Pages:
Author

Topic: Pentest Primedice 3 for bounties! (Read 3507 times)

donator
Activity: 1218
Merit: 1015
August 30, 2014, 08:07:52 AM
#45
Are all URL arguments disabled? Every time I try to enable poop function (in chat, they confirm it is /?poop=enabled), it hangs on loading screen (or does that happen if IP address is already connected to websocket?).
legendary
Activity: 1330
Merit: 1001
August 14, 2014, 09:36:39 PM
#44
I only use chrome, and all I get is an error message for that site.
Nothing is wrong with my internet or anything, the page loads quick and smooth,,,, but to the error.
It works in firefox and opera aswell.
member
Activity: 98
Merit: 10
Life is my dream, what is yours?
August 13, 2014, 08:11:07 PM
#43
I only use chrome, and all I get is an error message for that site.
Nothing is wrong with my internet or anything, the page loads quick and smooth,,,, but to the error.
legendary
Activity: 2464
Merit: 1037
CEO @ Stake.com and Primedice.com
August 13, 2014, 07:27:00 PM
#42
I'm good with patterns and logic errors, meaning if there's an issue with the script that runs the site I could root around it figuring out ways to break the odds.

Site is now live , everybody can pentest it . And if u find any bugs email [email protected] , if u are first to report it , u will get bounty .

It's the same site isn't it? I haven't been able to connect the last few time I've tried.

Yeah on primedice.com . U should try using latest version of chrome , there is some issue with ff, should be sorted out rly soon thou .
member
Activity: 98
Merit: 10
Life is my dream, what is yours?
August 13, 2014, 07:19:45 PM
#41
I'm good with patterns and logic errors, meaning if there's an issue with the script that runs the site I could root around it figuring out ways to break the odds.

Site is now live , everybody can pentest it . And if u find any bugs email [email protected] , if u are first to report it , u will get bounty .

It's the same site isn't it? I haven't been able to connect the last few time I've tried.
legendary
Activity: 2464
Merit: 1037
CEO @ Stake.com and Primedice.com
August 13, 2014, 07:04:51 PM
#40
I'm good with patterns and logic errors, meaning if there's an issue with the script that runs the site I could root around it figuring out ways to break the odds.

Site is now live , everybody can pentest it . And if u find any bugs email [email protected] , if u are first to report it , u will get bounty .
member
Activity: 98
Merit: 10
Life is my dream, what is yours?
August 13, 2014, 07:02:25 PM
#39
I'm good with patterns and logic errors, meaning if there's an issue with the script that runs the site I could root around it figuring out ways to break the odds.
legendary
Activity: 1330
Merit: 1001
August 11, 2014, 05:51:35 PM
#38
I sent and talk to edward about the nonce repeat bug when you make a flood query. It gives to all the bets of the same timestamp the same result. In one run I could get 10 bets with the same result.
sr. member
Activity: 252
Merit: 250
August 11, 2014, 05:39:53 PM
#37
whats considered as a bug? cause the withdraw gave me 10,000 satoshi is that one?
member
Activity: 72
Merit: 10
42
August 11, 2014, 04:09:10 PM
#36
I am interested.
legendary
Activity: 2394
Merit: 1216
The revolution will be digital
August 11, 2014, 12:40:23 PM
#35
can we still get rewarded if we found bugs?

Yep. Just email [email protected]

If your bug is unique and can be reproduced, you will get a reward!

I posted above. The bug has neither been addressed nor I have heard from Stunna. May be he's not checking this thread anymore Cry

Hi Stunna... though i was not among the testers, I have found a small UI bug hat u may consider fixing. When I click on the language drop-down, it does not work. It is only showing English as a fixed option.

How is that a bug?

I dont think PD has been translated to any other language yet.

When a drop down is not dropping down but showing the down arrow is not a bug ?
legendary
Activity: 1092
Merit: 1000
nahtnam.com
August 11, 2014, 10:49:38 AM
#34
can we still get rewarded if we found bugs?

Yep. Just email [email protected]

If your bug is unique and can be reproduced, you will get a reward!

I posted above. The bug has neither been addressed nor I have heard from Stunna. May be he's not checking this thread anymore Cry

Hi Stunna... though i was not among the testers, I have found a small UI bug hat u may consider fixing. When I click on the language drop-down, it does not work. It is only showing English as a fixed option.

How is that a bug?

I dont think PD has been translated to any other language yet.
legendary
Activity: 2394
Merit: 1216
The revolution will be digital
August 11, 2014, 10:48:38 AM
#33
can we still get rewarded if we found bugs?

Yep. Just email [email protected]

If your bug is unique and can be reproduced, you will get a reward!

I posted above. The bug has neither been addressed nor I have heard from Stunna. May be he's not checking this thread anymore Cry

Hi Stunna... though i was not among the testers, I have found a small UI bug hat u may consider fixing. When I click on the language drop-down, it does not work. It is only showing English as a fixed option.
legendary
Activity: 1092
Merit: 1000
nahtnam.com
August 10, 2014, 09:45:29 PM
#32
can we still get rewarded if we found bugs?

Yep. Just email [email protected]

If your bug is unique and can be reproduced, you will get a reward!
sr. member
Activity: 252
Merit: 250
August 10, 2014, 09:42:32 PM
#31
can we still get rewarded if we found bugs?
legendary
Activity: 2394
Merit: 1216
The revolution will be digital
August 10, 2014, 01:06:38 PM
#30
Hi Stunna... though i was not among the testers, I have found a small UI bug hat u may consider fixing. When I click on the language drop-down, it does not work. It is only showing English as a fixed option.
member
Activity: 87
Merit: 10
August 07, 2014, 02:45:08 AM
#29
Do you provide a test/dev-environment in order to pentest it and don't break the production system?
If so I would give it a shot if its worth the try.

some facts about me:
http://bitcloudproject.org/w/User:MCM-Mike
member
Activity: 78
Merit: 10
★Bitin.io★ - Instant Exchange
August 05, 2014, 12:07:40 PM
#28
I am interested, u will need someone who is new to Prime-Dice to test the atmosphere of the site
legendary
Activity: 2618
Merit: 1105
August 05, 2014, 03:37:46 AM
#27
Me 3 interested.
donator
Activity: 1218
Merit: 1015
August 04, 2014, 10:20:18 PM
#26
Our main developer is asleep at the moment, when he's online I'll send some of the people here site/api details.

I might be interested in checking SQL injection.

I'm always up for trying to force data to execute, though IMO, forcing a 100BTC credit to myself is a feature, not a bug. To date, I've only been able to force a small site to accept LTC as BTC, though. Then it was fixed and he never paid the bounty. Cheesy

How come a site accept LTC as BTC ? The Bitcoin daemon is different from the Litecoin daemon. If they check balance to their Bitcoin address that can never be filled with Litecoin !!! I'd like to know what flaw they made... if u please share.
They used deposit accounts which you spent from, which they didn't use a daemon for, just internal accounting. Basically, they accepted everything from their forms as true without checking, but allowed a user to specify "LTC" on a "BTC" form by dinking around with the source html (and they literally used those really obvious currency flags). I had LTC in my account there, so I changed the currency flag from BTC to LTC and was able to spend LTC as if it were valued like BTC. Unfortunately, it was only to buy ads. Cry
Pages:
Jump to: