Apple web server security acknowledgements, 2019-2020
Apple publishes this article to acknowledge and thank those who reported potential security issues in our web servers. Credit is added after the issue has been identified and addressed.
For credits from other years, see the end of this article. You can also view recent Apple web server security acknowledgements.
Credits
December 2020
@sagaryadav8742 and @gdattacker
Abhishek Misal
Abhishek Sajan
Adesh Nandkishor Kolte
Agrah Jain
Aman Mahendra (@amanmahendra_)
Amine Aboud (@amineaboud)
Aniket Ghandge
Brett Buerhaus (@bbuerhaus), Dan Ritter (@_danritter), Sam Curry (@samwcyo)
Buğra Eskici (@ bugraeskici)
Byeu of ZalopaySecurity
Carlos Rivero (@hipotermia) and J. Domingo Carrillo (@0xd0m7)
Chaudhary Pawan Rawat (@PawanRa20262178)
Chi Tran
Chinmoy Mukherjee
Darshil Desai (@geroriv)
Denis Schulze
Dilip Singh Solanki and Priyanshu Parihar
Dirk Böttcher (Programmer)
Donald Miley
Eric Head (todayisnew / @codecancare)
Ertuğrul Özdemir (@ertugrulphp)
Eugene Reznik (@eugenereznikdesign)
Harry Gertos (@GertyBoy27)
Hein Thant Zin (@_heinthant)
Hemant Patidar
Hussein Ali Taha (@0xHussein)
Hussein Daher (@hussein98d)
IndoAppSec Team (@indoappsec)
ismail Şentürk
Jasmin Landry (@JR0ch17), Sébastien Morin (@SebMorin1), Pier-Luc Maltais (@plmaltais), and Ilyass Elhadi (@0xc0ffee_)
jax777
Joseph Thacker (@rez0_)
Kaustubh Kale
kazan71p (@kazan71p).
Ketan Sirigiri (@tweetketan)
Malkit Singh
Marsel Dandamaev
Meeru Enterprise
Mehmet Can Güneş (@mehmetcangunes)
Mert Tasci (@mertistaken)
Michael Blake (@michael1026h1)
Miguel Corral (@mcorral74)
min4tor
Muhammad Julfikar Hyder (@thejulfikar) of University of Information Technology and Sciences
Narendra Bhati @imnarendrabhati
Nosa Shandy
Prakash Sharma (@1lastBr3ath)
Pravendra Rathi, and Ankit Rana
Privet bagosam
Ricardo Iramar dos Santos
Rohit Gautam (@iamrohitg) and Shifa Cyclewala (@shifa) of Hacktify Cyber Security
Ronit Bhatt of KPMG, Shifa Cyclewala (@shifa) and Rohit Gautam (@iamrohitg) of Hacktify Cyber Security
Samuel Curry (@samwcyo), Samuel Erb (@erbysam), Brett Buerhaus (@bbuerhaus), Ben Sadedhipour (@nahamsec)
Saransh Rana
Sébastien Morin (@SebMorin1), Pier-Luc Maltais (@plmaltais), Jasmin Landry (@jr0ch17), and Ilyass Elhadi (@0xc0ffee_)
Shivang Trivedi
Tony Marcel Nasr
Vijay Kumar (@IndoAppSec)
Vishal Bharad
Vishal Panchani (@vis_hacker)
Yash Pandya
November 2020
Ace Candelario
Aditra Andri Laksana (@Wayc0de)
Aditya Soni
Ahmed Elsadat
Ahmet Suna
Alex Chepovetsky
Ankur Agarwal
Bogdan Calin of Acunetix
David Coomber
Enoch Lin
