mobile.trader	ANDROID	In Scope	19:09
Added	*.goldman.com	WILDCARD	In Scope	19:09
Added	*.communicatie.vennhypotheken.nl	WILDCARD	Out of Scope	19:09
Added	npm-new.nextcapital.com	URL	Out of Scope	19:09
Added	api.foliofn.com	URL	In Scope	19:09
Added	www.fitvermogen.nl	URL	In Scope	19:09
Added	billpay.goldman.com	URL	Out of Scope	19:09
Added	*.folioidentity.com	WILDCARD	In Scope	19:09
Added	rubygems.nextcapital.com	URL	Out of Scope	19:09
Added	*.events.gs.com	WILDCARD	Out of Scope	19:09
Added	qa-billpay.goldman.com	URL	Out of Scope	19:09
Added	goldmansachsindices.com	URL	In Scope	19:09
Added	research.gs.com	URL	In Scope	19:09
Added	*.gsam.com	WILDCARD	In Scope	19:09
Added	com.marcus.ios-us	IOS	In Scope	19:09
Added	apigw.foliofn.com	URL	In Scope	19:09
Added	*.gspublishing.com	WILDCARD	In Scope	19:09
Added	*.qaglobal-liquidity.gs.com	WILDCARD	In Scope	19:09
Added	com.gs.pwmdigital.external	IOS	In Scope	19:09
Added	*.ayco.com	WILDCARD	In Scope	19:09
Added	*.gs.com	WILDCARD	In Scope	19:09
Added	*.advisorsolutions.gs.com	WILDCARD	In Scope	19:09
Added	*.foliofn.com	WILDCARD	In Scope	19:09
Added	*.folioinstitutional.com	WILDCARD	In Scope	19:09
Added	*.nnip.com	WILDCARD	In Scope	19:09
Added	gs select ios app	IOS	In Scope	19:09
Added	*.nextcapital.com	WILDCARD	Out of Scope	19:09
Added	gspf.goldman.com	URL	Out of Scope	19:09
Added	*.scripts.vennhypotheken.nl	WILDCARD	Out of Scope	19:09
Added	*.marcus.com	WILDCARD	In Scope	19:09
Added	marquee.gs.com	URL	In Scope	19:09
Added	*.claritymoney.com	WILDCARD	In Scope	19:09
Added	3rd party hosted assets	OTHER	Out of Scope	19:09
Added	*.honestdollar.com	WILDCARD	In Scope	19:09
Added	*.gs.de	WILDCARD	In Scope	19:09
Added	*.gs.de	WILDCARD	In Scope	19:09
Added	*.gs.de	WILDCARD	In Scope	19:09
Added	*.gs.de	WILDCARD	In Scope	19:09
Added	*.gs.de	WILDCARD	In Scope	19:09
Added	*.goldmansachs.com	WILDCARD	In Scope	19:09

Feb 22, 2026

Change	Asset	Category	Scope	Time
Added	*.nextcapital.com	WILDCARD	In Scope	00:40
Added	com.gs.mobile.trader	ANDROID	In Scope	00:40
Added	18098.nextcapital.com	URL	Out of Scope	00:40
Added	*.qaglobal-liquidity.gs.com	WILDCARD	In Scope	00:40
Added	*.folioinvesting.com	WILDCARD	In Scope	00:40
Added	*.communicatie.vennhypotheken.nl	WILDCARD	Out of Scope	00:40
Added	*.folioclient.com	WILDCARD	In Scope	00:40
Added	*.folioidentity.com	WILDCARD	In Scope	00:40
Added	*.vennhypotheken.nl	WILDCARD	In Scope	00:40
Added	*.gs-mosaic.gs.com	WILDCARD	In Scope	00:40
Added	developer.gs.com	URL	In Scope	00:40
Added	com.gs.pwmdigital.external	IOS	In Scope	00:40
Added	*.goldmansachs.com	WILDCARD	In Scope	00:40
Added	*.goldman.com	WILDCARD	In Scope	00:40
Added	goldmansachsindices.com	URL	In Scope	00:40
Added	com.gs.pwmdigital.external.android	ANDROID	In Scope	00:40
Added	gspf.goldman.com	URL	Out of Scope	00:40
Added	*.marcus.co.uk	WILDCARD	In Scope	00:40
Added	*.gsselect.com	WILDCARD	In Scope	00:40
Added	*.foliodigitalwealth.com	WILDCARD	In Scope	00:40
Added	gsg-uk.goldman.com	URL	Out of Scope	00:40
Added	*.advisorsolutions.gs.com	WILDCARD	In Scope	00:40
Added	*.foliofirst.com	WILDCARD	In Scope	00:40
Added	com.gs.pfmg.wellness	ANDROID	In Scope	00:40
Added	com.gs.mobile.gsnow	ANDROID	In Scope	00:40
Added	*.rocaton.com,secure.rocaton.com	WILDCARD	Out of Scope	00:40
Added	*.rocaton.com,secure.rocaton.com	WILDCARD	Out of Scope	00:40
Added	*.gspublishing.com	WILDCARD	In Scope	00:40
Added	*.events.gs.com	WILDCARD	Out of Scope	00:40
Added	*.marcus.com	WILDCARD	In Scope	00:40
Added	gsg.goldman.com	URL	Out of Scope	00:40
Added	*.overrules.vennhypotheken.nl	WILDCARD	Out of Scope	00:40
Added	deb.nextcapital.com	URL	Out of Scope	00:40
Added	rubygems.nextcapital.com	URL	Out of Scope	00:40
Added	3rd party hosted assets	OTHER	Out of Scope	00:40
Added	*.honestdollar.com	WILDCARD	In Scope	00:40
Added	gs select ios app	IOS	In Scope	00:40
Added	*.gs.de	WILDCARD	In Scope	00:40
Added	*.gs.de	WILDCARD	In Scope	00:40
Added	*.gs.de	WILDCARD	In Scope	00:40
Added	*.gs.de	WILDCARD	In Scope	00:40
Added	*.gs.de	WILDCARD	In Scope	00:40
Added	npm-new.nextcapital.com	URL	Out of Scope	00:40
Added	npm.nextcapital.com	URL	Out of Scope	00:40
Added	qa-billpay.goldman.com	URL	Out of Scope	00:40
Added	*.gsam.com	WILDCARD	In Scope	00:40
Added	com.gs.gstrader.external	IOS	In Scope	00:40
Added	com.gs.gsnow.external	IOS	In Scope	00:40
Added	*.claritymoney.com	WILDCARD	In Scope	00:40
Added	com.marcus.android	ANDROID	In Scope	00:40
Added	*.scripts.vennhypotheken.nl	WILDCARD	Out of Scope	00:40
Added	*.global-liquidity.gs.com	WILDCARD	In Scope	00:40
Added	*.gs.com	WILDCARD	In Scope	00:40
Added	www.fitvermogen.nl	URL	In Scope	00:40
Added	all .cn domains	OTHER	Out of Scope	00:40
Added	*.foliofn.com	WILDCARD	In Scope	00:40
Added	com.marcus.ios-us	IOS	In Scope	00:40
Added	*.ayco.com	WILDCARD	In Scope	00:40
Added	email.nextcapital.com	URL	Out of Scope	00:40
Added	repo.nextcapital.com	URL	Out of Scope	00:40
Added	billpay.goldman.com	URL	Out of Scope	00:40
Added	research.gs.com	URL	In Scope	00:40
Added	apigw.foliofn.com	URL	In Scope	00:40
Added	*.goldmanpfm.com	WILDCARD	In Scope	00:40
Added	api.foliofn.com	URL	In Scope	00:40
Added	*.folioinstitutional.com	WILDCARD	In Scope	00:40
Added	com.marcus.ios-uk	IOS	In Scope	00:40
Added	*.gs-mosaic.qa.gs.com	WILDCARD	In Scope	00:40
Added	marquee.gs.com	URL	In Scope	00:40
Added	*.nnip.com	WILDCARD	In Scope	00:40
Added	com.marcus.android.uk	ANDROID	In Scope	00:40

