AlienVault is a developezgest crowd-sourced computer-security platform with more than 26,000 participants in 140 countries that share more than one million potential threats daily. The company has raised $116 million since it was founded in 2007. In 2015, AlienVault researchers released a study disclosing that Chinese hackers were circumventing popular privacy tools.
As they have a responsible disclosure policy so I experience it and wanted to test their web application related with security vulnerabilities. I was a little occupied nowadays so I scarcely managed time and began testing their web applications and just engaged with their primary domain. As few of my different companions got recognized from AlienVault and I also wished to don’t miss that open door.
After doing security test I established couple of vulnerabilities in mean time and reported it to the security support team without wasting time and get their response in ten days, Thank you for sharing your findings. We have just issues a security-test on this domain, so we will take this into considerations while performing the research.
Following couple of more days I approached them for updates and they replied, Thank you for contributing in AlienVault’s responsible security disclosure process. Please accept that certificate of appreciation as an honor.
On October 30th, 2017 AlienVault launched program on HackerOne. I reported the same issue to AlienVault through HackerOne and in next couple of days they marked this report as resolved by following issue utilizing HackerOne. I got listed in AlienVault’s security researchers Hall of fame as HackerOne policy.
It’s not finished by any stretch of the imagination, because of minimal occupied nowadays and so I was unable test their web application complete. I will require some time and will re-try an infiltration testing to chase some more and high 😀
They issued me a certificate of thankfulness as a respect. I might want to Thanks AlienVault for this amazing Acknowledgment certificate. Because of some security policy I am not unveiling Bug report or any Proof of report. Stay in touch for more marvelous detailed write-ups related with Information Security and technology. Much obliged to you for your significant time. Try not to feel waver to remark.