Amazon Vulnerability Research Program - Devices icon Amazon Vulnerability Research Program - Devices HackerOne

Target Policy
https://hackerone.com/amazonvrp-devices?type=team
Structured Scope
  • Asset Identifier
    Asset Type
    Max Severity
  • https://www.amazon.com/luna/*
    URL
    critical
  • 1528364633

    https://apps.apple.com/us/app/luna-controller/id1528364633

    APPLE_STORE_APP_ID
    critical
  • 947984433

    https://apps.apple.com/us/app/id947984433

    APPLE_STORE_APP_ID
    critical
  • skills-store.amazon.com
    URL
    critical
  • com.amazon.tails

    https://play.google.com/store/apps/details?id=com.amazon.tails

    GOOGLE_PLAY_APP_ID
    critical
  • com.amazon.storm.lightning.client.aosp

    https://play.google.com/store/apps/details?id=com.amazon.storm.lightning.client.aosp

    GOOGLE_PLAY_APP_ID
    critical
  • Tablets

    Fire HD 8 (Gen 10)
    Fire 7" (Gen 9)
    Fire HD 10 (Gen 9)

    HARDWARE
    critical
  • api.amazonalexa.com/*
    URL
    critical
  • com.amazon.cosmos

    https://play.google.com/store/apps/details?id=com.amazon.cosmos

    GOOGLE_PLAY_APP_ID
    critical
  • Halo

    Halo View
    Halo

    HARDWARE
    critical
  • FireTV

    Fire TV Stick (Gen 3)
    Amazon Fire TV Cube (Gen 2)
    Fire TV Stick Lite
    Fire TV Blaster

    HARDWARE
    critical
  • 1496435377

    https://apps.apple.com/us/app/id1496435377

    APPLE_STORE_APP_ID
    critical
  • com.amazon.healthtech.malibu

    https://play.google.com/store/apps/details?id=com.amazon.healthtech.malibu

    GOOGLE_PLAY_APP_ID
    critical
  • blueprints.amazon.com
    URL
    critical
  • Echo Family Devices

    Echo (Gen 4),
    Echo Dot (Gen 4)
    Echo Dot with Clock (Gen 4)
    Echo Show 10
    Echo Flex
    Echo Buds
    Echo Frames
    Echo Auto

    HARDWARE
    critical
  • Luna

    Luna Controller

    HARDWARE
    critical
  • com.amazon.dee.alexaonwearos
    GOOGLE_PLAY_APP_ID
    critical
  • com.amazon.tahoe.freetime

    https://play.google.com/store/apps/details?id=com.amazon.tahoe.freetime

    GOOGLE_PLAY_APP_ID
    critical
  • 1291586307

    https://apps.apple.com/us/app/amazon-key/id1291586307

    APPLE_STORE_APP_ID
    critical
  • https://luna.amazon.com/*
    URL
    critical
  • Kindle E-Reader

    Kindle Oasis (Gen 10)
    Kindle (Gen 10)

    HARDWARE
    critical
  • creator.amazon.com
    URL
    critical
  • read.amazon.com
    URL
    critical
  • developer.amazon.com/apps-and-games/*
    URL
    critical
  • alexa.amazon.com
    URL
    critical
  • 944011620

    https://apps.apple.com/us/app/id944011620

    APPLE_STORE_APP_ID
    critical
  • 621574163

    https://apps.apple.com/us/app/amazon-photos/id621574163

    APPLE_STORE_APP_ID
    critical
  • 302584613

    https://apps.apple.com/us/app/id302584613

    APPLE_STORE_APP_ID
    critical
  • 1324809509

    https://apps.apple.com/us/app/id1324809509

    APPLE_STORE_APP_ID
    critical
  • amazon.com/hz/mycd/*
    URL
    critical
  • a4k.amazon.com
    URL
    critical
  • com.amazon.kindle

    https://play.google.com/store/apps/details?id=com.amazon.kindle

    GOOGLE_PLAY_APP_ID
    critical
  • com.amazon.dee.app

    https://play.google.com/store/apps/details?id=com.amazon.dee.app

    GOOGLE_PLAY_APP_ID
    critical
  • alexaanswers.amazon.com
    URL
    critical
  • developer.amazon.com/alexa/*
    URL
    critical
  • www.amazon.com/photos/*
    URL
    critical
  • com.amazon.clouddrive.photos

    https://play.google.com/store/apps/details?id=com.amazon.clouddrive.photos

    GOOGLE_PLAY_APP_ID
    critical
Target Scope Domains
  • a4k.amazon.com
  • alexa.amazon.com
  • alexaanswers.amazon.com
  • amazon.com
  • api.amazonalexa.com
  • blueprints.amazon.com
  • creator.amazon.com
  • developer.amazon.com
  • luna.amazon.com
  • read.amazon.com
  • skills-store.amazon.com
  • www.amazon.com
Tech Stack
Last Finished Scan:
Scan Name
Fleet
Finished
State
auto-gausubs-2-kcrlf
allkxss
8 months ago
Finished
auto-gausubs-2-kcrlf
  • Fleet: allkxss
  • Duration: 1.52 Hours
  • Finished: 8 months ago