Eric Head (todayisnew / @codecancare)
Gaurav Ghule and Virendra Tiwari
Gocha Okradze
Graham Bartlett of Quantum Secret
Greg Gibson
Hack Adam (@thehackadamv2)
hacker Güneş
Majd Atiyat (@Th3g3nt3lman)
Mohammed Shine (Defcon Trivandrum / @DC0471)
Mohammed Warsame
Mohd Haji of Copart
r3zaduty
RamKumar Ganesan
Ricardo Iramar dos Santos
Sahil Kulkarni and Nishant Pendurkar
Samuel Curry (@samwcyo), Samuel Erb (@erbysam), Brett Buerhaus (@bbuerhaus), and Ben Sadedhipour (@nahamsec)
Sébastien Morin (@SebMorin1)
Sébastien Morin (@SebMorin1), Pier-Luc Maltais (@plmaltais), Jasmin Landry (@jr0ch17), and Ilyass Elhadi (@0xc0ffee_)
Shivang Trivedi of Universal College of Engineering
Shivprasad Sambhare
Tushar Rasam
Vijju Vijaykumar (@hackrzvijay)
Vinesh Redkar
Vishal Bharad
Vishal Panchani (@vis_hacker)
Vishnu Rajkv
Wallace Soares
wAnyBug
October 2020
Abhishek Misal
Aditya Soni (@hetroublemakr)
Athul Krishnan (@athul_krishnan)
Bhanu Teja (@bh4nut3j4)
Bradley Mackey
Brian Carpenter of Geeknik Labs
Diego Bernal Adelantado
Eric Head (todayisnew / @codecancare)
Eusebiu Blindu
Gourab Sadhukhan
Guarav Ghule and Virendra Tiwari
Halis Duraki (@0xduraki) of Infigo IS D.o.o
Harsh Jaiswal
Honc 章哲瑜 (@honcbb)
Kartik Mulasavalagi
Kunal Gambhir
Mathieu Huysman and Tim De Wachter of Cyrex
Mehmet Can Güneş (@mehmetcangunes)
MelarDev (@melardev)
Midhun s
Miguel Corral (@mcorral74)
Moein Abas (moe1n1)
Mohd Haji
Mohd Waseyuddin (@waseyuddin) and Mirza Obaidullah Baigfor reporting this issue.
Narendra Bhati (@imnarendrabhati)
Naveen Kumar S of Rajesh Kumar.D Team, Ernst & Young LLP, and Chennai
Noah Roskin-Frazee
Pethuraj M
Rajesh Kumar.D Team, Ernst & Young, Chennai
Rajpal Arora (@whacktohack)
Rudi Andriano
Saddam Hussain (@wisdomfreak1)
Sam_Exploit (@sam_3xploit)
Samir Hadji (@dz_samir)
Samuel Curry (@samwcyo), Brett Buerhaus (@bbuerhaus), and Ben Sadeghipour (@nahamsec)
Samuel Curry (@samwcyo), Brett Buerhaus (@bbuerhaus), Samuel Erb (@erbbysam), and Ben Sadeghipour (@nahamsec)
Sayaan Alam of Techfenix Security from Jamia Millia Islamia University, New Delhi
Sourajeet Majumder
Sujeet Pathak of H4CK3RT3CH
Syed Mushfik Hasan Tahsin (@smhtahsin33)
Tobias Schuetz (@totz_sec)
Tonmoy Goswami
Tran Viet Tuan (@thebl4ckturtle)
Utkarsh Nagar (@utkarshnagar6)
Valentine Reid
Venkateswara Reddy Yaruva
Vishnuraj K V
xiaodong (@xiaodon17445981)
Yiğit Can Yilmaz (@yilmazcanyigit)
徐铭桂
September 2020
Abhishek Misal
Alper Tecimer
Andrés Gómez
Armando Huesca Prida
Benjamin Brown and Tim Makin
Dylan Butler
Eusebiu Blindu (@testalways)
Jochith Nagarajan (@JochithN)
