MS15-034 Tester

Check whether your server is vulnerable to attacks mentioned by MS15-034. Learn More

We do not store any information related with the test results. To be clear, we do not store anything :) So, go check your server and patch it if needed.


Just type the domain or ip without protocol and click Test. e.g. or or


Test code

Many snippets around just send simple headers to target server and try to determine the vulnerability. If the request is served by .net engine as a script, the respond may not contain vulnerability information. To be sure, the test request must be sent to a static file. Otherwise many servers which are vulnerable may be considered indeterminate.

See our code in Gist.


Although our test request doesn't seem to harm any target server. We are not responsible for future unexpected behaviour.