VULNEBIFY

<- Home

Terms and Conditions for Vulnebify

Effective Date: 16 Feb 2025

These Terms and Conditions ("T&C") govern your use of the Vulnebify platform ("Service"). By accessing or using the Service, you agree to comply with these T&C. If you do not agree, you must not use the Service.

1. Definitions

1.1 “Vulnebify” refers to the platform offering security-related tools and services.

1.2 “User” refers to any individual or entity using the Service.

1.3 “Port Scanning” refers to the act of probing open ports on publicly accessible internet resources that are not protected by authentication or explicit access restrictions.

1.4 “Customer Data” refers to all electronic data and information submitted by or on behalf of the user to the Service.

1.5 “Platform” refers to the Vulnebify application, including all associated services, APIs, and data processing functionalities.

1.6 “Authorized User” refers to an individual authorized by the customer to access and use the Service.

2. Acceptable Use Policy

2.1 Authorized Use

  • Users may only use the Service for lawful cybersecurity research, internet-wide intelligence gathering, or vulnerability awareness.
  • Users must have explicit permission from the system owner before conducting any security-related activities beyond publicly available data collection.
  • Users are prohibited from exploiting vulnerabilities found using Vulnebify.

2.2 Prohibited Activities

Users may NOT:

  • Use the Service for unauthorized scanning of non-public resources, data collection, or network probing.
  • Use Vulnebify’s data, API, or services for illegal, malicious, or unethical purposes.
  • Automate excessive requests to the Service without prior approval.
  • Attempt to disrupt, modify, or interfere with Vulnebify’s infrastructure.
  • Use the Service to target critical infrastructure, government, financial, or healthcare institutions without explicit authorization.
  • Facilitate or allow third parties to misuse Vulnebify’s services for unauthorized activities.
  • Misrepresent data collected via the Service to falsely claim vulnerabilities that do not exist.
  • Conduct scans that violate applicable cybersecurity laws, contractual restrictions, or third-party agreements.
  • Reverse engineer, decompile, or attempt to derive the source code of Vulnebify’s API.

3. Port Scanning Policy

3.1 Legal and Ethical Compliance

  • Vulnebify only scans publicly available internet resources that do not require authentication or bypass security restrictions. It does not perform brute force attacks, password guessing, bypass authentication, probe for vulnerabilities, exploit weaknesses, or access private networks.
  • Vulnebify does not infer consent from accessibility; system owners must explicitly allow scanning where applicable.
  • Vulnebify will comply with all applicable cybersecurity laws, including:
    • Computer Fraud and Abuse Act (CFAA) - USA
    • General Data Protection Regulation (GDPR) - EU
    • UK Computer Misuse Act (CMA)
    • Other national and international cybersecurity regulations
  • Vulnebify maintains a transparent scanning policy and publishes details on scanned ports, methodologies, and IP ranges.

3.2 Opt-Out Option

  • Organizations may opt out of being scanned by contacting [email protected].
  • Requests must be verified to confirm ownership or administrative rights over the affected systems.
  • Opt-out requests will be processed within 7 business days but do not prevent the collection of publicly available data.
  • Vulnebify respects robots.txt, firewall configurations, contractual prohibitions, and explicit denial-of-service requests from organizations.

4. Customer Data and Privacy

4.1 Data Ownership

  • Users retain ownership of their Customer Data submitted to Vulnebify.
  • Users grant Vulnebify a non-exclusive, worldwide license to process and analyze submitted data to improve the Service.

4.2 Privacy and Security

  • Vulnebify does not collect personally identifiable information (PII) unless explicitly provided by the user.
  • Vulnebify implements industry-standard security measures to protect data from unauthorized access or disclosure.

4.3 Third-Party Integrations

  • Users acknowledge that integrating Vulnebify with third-party services may involve data processing beyond Vulnebify’s control.
  • Users must ensure they have the necessary rights to share such data.

5. Service Availability and Support

5.1 Service Availability

  • Vulnebify will use commercially reasonable efforts to ensure platform uptime and minimize downtime.
  • Scheduled maintenance will be communicated in advance whenever possible.

5.2 Support

  • Users may contact [email protected] for assistance.
  • Support is provided on a best-effort basis with no guaranteed response times unless specified in a separate agreement.

5.3 Service Suspension

  • Vulnebify reserves the right to suspend or limit access to users violating these terms.
  • Users will be notified whenever feasible before service suspension.

6. Liability and Indemnification

6.1 Indemnification

  • Users agree to fully indemnify and hold Vulnebify harmless against any claims, liabilities, or damages arising from misuse of the Service.
  • Users assume full responsibility for their actions and any resulting legal consequences.

6.2 Limitation of Liability

  • Vulnebify shall not be liable for any direct, indirect, incidental, or consequential damages resulting from use of the Service.
  • Total liability for any claims arising under this agreement shall not exceed the amount paid by the user for the Service, if applicable.
  • Users waive their right to bring class-action lawsuits against Vulnebify.

7. Dispute Resolution and Governing Law

  • These T&C shall be governed by the laws of Ukraine.
  • Any disputes shall be resolved through binding arbitration in Kyiv, Ukraine, under the Ukrainian Arbitration Association (UAA) rules.
  • Users waive the right to participate in class-action lawsuits against Vulnebify.

8. Changes to Terms and Conditions

  • Users will be notified of significant changes via email and website notifications.
  • Continued use of the Service after updates constitutes acceptance of the new terms.

By using Vulnebify, you acknowledge that you have read, understood, and agreed to these Terms and Conditions.

<- Home
🇺🇦 Made in Kyiv with love