SecuriTeam Secure Disclosure

Turn Your Vulnerabilities into Advantages

SecuriTeam Secure Disclosure (SSD) provides the support you need to turn your experience uncovering security vulnerabilities into a highly paid career. SSD was designed by researchers for researchers and will give you the fast response and great support you need to make top dollar for your discoveries.

SSD helps security researchers from all over the world to take the next step toward getting properly compensated for their efforts. We work with some of the brightest and most highly compensated people in the security industry and can help you advance your game - regardless of whether you are a beginner or have been discovering security issues for years.

The process is simple; send us a brief description of a vulnerability you have discovered and Securiteam Secure Disclosure will act as your agent. With just a sentence or two description from you, we'll use our extensive contacts with vulnerability buyers to secure a list of potential purchasers. You then set a price for your vulnerability and we'll help negotiate a sale. SSD also ensures that the transaction is confidential or that you get full recognition, it's up to you.

Your work is valuable and SSD will help you get the compensation you deserve.

For more information, contact ssd[at]beyondsecurity.com

Take a look at recently published work from SSD:
https://blogs.securiteam.com/index.php/archives/category/securiteam-secure-disclosure

Vulnerability Report Template

Researchers that plan on handing in material to the SecuriTeam Secure Disclosure program should provide as much information as possible on the item. Complete information will allow us to evaluate the item and make sure that it works as promised in our testing environment.

If you don't have your own submission template, you can this as a guideline. Feel free to add more details (if needed), skip parts that are not relevant or use your own format.

Vulnerability Report Form:

1) Vulnerability Title

2) Date of submission

3) Description of Product (from vendor/site)

4) Description of Vulnerability
4.1) Title
4.2) Product
4.3) Version
4.4) Homepage
4.5) Binary Affected
4.6) Binary Version
4.7) Binary MD5

5) Configuration Requirements

6) Vulnerability Requirements

7) Vulnerability Summary Information
7.1) Vulnerability Class
7.2) Affected Versions Tested
7.3) Affected Versions Assumed (explain assumption)
7.4) Unaffected Versions
7.5) Affected Platforms Tested (Windows, Linux, 32bit, 64bit, XP, Vista, 7, Ubuntu, etc)
7.6) Reliability Rating (Percentage)
7.7) Supported Targets (In what environment your PoC/exploit works 32bit/64bit, Windows, Linux, etc)
7.8) Attack Vector (Client Side File, Remote LAN, etc)
7.9) Exploitation Impact (Code Execution, Denial of Service, etc)
7.10) Exploitation Context (runs on Server/ attacks User)
7.11) Exploitation Indicators (crash of product, product closes and shell executes, log file indicates crash, etc)
7.11.1) In case of a just a "crash", how to debug and see the crash
7.11.2) In case of an exploit, how to change the shellcode
7.12) Perquisites (enabling certain checkboxes, certain configuration settings)

8) CVSS Score (use http://nvd.nist.gov/cvss.cfm?calculator&version=2 )

9) Vulnerability Workaround (can the vulnerability be mitigated by enabling some feature)

10) Vulnerability Technical Details

11) Exploitation

12) Items delivered (a list of files provided with the submission, what they do and how to use them, if any third-party are needed to compile the exploit please provide a URL, or reference to it)

Securiteam Secure Disclosure News:

Hi Everyone,

Hope you are all having a pleasant summer vacation (or for some of our researchers - a winter vacation.)

We recently had a few researchers attending:

  • HiTB (Amsterdam)
  • Wahckon (Australia)
  • Shakacon (Hawaii)

We got great feedback from those events, I had a chance to personally meet communicate with some of those that visited the shows directly, while others took the time to not just go to the conference but also visit the location where they were. I hope all the researchers we sent to those locations had a great time (especially the ones sent to Hawaii). I know I did.

As a reminder, the researchers that wanted to go to those conference only needed to send me an email to be offered a free entry ticket as well as flight fare of up to 1,000$ USD.

We are currently sponsoring these events:

  • PoC (South Korea)
  • EkoParty (Argentina)

We are currently looking into sponsoring these events:

  • CodeBlue (Japan)
  • AVTokyo (Japan)
  • GsickMinds (Spain)

If any of you is looking to participate in any of these three events, let me know as it would be a good incentive for us to sponsor that event. Also, if you are aware of a local event that you plan on going, send me an email and I'll see if we can get you an entry ticket.

We're proud to have Matteo invited to DefCon to present his research (partially sponsored by SSD). Congratulations Matteo - it is always a pleasure to work with talented researchers.

We are expanding our security vulnerabilities focus to new and different products, so we will be still buying vulnerabilities in a wide range, but also expanding to these new types of solutions which should allow new researchers to join our program.

We are increasing our "friend bring friend" bounty from $1,000 to $2,000. If you know of anyone that does security research, ask him or her to join our vulnerability disclosure program and we will give you 2,000$ USD. This has become effective from the 15th of July.

Our current interest and focus for non-web applications:

  • Privilege Escalations (for Andorid, Linux, iOS, and Windows)
  • Browser vulnerabilities (Chrome, Firefox, Safari, Internet Explorer Edge-Spartan)
  • Network devices (Routers, Switches, and Cloud Services)
  • Browser-oriented rendering solutions (Flash, Silverlight, Java, ...)

With for web applications the focus area vary. Here are some examples:

  • Webmails (OWA, Roundcube, vBulletin, SquirrelMail, Zimbra, Horde, ...)
  • Management Panels (cPanel, Plesk, ...)
  • Popular CMS Systems (WordPress, Joomla, Drupal, ...)
  • Network monitoring services (Nagios, BB - BigBrother, ...)

Looking forward to hear from you about things we can do better - like sponsoring speakers' travel expense as well as wild ideas - like providing you access to expensive security research software, etc.

BTW: We have published many of our previously unpublished advisories (as we were waiting for vendors to publish their advisories) on our Blog site, which is available at:

https://blogs.securiteam.com/index.php/archives/category/securiteam-secure-disclosure

Thanks,
Noam Rathaus
Beyond Security

Past newsletters:
SecuriTeam Secure Disclosure Newsletter 06
SecuriTeam Secure Disclosure Newsletter 05
SecuriTeam Secure Disclosure Newsletter 04
SecuriTeam Secure Disclosure Newsletter 03
SecuriTeam Secure Disclosure Newsletter 02
SecuriTeam Secure Disclosure Newsletter 01