Infosec Institute

Open Bug Bounty mentioned in the
Top 6 Bug Bounty programs of
2022 by the InfoSec Institute

The Hacker News

Open Bug Bounty named among the
Top 5 Bug Bounty programs of 2021
by The Hacker News

Platform update: please use our new authentication mechanism to securely use the Open Bug Bounty Platform.
For security researchers
Report a Vulnerability
Submit, help fixing, get kudos.
For website owners
Start a Bug Bounty
Run your bounty program for free.
1,691,657 coordinated disclosures
1,355,071 fixed vulnerabilities
1,967 bug bounty programs, 3,883 websites
45,207 researchers, 1,640 honor badges

KhanJanny Top VIP Security Researcher of the Month | Security Researcher Profile

Security researcher KhanJanny has already helped fix 4458 vulnerabilities.

Researcher reputation:  800

Real name:
#NoobSec #Reboot_ex

About me:
Love to find vulnerabilities:

Note:-If You Fixed Your Website Vulnerability, Please Don't Forget To Give Me Recommendations and Acknowledgements In My Open Bug Bounty Profile.

Contact email:
Best way to contact me mail : [email protected]

Alternative Contacts:
mail: [email protected]

Experience in Application Security
3-5 years

Award / Bug Bounty I prefer:
I assume that you have (1) respect, (2) negotiation skills, & (3) read and understood

I prefer:
Bug Bounty (200-1000 USD/EUR, typically 250)

Halls of Fame:
more will update soon :)

Follow me on:

Ethics and Rules:
#NoobSec #Reboot_ex is required to abide by the ethics and rules of the Open Bug Bounty project. If you reasonably believe that rules are not respected, please report this to us.

Recommendations and Acknowledgements

@novelgames     21 February, 2024
    Twitter novelgames Peter Lee from Novel Games Limited:
Reported an XSS vulnerability in our website
@Minas     25 August, 2023
    Twitter Minas Minas from Ionio:
Thank you for your help in ensuring the security of our domain and its visitors! Your contributions are invaluable.
@franky1302     17 May, 2023
    Twitter franky1302 Frank from AMC:
Thanks Khan Janny for letting us know and fix the issue.
@travelfish     8 March, 2023
    Twitter travelfish Stuart from Travelfish:
Thank you KhanJanny for picking up a couple of XSS and other issues on the site and for forwarding details of them for addressing.
@Falk49392027     17 February, 2023
    Twitter Falk49392027 Falk from Youngbiker:
Thanks for identifying a vulnerability on my site that I was able to resolve thanks to the detailed report!
@mb_mbit     4 February, 2023
    Twitter mb_mbit mb_mbit from MB IT:
Many thanks to KhanJanny for responsibly disclosing an XSS vulnerability on some of my websites. Highly recommended professional!
@zules     20 January, 2023
    Twitter zules Julia from Dead Fish Lungs LLC:
Thank you so much for contacting me about my website vulnerability. I appreciate it!
@QuantShare     12 January, 2023
    Twitter QuantShare Azouz from QS:
Thank you for letting me know about the website vulnerability.
I greatly appreciate your effort.
@Krautli_IT     6 January, 2023
    Twitter Krautli_IT Miguel Dias from Krautli:
Thanks for the help with the vulnerability found on the company page!
@sgenevrier     9 December, 2021
    Twitter sgenevrier Sandrine from Journaldespalaces:
Thank you @Reboot_Ex for its responsible disclosure of an XSS in one of our websites.

Shows the first 10 recommendations. See all.

Please login via Twitter to add a recommendation

Honor Badges

Number of Secured Websites

10+ Secured Websites Badge
50+ Secured Websites Badge
500+ Secured Websites Badge
Web Security Veteran Badge
10+ Websites
50+ Websites
500+ Websites
1000+ Websites

Advanced Security Research

WAF Bypasser Badge
CSRF Master Badge
AppSec Logic Master Badge
Fastest Fix Badge
WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB Badge
OBB Advocate Badge
Improved OBB Badge
Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master Badge
Patch Guru Badge
Patch Lord Badge
Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

10+ Recommends
25+ Recommends
50+ Recommends

Distinguished Blog Author

Distinguished Blog Author Badge
Distinguished Blog Author Badge
Distinguished Blog Author Badge
1 Post
3 Posts
5+ Posts

Research Statistics

Total reports:40809
Total reports on VIP sites:410
Total patched vulnerabilities:4458
Total vulnerabilities on Hold (Open Bug Bounty):10982
Recommendations received:51
Active since:19.09.2017
Top Security Researcher Awards:Gold Star Top Security Researcher of the Month
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Week

Open Bug Bounty Certificate

Researcher Certificate

Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

No posts in blog yet

  Latest Patched


  Latest Blog Posts

04.12.2023 by BAx99x
Unmasking the Power of Cross-Site Scripting (XSS): Types, Exploitation, Detection, and Tools
04.12.2023 by a13h1_
$1120: ATO Bug in Twitter’s
04.12.2023 by ClumsyLulz
How I found a Zero Day in W3 Schools
04.12.2023 by 24bkdoor
Hack the Web like a Pirate: Identifying Vulnerabilities with Style
04.12.2023 by 24bkdoor
Navigating the Bounty Seas with Open Bug Bounty

  Recent Recommendations

    27 February, 2024
Dipu1a helped notify us of a possible link exposure so we could remedy it quickly to avoid any issues.
    27 February, 2024
Reported 2 vulnerabilities in our website.
    27 February, 2024
Reported 4 vulnerabilities in our website.
    27 February, 2024
Pooja found a bug on our website that would have allowed an XSS attack. After contacting Pooja we promptly received a clear and detailed description making it easy for us to fix the issue within minutes and we also took the opportunity to revise our security concept.

We appreciate Pooja’s professional conduct. Clear replication steps and prompt responses meant we were able to patch quickly.
    24 February, 2024
Reported an XSS vulnerability in our website.