Responsible Disclosure / Testing Scope

Do not test without written authorization.

KST only performs testing within agreed written scope. Scope, timing, accounts, environments, and safe testing rules must be agreed before testing starts.

Do not test systems you do not own or have written authorization to assess. Do not send sensitive exploit data publicly.

Emergency or urgent issues related to Khan Security Testing can be reported to hello@khansecuritytesting.com.

Please include a clear summary, affected area, safe reproduction details, and your contact details. Avoid sharing secrets, private data, or exploit chains in public channels.