goto-financial-public-bounty-program
YesWeHackView on YesWeHack
14
In Scope
2
Out of Scope
In-Scope Assets (14)
| Asset | Category | Quick Links | |
|---|---|---|---|
| *.findaya.co.id | WILDCARD | ||
| *.findaya.com | WILDCARD | ||
| *.gaming.gopayapi.com | WILDCARD | ||
| *.go-pay.co.id | WILDCARD | ||
| *.gofin.io | WILDCARD | ||
| *.gopayapi.com | WILDCARD | ||
| *.gtflabs.io | WILDCARD | ||
| api.midtrans.com | URL | ||
| app.midtrans.com | URL | ||
| gopaymerchant.midtrans.com | URL | ||
| https://apps.apple.com/id/app/gopay-transfer-pulsa-bills/id6446321594 | IOS | - | |
| https://play.google.com/store/apps/details?id=com.gojek.gopay&hl=id | ANDROID | ||
| mokapos.com | URL | ||
| www.midtrans.com | URL |
Out-of-Scope Assets (2)
| Asset | Category | |
|---|---|---|
| - All other Goto Financial assets not listed above are to be considered as out of scope | OTHER | |
| - Any staging environment will be out of scope (staging domain could be indicated by words like test/integration/staging, etc) | OTHER |