our mission

We aim to make the digital world safer by reporting vulnerabilities we find in digital systems to the people who can fix them. We have a global reach, but do it Dutch style: open, honest, collaborative and for free.

Icon

OUR TEAM

DIVD is a platform for security researchers to report vulnerabilities, supported by volunteers.

Icon

News & Events

Just getting started with some presentations here and there

Icon

TO DO: REPORTS

Here you will soon find a timeline with our vulnerability reports. We only publish after vulnerabilities are fixed and negotiate with the stakeholders involved to which extent they are mentioned.

Icon

TO DO: TICKETING SYSTEM

Vulnerabilities found by our researchers are registered in our ticketing system, where other researchers do triage on their proof of concept. This allows us to follow progress on each case and do meta-analyses on our portfolio of cases.

Icon

CONTACT

Don't send your found vulnerabilities to us yet. We are in the phase of starting up and already have more than enough vulnerabilities to report ourselves. For anything else, mail to "question".

Icon

GO TO

The world of vulnerability research is growing rapidly. Want to do it yourself? Here we will provide some links.

our code of conduct

If you find vulnerabilities, you find out who owns the system, report to them first, with a clear proof of concept and your contact information. You don't: damage the system, download personal data or build backdoors. We believe social engineering, brute forcing and DDoS attacks are out of scope.

If you are responsible for a digital system, you should have a point of contact where researchers can file their report, promise to respond within three working days, update on the progress, warn others who might be affected, refrain from legal action and credit the researcher if the findings prove valuable.