Narendra Bhati
Nikhil Sahoo
Noah Roskin-Frazee
NyenderID
Priyanshu Parihar
Riza Sabuncu
Rohit Gautam of Hacktify Cyber Security
Samuel Curry (@samwcyo), Brett Buerhaus (@bbuerhaus), Samuel Erb (@erbbysam), and Ben Sadeghipour (@nahamsec)
SecurityMate
Shailesh Kumar
Srikar V
Sriram of primefort pvt. ltd. (@Sri_Hxor)
Tibin Sunny (@tibinsunny1)
Vishal K. Bharad of CYRAC
August 2020
Abdullah Zafar
Ahmed Alwardani
Akshat Parikh of American High School
Amin Achour
Arpit Borawake
Artem Bobok
Asaf Aprozper
Ashish Mathur
Bhanu Teja (@bh4nut3j4)
David Stromberg
Dolmatov Alexey DeteAct
Ertuğrul Özdemir (@ertugrulphp)
Eusebiu Blindu (@testalways)
Hunter0x00 (@Hunter0x00)
Jafar Abu Nada (@jafar_abo_nada)
Jishnu P V
Louis Jannett of Ruhr-University-Bochum
Mahmoud Osama Ahmed
Marinko Ruzic (@maRuzic)
Mathieu Huysman of Cyrex
Md Rasel Bhuyan
ming of 斗象科技能力中心
Mohamed Saqib C
Mohammed Kamal Darwish
Mohd Haji
Muhammad Khizer Javed of Rebyc Technologies Pakistan
N0rth3 of Bytedance Penetration Lab and Xwh1te of HDU
Narendra Bhati From Suma Soft Pvt. Ltd. Pune (India)
Nyi Htet Aung h
Omar Khaled (@powerjacobb1)
Pankaj Kumar Thakur (@Nep_1337_1998)
Prabhjot Dunglay
Quang Vu Dinh (@vudq16) of NCSC VietNam
Rajpal Arora (@whacktohack)
Ricardo Iramar dos Santos
Ritik Chaddha (@RitikChaddha)
Ronnie Nsale (@ronnieflip)
Samuel Curry (@samwcyo), Brett Buerhaus (@bbuerhaus), and Ben Sadeghipour (@nahamsec)
Samuel Curry (@samwcyo), Brett Buerhaus (@bbuerhaus), Samuel Erb (@erbbysam), and Ben Sadeghipour (@nahamsec)
Sanskar Sharma (@nitinsh50419590) of StealWart
Sebastien R., Threat Intel Analyst
SecurityMate (@securitymate)
Shaikh Yaser Arafat
Shivang Trivedi of Universal College of Engineering
Shubham Garg
Siva Pathela
Tran Viet Tuan (@thebl4ckturtle)
Varun Gupta of University of Petroleum and Energy Studies
Vishal Bharad
Vismit Sudhir Rakhecha (Druk)
Xu Taoyu
Yatin Sharma of Stealwart Company
Yiğit Can Yilmaz (@yilmazcanyigit)
July 2020
Akash Basnet
Alex Chepovetsky
Alper Tecimer
Arpit Borawake
Damini Soni (@daminisoni_)
Emad Youssef (@Sy3Omda)
Gaurav Ghule and Virendra Tiwari
Jon Barber
Muhammad Irfan Sulaiman (@mirfansulaiman) of PT Vantage Point Security Indonesia
Pritam Mukherjee
Sam Curry (@samwcyo)
Samuel Curry (@samwcyo), Brett Buerhaus (@bbuerhaus), and Ben Sadeghipour (@nahamsec)
Samuel Erb (@erbbysam), Samuel Curry (@samwcyo), Brett Buerhaus (@bbuerhaus), and Ben Sadeghipour (@nahamsec)
SecurityMate (@securitymate)
Shrestha (@bughunter04) of Teqfocus Consulting
Stu
Varun Gupta
Yiğit Can Yilmaz (@yilmazcanyigit)
Zahid
