Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 257,178 coordinated disclosures
153,920 fixed vulnerabilities
207,723 websites, 17,218 VIP websites
6,873 researchers, 6,915 subscribers

KhanJanny | Security Researcher Profile


Security researcher KhanJanny has already helped fix 360 vulnerabilities.



Researcher reputation:  240

Real name:
khan janny

About me:
Tech Geek
Beginner Vuln Researcher
Love to find vulnerabilities :) and make some extra :)

How to contact me:
knock me on facebook/twitter otherwise best way to contact me
mail : [email protected]
https://twitter.com/Reboot_Ex
https://facebook.com/bossjannykhan

Alternative Contacts:
https://facebook.com/bossjannykhan
https://twitter.com/Reboot_Ex
mail:[email protected]

Experience in Application Security
3-5 years

Award / Bug Bounty I prefer:
A thanks/profile recommendation will be really appreciated, but if you'd like.
# Bug Bounty ($$$), payoneer ,bank :)
# T-shirts, Sweats, Caps, Stickers, Keychains, Gadgets & Cards.
# Hall of Fame

Halls of Fame:
http://www.techcens.com/security/
https://www.chalk.com/security/
http://www.telekom.com/security/
eset
hpcfactor
unimd
rsvpBOOK.com
patton.com
more will update soon :)

Follow me on:
Twitter

Recommendations and Acknowledgements

    20 August, 2018
     SNTech2 SnTech2 from Sharenet:
Provided quick and helpful information which helped us fix the issue. Thank you !
    19 August, 2018
     prospec51413401 webmaster from OCMS:
It's never fun to hear about a security problem but KhanJanny was polite and prompt with details of the vulnerability, following up on progress and informing me when the issue was resolved. We are very grateful.
    20 July, 2018
     SourceryOne Kristian from SynthDIY.com:
Thank you for helping me with a vulnerability on my site. Your instructions to replacate and fix the problem was easy to follow.
    15 June, 2018
     GuardCardCourse James Montana from HSI:
Khan helped us to point out a security vulnerability on our website. We confirmed and fixed the vulnerability based on his information. It was very helpful.
    12 June, 2018
     EdgeMediaNet Jaye Foucher from EDGE Media Network:
Really appreciate the information on our site vulnerability. This researcher was quick to respond to our questions and we were able to plug the issue. Thank you!
    5 June, 2018
     BrabWijnbouwers Uden from BWB:
To our surprise we received a message that our site had a vulnerability. On our request, details followed quickly. Thanks for your help.
    4 June, 2018
     dynamicfish dynafish from Dynafish:
Found and reported XSS vulnerability. Excellent work and fast contact. Thank you!
    28 May, 2018
     villedebesancon Ville de from Besançon:
Thank you for youre report on our site !
    13 May, 2018
     storiesonline Lazeez from WLPC:
Thanks for helping plug a severe XSS vulnerability in our CMS. Great work. Much appreciated.
    8 May, 2018
     fislerdata MyWorkshops from MyWorkshops:
The researcher was quick to respond and retest the site, showing where a weakness was found so that we were able to quickly fix the XSS issue and prevent future issues.

Shows the first 10 recommendations. See all.

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Research Statistics



Open Bug Bounty Certificate:Download
Total reports:3653
Total reports on VIP sites:45
Total patched vulnerabilities:360
Total vulnerabilities on Hold (Open Bug Bounty):1828
Recommendations received:15
Active since:19.09.2017

Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting
10.08.2018
On Hold
Cross Site Scripting

  Latest Patched

      groupon.cl
    Patched on 20.08.2018
      prnewswire.com
    Patched on 20.08.2018
      diwanmsr.com
    Patched on 20.08.2018
      answers.com
    Patched on 20.08.2018
      thesalarycalculator.co.uk
    Patched on 20.08.2018
      polyvore.com
    Patched on 20.08.2018
      statista.com
    Patched on 20.08.2018
      despegar.com.ar
    Patched on 19.08.2018
      de.statista.com
    Patched on 19.08.2018
      shouldianswer.com
    Patched on 19.08.2018

  Recent Recommendations

    24 July, 2018
     spudstuff:
Tarun is very professional and helpful. His research was exemplary and he comes highly recommended. Thanks Tarun!
    23 July, 2018
     rtournoy:
Siruja provided quick and helpful information which helped us fix the issue. Thank you !
    18 July, 2018
     hikingsite:
Thanks a lot Adel to help me to improve the security of my website. Your examples were very clear and to the point and your follow-up very thorough. Keep up the good work to make the internet a safer place!
    18 July, 2018
     AOKBayern:
Vielen Dank Armin, dass Sie eine Sicherheitslücke an uns gemeldet haben. Wir nehmen solche Dinge sehr ernst und konnten dank Ihren Hinweisen in Zusammenarbeit mit unserem technischen Dienstleister die Sicherheitslücke beseitigen.
    17 July, 2018
     HamRadioOutlet:
Excellent catch! We thought we fixed all XSS on our site but Siruja found one we missed. Even provided extra detail to test it. Thanks!