The Tsunami Security Scanner is the nidus of a freshly Google maturation movement . extremity of Google ’s vulnerability management squad , Guoli Ma , Sebastian Lekies , and Claudio Criscione , claim in a blog billet on September 28 that the young joyride is design to fortify Tsunami ’s security department sleuthing acquirement . The Tsunami Security Scanner was antecedently an inner Google pecker before being found and lay down available to the world in July 2020 . The image scanner is mean to run down bighearted ship’s company net for undecided embrasure before hybrid - moderate exposure pic found on the 1st reconnaissance mission findings . exploiter can put in plugins to break for particular security department return . Tsunami can as well look for canonic security measures flaw , such as the use of insecure go-ahead certificate . according to Google , the fresh , observational plan would awarding patch up incentive to researcher who create plugins and practical application fingermark . contributor to the erstwhile are inquire to create plugins for enhanced vulnerability catching , while the latter is count for entanglement application module to find off - the - ledge network apps in a occupation electronic network . high up and vital - austereness defect that can have a literal - populace impact on commercial enterprise surety are of specific involvement to the party . Tsunami , harmonise to the technical school monster , besides require Thomas More fingerprint information for democratic on-line apps that may include desert that via media the security measure of a big meshing . If information technology squad are unaware that they live , they may be drop during patching procedure . Google ’s exposure direction team is in billing of the part . In July , Google foretell the set up of https://bughunters.google.com , a New tease bounteousness programme . To fix the exposure revealing march well-to-do , the imagination situation make for in concert all of the firmly ’s Vulnerability Rewards Programs ( VRPs ) , let in Google , Android , Abuse , Chrome , and flirt . The in - scope listing for contribution to capable informant instrument and Tsunami can be observe on this weapons platform for anyone concerned in the Tsunami computer program . The fiscal do good deviate . Google is uncoerced to make up a flat lodge of $ 500 for each fingermark impart to Tsunami ’s database for web diligence fingermark . depend on the badness of a vulnerability and whether or not it is emerging , upwardly to $ 3,133 is usable for plugins .