Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Find the Coins,
Capture the Coins

Find the Coins,
Capture the Coins

Capture the Coin is a contest similar to traditional Capture the Flag contests, but instead of capturing a flag, security researchers capture bitcoin private keys hidden in parts of our website inaccessible to regular users. Anyone who finds a key can claim the bitcoin as a bounty.

Claim these
Bounties

Nakamoto Cobalt Capture The Coin Bounty worth 1.5 BTC

Nakamoto Bounty

1.5 BTC

This bounty is hidden in vulnerability #CC1_90 submitted against a security program of ours.

Dorian Cobalt Capture The Coin Bounty worth 1.0 BTC

Dorian Bounty

1.0 BTC

This bounty is hidden in the Capture the Coin bounty program found under CTC_Business.

Scytale Cobalt Capture The Coin Bounty worth 0.5 BTC

Scytale Bounty

0.5 BTC

This bounty is hidden in the address section in a dummy tester profile CTC_Tester.


Bitcoin Security
Bounties

Cobalt experimenting with Bitcoin to detect intrusion

The bitcoin protocol enables us to experiment with bitcoin bounties in new ways and allow us to build bounties directly into our website. To detect intrusion, we can set up automatic notifications when we see movements on specific bitcoin addresses, thereby building a bitcoin layered intrusion detection system.