MitRauch | Security Researcher Profile
Security researcher MitRauch has already helped fix 311 vulnerabilities.
Researcher reputation: 70
Real name:
Tom Graßmann
About me:
No-Budget-Artist // Anarchist // Bug Hunter established 2011
I'm creating art trying to prove that everyones dreams can come true. There is no "I'm outta money", no excuses not to start doing what you love.
Support ideas with providing some Photo/Video/Audio Gear, if you'd like.
Also, if your company is able to see IT as another form of art and acknowledges that every artist needs his freedom to create and grow freely with every new challenge - Maybe you could offer me a job :)
How to contact me:
E-Mail: [email protected]
Twitter: @MitRauch
Unkooperative Schwaben erhalten leider keine detailierten Bug Reports. Hab ich nach 10 Jahren einfach keine Lust mehr drauf. Danke Kirstein.de
Experience in Application Security
over 5 years
Award / Bug Bounty I prefer:
- Gear for my audio/video projects
- Payment (PayPal, Bitcoin)
- Letter of Recommendation
Halls of Fame:
Hacked almost every OttoGroup Website back in 2017 :)
Hacked complete TRADE Software-Systeme GmbH portfolio. Three times.
Session Music, Musik-Produktiv, Thomann, justmusic, kirstein
Follow me on:
Twitter
Recommendations and Acknowledgements


Reported XSS vulnerability with recommendations on how to fix. Very nice! |


Thanks Tom, for pointed out the XSS vulnerability on our website! Your input was very much appreciated! |


Helped fix a XSS bug introduced by us without knowing, very helpful and professional. |


Found a vulnerability in our web shop that we had created ourselves by some stupid action. Replied immediately with details after we got in touch including all that was needed to solve the issue. Friendly contact, quick and professional. |


Very professional and helpful researcher that helped us to patch XSS vulnerabilities. Highly recommended. |
Honor Badges
Number of Secured Websites
![]() |
![]() |
![]() |
![]() |
10+ Websites
|
50+ Websites
|
500+ Websites
|
WEB SECURITY VETERAN
1000+ Websites
|
Advanced Security Research
![]() |
![]() |
![]() |
![]() |
WAF Bypasser
|
CSRF Master
30+ Reports
|
AppSec Logic Master
30+ Reports
|
Fastest Fix
Fix in 24 hours
|
Outstanding Achievements
![]() |
![]() |
![]() |
|
Secured OBB
|
OBB Advocate
|
Improved OBB
|
Commitment to Remediate and Patch
![]() |
![]() |
![]() |
|
Patch Master
55% Patched
|
Patch Guru
65% Patched
|
Patch Lord
75% Patched
|
Recommendations and Recognition
![]() |
![]() |
![]() |
|
REPUTABLE
10+ Recommends
|
FAMOUS
25+ Recommends
|
GLOBALLY TRUSTED
50+ Recommends
|
Distinguished Blog Author
![]() |
![]() |
![]() |
|
1 Post
|
3 Posts
|
5+ Posts
|
Research Statistics
Total reports: | 588 |
Total reports on VIP sites: | 9 |
Total patched vulnerabilities: | 311 |
Total vulnerabilities on Hold (Open Bug Bounty): | 9 |
Recommendations received: | 5 |
Active since: | 13.02.2018 |
No posts in blog yet |
Reported Vulnerabilities
All Submissions VIP SubmissionsFeatured Submissions
Domain | Reported | Status | Type |
---|---|---|---|
11.02.2021
|
On Hold
|
Cross Site Scripting |
|
11.02.2021
|
On Hold
|
Cross Site Scripting |
|
11.02.2021
|
On Hold
|
Cross Site Scripting |
|
11.02.2021
|
On Hold
|
Cross Site Scripting |
|
11.02.2021
|
On Hold
|
Cross Site Scripting |
|
11.02.2021
|
On Hold
|
Cross Site Scripting |
|
11.02.2021
|
On Hold
|
Cross Site Scripting |
|
11.02.2021
|
On Hold
|
Cross Site Scripting |
|
09.02.2021
|
On Hold
|
Cross Site Scripting |
|
26.11.2020
|
patched
|
Cross Site Scripting
|
|
20.09.2020
|
unpatched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
|
15.06.2020
|
patched
|
Cross Site Scripting
|
Please login via Twitter to add a recommendation