Find BOUNTY Files

Finds security index pages containing bug bounty program information at standardized /security/ URL paths.

Beginner Friendly

Safe to use

files

Google Dork Query:

inurl:/security/index.html intext:bounty

Not verified

What It Does

This dork uses 'inurl:/security/index.html' to target standardized security page locations combined with 'intext:bounty' to find pages mentioning bounty programs. Many organizations publish their security policies at /security/index.html, and this dork specifically finds those offering bug bounty rewards.

Common Use Cases

Bounty Program Discovery: Find organizations publishing bug bounty details on their standard security pages.
Security Policy Research: Locate companies with formal security pages that include bounty programs, safe harbor clauses, and scope definitions.
Responsible Disclosure Preparation: Find the official security pages of target organizations before submitting vulnerability reports.

How to Use Safely

Run the dork in Google to find security pages with bounty program information.
Review the page for scope, eligible vulnerability types, and reward tiers.
Check for related security.txt files or linked platform pages with additional program details.
Follow the documented submission process for reporting any discovered vulnerabilities.

Responsible Use Required

This dork should only be used on systems you own or have explicit authorization to test. Unauthorized access to computer systems is illegal. Always follow ethical guidelines and obtain proper permission before testing.

Related Dorks

Find MODERATOR Files

Finds exposed vBulletin moderator control panels that may allow unauthorized forum moderation actions.

Exposed Configuration Files

Finds exposed configuration files (.config, .cfg, .ini) containing plaintext passwords and database credentials.

Find Backup-Management (phpMyBackup v.0.4 beta * ) Pages

Finds exposed phpMyBackup management interfaces that could allow unauthorized access to MySQL database backup operations.