Feb 21, 2026

Change	Asset	Category	Scope	Time
Removed	*.marcus.com	URL	In Scope	21:38
Removed	*.honestdollar.com	URL	In Scope	21:38
Removed	*.goldmanpfm.com	URL	In Scope	21:38
Removed	*.marcus.co.uk	URL	In Scope	21:38
Removed	research.gs.com	URL	In Scope	21:38
Removed	*.gsam.com	URL	In Scope	21:38
Removed	*.gsselect.com	URL	In Scope	21:38
Removed	*.gs-mosaic.qa.gs.com	URL	In Scope	21:38
Removed	*.gs-mosaic.gs.com	URL	In Scope	21:38
Removed	*.qaglobal-liquidity.gs.com	URL	In Scope	21:38
Removed	*.global-liquidity.gs.com	URL	In Scope	21:38
Removed	developer.gs.com	URL	In Scope	21:38
Removed	goldmansachsindices.com	URL	In Scope	21:38
Removed	marquee.gs.com	URL	In Scope	21:38
Removed	apigw.foliofn.com	URL	In Scope	21:38
Removed	api.foliofn.com	URL	In Scope	21:38
Removed	*.advisorsolutions.gs.com	OTHER	In Scope	21:38
Removed	*.folioclient.com	OTHER	In Scope	21:38
Removed	*.foliodigitalwealth.com	OTHER	In Scope	21:38
Removed	*.foliofirst.com	OTHER	In Scope	21:38
Removed	*.foliofn.com	OTHER	In Scope	21:38
Removed	*.folioidentity.com	OTHER	In Scope	21:38
Removed	*.folioinstitutional.com	OTHER	In Scope	21:38
Removed	*.folioinvesting.com	OTHER	In Scope	21:38
Removed	*.nnip.com	OTHER	In Scope	21:38
Removed	*.vennhypotheken.nl	OTHER	In Scope	21:38
Removed	com.marcus.ios-us	IOS	In Scope	21:38
Removed	com.marcus.ios-uk	IOS	In Scope	21:38
Removed	com.marcus.android.uk	ANDROID	In Scope	21:38
Removed	com.marcus.android	ANDROID	In Scope	21:38
Removed	com.gs.pwmdigital.external.android	ANDROID	In Scope	21:38
Removed	com.gs.pwmdigital.external	IOS	In Scope	21:38
Removed	com.gs.pfmg.wellness	ANDROID	In Scope	21:38
Removed	com.gs.mobile.trader	ANDROID	In Scope	21:38
Removed	com.gs.gstrader.external	IOS	In Scope	21:38
Removed	com.gs.mobile.gsnow	ANDROID	In Scope	21:38
Removed	com.gs.gsnow.external	IOS	In Scope	21:38
Removed	gs select ios app	IOS	In Scope	21:38
Removed	*.goldmansachs.com	URL	In Scope	21:38
Removed	*.nextcapital.com	OTHER	In Scope	21:38
Removed	*.ayco.com	URL	In Scope	21:38
Removed	*.gs.com	URL	In Scope	21:38
Removed	*.goldman.com	URL	In Scope	21:38
Removed	*.gspublishing.com	URL	In Scope	21:38
Removed	*.gs.de	URL	In Scope	21:38
Removed	www.fitvermogen.nl	URL	In Scope	21:38
Added	*.claritymoney.com	URL	In Scope	19:11