AppCheck Security Blog

A COVID Christmas: Protecting Your Critical Ecommerce Assets

In this article we will address the current situation, how hackers can exploit your websites, what you can do to protect yourself and where AppCheck comes in as an automated penetration testing tool to make sure you’re not leaving yourself vulnerable.

read more

A COVID Christmas: Protecting Your Critical Ecommerce Assets

In this article we will address the current situation, how hackers can exploit your websites, what you can do to protect yourself and where AppCheck comes in as an automated penetration testing tool to make sure you’re not leaving yourself vulnerable.

Read more

vBulletin Zero Day Details & Plug-in

Security researcher Amir Etemadieh has released a pre-authentication zero-day remote command execution (RCE) exploit in vBulletin. This exploit is bypasses the patch for a previous RCE in vBulletin 5.0 through 5.4 and has since been assigned CVE-2019-16759.

Read more

Integrating AppCheck into your Azure Pipelines

AppCheck is pleased to announce official support for integration into Microsoft’s Azure Pipelines.

Read more

AppCheck Plug-in for CVE-2020-5902 & CVE-2020-5903

AppCheck have released a new plug-in to detect recently discovered security flaws within F5 BIG-IP devices, CVE-2020-5902 and CVE-2020-5903.

Read more

Scanning GraphQL for Vulnerabilities with AppCheck

AppCheck is pleased to announce enhanced support for scanning GraphQL based APIs. In this post we take a brief look at GraphQL and some of the security implications surrounding the technology.

Read more

Security Testing in the Software Development Lifecycle (SDLC)

In this article, we’ll run through what software development typically looks like for enterprises in 2020, how security tools and processes can, are and should be integrated, and what features to look for to best leverage current approaches to support the development process.

Read more

SaltStack scanning tool to detect CVE-2020-11651 & CVE-2020-11652

These CVE's are now being actively exploited in the wild and so we have created a free standalone scanner to detect and report on these.

Read more

In the current climate would you benefit from a free IT Security Test?

Take a no obligation, no hassle, complimentary automated penetration test with AppCheck and let our internal consultants provide you a thorough CVSS security report detailing our findings and recommended remediation. Our goal to uncover all High, Medium and Low risk vulnerabilities, including the OWASP TOP 10.

Read more

AppCheck Vulnerability Scanner Release Notes - 03.03.2020

A short summary of recent work on the product and an insight into the development of AppCheck.

Read more

AppCheck Scan Template for Pulse Secure CVE-2019-11510

AppCheck have released a scan template which will run a quicker scan and check for the above vulnerability. Specifically, the module will look to detect a critical security flaw in Pulse Secure’s Zero Trust Remote Access VPN.

Read more