Zaurbaev Zaur (@zaurbaev) of team Akhmat-Sila
June 2020
Baki Kozak
Borja Berastegui Anzorandia
Chirag Gupta
Fedor Indutny (@indutny) of PayPal
P1g3@D0g3
Piyush Patil
Sercan Sayitoğlu
Yiğit Can Yilmaz (@yilmazcanyigit)
Zaurbaev Zaur (@zaurbaev)
May 2020
Aariz Khan
Jack Wherry
Nicholas Botticelli
SecurityMate
Yiğit Can Yilmaz (@yilmazcanyigit)
Zahid
April 2020
Ahmad Halabi of CyberIronClad
Anish Khatri
Bhavuk Jain
Gaurang Bhatnagar
Hoang Quoc Thinh
KhunMyat (@khunmyat_)
Oag
Thijs Alkemade of Computest
Zaurbaev Zaur (@zaurbaev)
March 2020
Abdullah H. AlJaber (@aljaber)
Ala Arfaoui
Janmejaya Swain
Raphael Karger
Riza Sabuncu
Rizki Rahmanda
Simon Winter
Thierno Diop (@g33kdiop)
王邦宇
February 2020
Andreas Fay-Roßbach and Michael Karshüning of Finanz Informatik GmbH & Co. KG
Asaf Aprozper (@3pun0x) of Reposify
Avishek Nayal
Ayan Saha
Brian Carpenter
CodeColorist of Ant-Financial LightYear Labs
Freddie Leeman of URIports
Harsh Jaiswal
Jeffrey Hoekema
Jordan Philip of Mobile Solutions
Joshua Maddux of PKC Security
Kamran Saifullah
Lee Jun Oh of Kyung Hee University
Mahmut Esat Yıldırım (@MahmutEYildirim)
Mustafa (@c0braBaghdad1)
Nikhil Sahoo
Nishant Agarwala
Oag
Professor Habib, Mr Seyed Hojjat Hosseini, and Dr AmirMohamad Katiraei
Rupesh Kokare
Sandeep Vishwakarma
Seyed Ali Mirheidari
Sumit Sahoo
Thomas Shadwell (@zemnmez)
Yiğit Can Yilmaz (@yilmazcanyigit)
王邦
王邦宇
January 2020
Aditra Andri Laksana (@Wayc0de)
Bradley Mackey
CodeColorist of Ant-Financial LightYear Labs
Deepak Natanmai
Pratik Dabhi
Sultan Haikal M.A (@SultanMoeslim)
Thomas Shadwell (@zemnmez) of Google
Younes Bousfiha (@CoderYounes)
December 2019
Aryan Sinha
DDV_UA
Fahimul Kabir Lemon of Secminers Bangladesh
Geet Vaishnav
Loïc Ft (@ftLoic)
Nimrod Levy
Noah Roskin-Frazee
Pankaj Kumar Thakur (@Nep_1337_1998)
Rahul Gupta
Raphael Robert (@raphaelrobert) of Wire.
Ryan Kovatch (9to5Google)
Saleh Ahmed Ba Haj : ( @0xHunter )
Sattar Jabbar
SecAnalysts (@secanalysts) of belitungcyber
November 2019
Aditra Andri Laksana (@Wayc0de)
Andrei Manole
DDV_UA
Eimène Baraket
Jyotirmoy Roy (@rjyotirmoy)
Lütfü Mert Ceylan
Okan Kurtuluş
Pankaj Kumar Thakur (NEPAL) @Nep_1337_1998
Raphael Robert of Wire (@raphaelrobert)
Robert Wiggins
Ronak Nahar
Tarun Mahour (@sratarun)
Yaroslav Babin (@yarbabin)
王亮 of Jilin University
October 2019
Andrea Bocchetti
Mathieu Huysman and Prabhjot Dunglay
Mihail Burduja (@MihailBurduja)
Pankaj Kumar Thakur (@Nep_1337_1998)
Philip Kronawetter
Romesh chander (@romeshchandar)
Sardarescu Louis Aurel
Tibin Sunny
Vikas Srivastava
Vyshnav N K of Sage Intacct.
