Meet BKEX
BKEX is a digital asset trading platform featuring 1200+ cryptocurrencies.
The crypto exchange offers 4 activities:
- spot trading
- futures trading
- deposit & staking earning
- participating in a mining pool
Over 1.8 million BKEX users will rely on you to protect their assets!
Check Out The Rewards
If you find a vulnerability according to the bounty rules, BKEX will reward you:
- Critical: $2,500 – $10,000
- High: $800 – $2,500
- Medium: $200 – $500
- Low: $50 – $100
Join Our Bounty Hunt
There are 9 assets to scope:
- 3 websites
- 1 API
- 2 Android apps
- 3 iOS apps
Make sure your reports contain info about these incidents:
- Business logic issues
- Payments manipulation
- Remote code execution (RCE)
- Injection vulnerabilities (SQL, XXE)
- File inclusions (Local & Remote)
- Access Control Issues (IDOR, Privilege Escalation, etc)
- Leakage of sensitive information
- Server-Side Request Forgery (SSRF)
- Cross-Site Request Forgery (CSRF)
- Cross-Site Scripting (XSS)
- Directory traversal
- Other vulnerability with a clear potential loss
To increase your chances of finding a critical bug, read BKEX API documentation here & here.
Once you’re ready, click here to join the bounty hunt!