At Elite Trader Funding (ETF), we take security seriously and appreciate the efforts of ethical security researchers who help us keep our platform safe. However, we have strict guidelines in place to ensure responsible disclosure and legal compliance.

Bug Bounty Rules

  1. No Unauthorized Testing or Discovery
    Security testing, vulnerability discovery, or any form of probing into our systems without prior written approval from us is strictly prohibited.

  2. Legal Compliance
    Unauthorized attempts to access, probe, or exploit vulnerabilities in our systems without consent are a violation of international laws. We will pursue all legal options against individuals or entities engaging in such activities.

  3. No Extortion or Ransom Demands
    Any attempt to demand payment, threaten disclosure, or otherwise extort money before responsibly reporting a security issue will be considered a criminal act. We will take legal action against individuals attempting to coerce us.

  4. Responsible Disclosure Process

    • Submit all findings to our official security team at [email protected].

    • Do not publicly disclose any vulnerabilities until we have verified and addressed them.

    • Provide us with a reasonable timeframe to investigate and respond.

  5. Eligibility for Rewards

    • Only researchers who follow our responsible disclosure process and receive explicit permission for testing may qualify for rewards.

    • All reports must be detailed, reproducible, and demonstrate a valid security impact.

  6. How to Apply
    To apply for the bug bounty program, please fill the following form and then reach out.

Final Warning

If you attempt to probe, exploit, or withhold vulnerability information in an attempt to force us into payment, we will consider this an illegal act and take immediate legal action. We encourage ethical disclosure, but we will not tolerate unauthorized activities under any circumstances.

For inquiries regarding our bug bounty program, please contact us at [email protected].