To demonstrate this technology the AppCheck scanner was used to scan some of the most high profile sites on the internet including Bing, Microsoft, MSN, eBay, AT&T and Adobe. In each case, DOM based XSS vulnerabilities were discovered and reported to the vendor.
To reward responsible disclosure Appcheck has been credited by each vendor via their respective bug bounty programs;
Microsoft credited Appcheck for DOM XSS discovery in bing.com, microsoft.com and msn.com: Acknowledgement Archive
February 2015: February 2015
eBay Credited Appcheck for discovery of Adobe Flash based XSS; Link
AppCheck researcher Nico (nijagaw) was awarded a Bug Bounty for the discovery of a Persistent XSS flaw by Adobe. https://hackerone.com/adobe/thanks
AT&T entered AppCheck Ninto its Bug Bounty Hall of Fame: AT&T Hall of fame
No software to download or install.
Contact us or call us 0113 887 8380