Bug Bounty

The Ghostmarket bug bounty program is focused on our smart contracts, websites, and apps with a primary interest in preventing loss of user funds, either by direct draining of locked funds or social engineering attacks by redirecting users or forcing them to sign a transaction.

Smart Contracts and Blockchain*

Level

Critical

up to USD $50,000

High

up to USD $10,000

Medium

USD $5,000

Low

USD $1,000

*All bug reports must include a Proof of Concept demonstrating how the vulnerability can be exploited, to be eligible for a reward. This may be a smart contract itself or a transaction.

Website and Apps

Level

Critical*

up to USD $ 20,000

High

up to USD $5,000

Medium

USD $2,000

Low

USD $1,000

*XSS reports are restricted to those that have an impact of prompting a user to sign a transaction or a redirect.

All payouts are done by the Ghostmarket team and are pegged to the USD values set here and are payable in GM tokens.

PreviousMedia Kit NextSocial Media Links

Last updated 1 year ago