William Walker of the University of Delaware
xiaodong (@xiaodon17445981)
Yasir Altaf Zargar (@islambaduk)
王邦宇
范智程
September 2019
Jacob Greenfield
Jaime Ivàn Mendoza Ribera of Bolivia - COTAS
Mathieu Huysman And Tim De Wachter from Cyrex
Pankaj kumar Thakur (Nepal) @Nep_1337_1998
Pierguido Iezzi, Raoul Chiesa and Cyber Research Team of Swascan
Pranjal Saxena (@pranjal9599)
Shady Gamal
ThuraMoeMyint (@mgthuramoemyint)
Yiğit Can Yilmaz (@yilmazcanyigit)
刘洪泽
王邦宇
August 2019
Andras Toth
Blake Rand of Grandview Preparatory School
Faast team of ElevenPaths
Hein Thant Zin(@H3Lowr)
Jacob Greenfield
Jayson Vasquez Rubio (School: ISAT-U)
Joel Verghese (KrizzSK)
Joshua Maddux
K. Vinothkumar (@vinnyvinoth242)
Philip Kronawetter
Ratnadip Gajbhiye
Sebei Iheb
Tinu Tomy(@TinuRock007)
Xavier Jurado
Yassine Algangaf
Yiğit Can Yilmaz (@yilmazcanyigit)
Zachary Seguin
王邦宇 of SAINTSEC
July 2019
Aniruddha Ashok Khadse, Avanish Pathak (Aims University, Banglore)
Ayoub Ait Elmokhtar (@aessadek)
Herane Malhotra
Noah Roskin-Frazee
Omur Ugur
Omur Ugur, Tansel Çetin
Professor Habib, Mr Seyed Hojjat Hosseini, Dr AmirMohamad Katiraei
Robbie Wiggins - Bishopfox
Robbie Wiggins - What Security
S.P.Vasantha Kumar, Tony Caleb, Vishnu Raj of Infoziant, and Tamil Nadu
Saleeq Mohamed of Artistic Eng. Models
Seyed Hojjat Hosseini
Sujeet Kumar (Bindu Computer Institute) @Hacker_Sujeet and @bindu_computer
无心、@233sec Security Team
荣智坤T1anming
June 2019
N.Karthik
Syed Abuthahir
Tillson Galloway
Wai Yan Aung (@waiyanaun9)
wAnyBug
Yiğit Can Yilmaz (@yilmazcanyigit)
May 2019
Antonio Fernandes
Callum Carney
vasantha, Vasantha Kumar.S.P.
Yiğit Can Yilmaz (@yilmazcanyigit)
April 2019
Cheryl Pottberg
Cyril Cuvelier of Marcq Institution
David Murdock
Jaime Ivàn Mendoza Ribera of BOLIVIA - COTAS
Jelle Ursem
Maxime Guerreiro (@punkeel)
Ronnie T Baby
Samet Şahin
Yadnyawalkya Tale
Yashvier Kosaraju
Zekvan Arslan (@zekv4n)
March 2019
Angel Swe Zin Myint (Cyber Security Analyst, MGEC Limited, Myanmar), Aung Myat Thu (@xai_yak), Vivek Krishna A of Zoho Corporation
Gil Bahat of Magisto
Mayur Manoj Gupta
Nawras Al Khaldi (Help AG)
Yiğit Can Yilmaz (@yilmazcanyigit)
Yusuf
王邦宇 of SAINTSEC Team
February 2019
Abbas Mamoun
Adithyan Ak of OWASP Coimbatore
Anders Kindberg
Ashish Gautam Kamble
Aung Myat Thu (@xai_yak) and Vivek Krishna A of Zoho Corporation
Chris Ball (@chriswb)
Eugene Kaznacheev
Gocha Okradze
Jan-Christian Föh of programmanstalt
Kareem Mohammed (@KendoClaw1)
MyoKo (@nutronex)
Yiğit Can Yilmaz (@yilmazcanyigit)
January 2019
B.Dhiyaneshwaran of Geek Freak (Tamilnadu)
Dzianis Skliar (EPAM Systems)
Eugene Kaznacheev of Ecwid, wytrawny_Dijkstra, and 王邦宇
Maciej Szymczak of SECURITUM
Muhammad Faizan Akhtar
Nisheal A John of Karunya University, India
Ronald van der Meer
sss of Qihoo 360 SkyEye Team
Wai Yan Aung(@waiyanaun9)
王邦宇
Apple web server security acknowledgements by year
Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Contact the vendor for additional information.