M0r3h4x | Security Researcher Profile
Security researcher M0r3h4x has already helped fix 837 vulnerabilities.
Researcher reputation: 60
Real name:
Charafeddine Nassiri
About me:
19 years old Moroccan security researcher / Sysadmin / bug bounty hunter
How to contact me:
Email : [email protected]
Certifications & Diplomas:
LFCS Certification
RHSA Certification
Comptia Cloud Certification
Comptia Linux Certification
Experience in Application Security
< 1 year
Award / Bug Bounty I prefer:
If you feel like to thank me with something extra for my time I really appreciate the following:
_ Bug Bounty: Paypal "Because i'm broke"
_ Acknowledgement certificate
Halls of Fame:
Opentext : https://goo.gl/Wr46FU
Postimages : https://goo.gl/d2ZW8D
Sony : https://goo.gl/ZarA3R
Sunet : https://goo.gl/N32cgq
AT&T : https://goo.gl/uB7BCS
Recommendations and Acknowledgements
15 February, 2018
BudTerence5 Hendrik from Mahr:| Thanks to Charafeddine for the great researching and useful report. Great work! |
5 February, 2018 sdecosse Stefan from Payworks:| Reported an XSS vulnerability on one of our sites, provided detailed information and was great to work with. Thank you! |
27 October, 2017
10 October, 2017 ziduniwien Computer Center from University of Vienna:|
Dear Charafeddine Nassiri, The University of Vienna would like to thank you for your valuable contribution in finding multiple website security issues. Your input is highly welcome and helps to raise the security level of our educational institution. Servus and greetings from Vienna, Austria. |
29 September, 2017 andy_chian Andy from Autofusion:| Charafeddine helped us locate several XSS vulnerability on our sites, and we were able to patch the issue. Thanks. |
22 August, 2017 LegendaryNemean Amigo from Amigo:| Recommended a security change due to XSS. Detailed feedback and information. |
Awards and Achievements
Number of Secured Websites
 |
|
|
 |
|
10+ Websites
|
50+ Websites
|
500+ Websites
|
WEB SECURITY VETERAN
1000+ Websites
|
Advanced Security Research
 |
 |
 |
 |
|
WAF Bypasser
|
CSRF Master
30+ Reports
|
AppSec Logic Master
30+ Reports
|
Fastest Fix
Fix in 24 hours
|
Outstanding Achievements
 |
 |
 |
|
|
Secured OBB
|
OBB Advocate
|
Improved OBB
|
Commitment to Remediate and Patch
 |
|
|
|
|
Patch Master
55% Patched
|
Patch Guru
65% Patched
|
Patch Lord
75% Patched
|
Recommendations and Recognition
 |
|
|
|
|
REPUTABLE
10+ Recommends
|
FAMOUS
25+ Recommends
|
GLOBALLY TRUSTED
50+ Recommends
|
Research Statistics
| Open Bug Bounty Certificate: | Download |
| Total reports: | 2370 |
| Total reports on VIP sites: | 220 |
| Total patched vulnerabilities: | 837 |
| Total vulnerabilities on Hold (Open Bug Bounty): | 5 |
| Recommendations received: | 6 |
| Active since: | 21.03.2017 |
| Top VIP Security Researcher Awards: | 
Top VIP Security Researcher of the Week |
Reported Vulnerabilities
All Submissions VIP Submissions
| Domain | Reported | Status | Type |
|
06.07.2018
|
On Hold
|
Cross Site Scripting |
|
|
03.07.2018
|
On Hold
|
Cross Site Scripting |
|
|
03.07.2018
|
On Hold
|
Cross Site Scripting |
|
|
03.07.2018
|
On Hold
|
Cross Site Scripting |
|
|
03.07.2018
|
On Hold
|
Cross Site Scripting |
|
|
03.07.2018
|
patched
|
Cross Site Scripting
|
|
|
20.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
20.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
19.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
patched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
|
|
18.04.2018
|
unpatched
|
Cross Site Scripting
|
24 July, 2018
23 July, 2018
18 July, 2018
18 July, 2018
17 July, 2018
Please login via Twitter to add a recommendation