Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 257,178 coordinated disclosures
153,920 fixed vulnerabilities
207,723 websites, 17,218 VIP websites
6,873 researchers, 6,915 subscribers

OOS | Security Researcher Profile


Security researcher OOS has already helped fix 168 vulnerabilities.



Researcher reputation:  240

Real name:
Adel B.

About me:
Bug hunter,
Security researcher ,
Independent security consultant (web/desktop app).
Exploit developer (python) intermediate level,

I only love RCE and Buffer overflow.

I already have alerted Owner but no response ( http://overflowzone.com/archive/attacker/44/ )!!
Owner who dose not care about his users or his system or network, never deserve success.
put your users in top of your priority if you really want to success in your business, it's only my point of view.

How to contact me:
[email protected]

Alternative Contacts:
[email protected]

Certifications & Diplomas:
OSCP

Experience in Application Security
3-5 years

Award / Bug Bounty I prefer:
Feel free to provide Bug Bounty:
PayPal wallet: [email protected]
BTC Wallet Address : 3APJqtYX6h8dcCWj9njhuK63Y7CgWabS9g
Hall of fame,
Certification of appreciation,
It's simply to add a public

Halls of Fame:
europa
cpanel.com/cpanel-security-hall-of-fame/
www.studis-online.de/Interna/impressum.php#danke
www.geeksforgeeks.org/certificates/#Appreciation
support.teamhively.com/

Follow me on:
Twitter

Recommendations and Acknowledgements

    18 July, 2018
     hikingsite Raymond from Hiking-site.nl:
Thanks a lot Adel to help me to improve the security of my website. Your examples were very clear and to the point and your follow-up very thorough. Keep up the good work to make the internet a safer place!
    8 August, 2018
     fotoloco1 Blaise from fotoloco:
Excellent job in identifying a vulnerability on my site: thanks!
    16 July, 2018
     teamhively Julian from Hively:
Thanks very much Adel for the detailed, friendly report of the issue on our site and for the prompt, professional follow up emails.
    9 July, 2018
     JohanAdriaans Johan Adriaans from Shoppagina:
Thanks for finding the XSS bug and the quick and clean report. Keep up the good work!
    9 July, 2018
     Nu_Gratis Alexander Mes from NuGratis:
Thanks for pointing out a XSS bug in our website. Quick and good feedback!
    25 June, 2018
     ziduniwien Computer Center from University of Vienna:
Dear OOS,

The University of Vienna would like to thank you for your valuable contribution in finding a website security issue. Your input is highly welcome and helps to raise the security level of our educational institution.

Servus and greetings from Vienna, Austria.
    2 June, 2018
     digisolid Martin Otte from Klik-info.nl:
OOS found a XSS vulnerability on our website. Thank you very much!
    23 May, 2018
     yjacolin yjacolin from GeoRezo:
Thanks for helping discover an XSS bug on our sites. Good work.
    21 May, 2018
     UKClimbing Paul Phillips from UKClimbing:
Thanks for the help highlighting the issue. all sorted now.
    17 May, 2018
     storiesonline Lazeez from WLPC:
Thanks for helping discover an XSS bug on our sites. Good work.

Shows the first 10 recommendations. See all.

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Research Statistics



Open Bug Bounty Certificate:Download
Total reports:802
Total reports on VIP sites:33
Total patched vulnerabilities:168
Total vulnerabilities on Hold (Open Bug Bounty):92
Recommendations received:11
Active since:02.03.2018

Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

Domain Reported Status Type
31.07.2018
On Hold
Cross Site Scripting
30.07.2018
On Hold
Cross Site Scripting
24.07.2018
On Hold
Cross Site Scripting
23.07.2018
On Hold
Cross Site Scripting
21.07.2018
patched
Cross Site Scripting
14.07.2018
patched
Cross Site Scripting
10.07.2018
On Hold
Cross Site Scripting
07.07.2018
patched
Cross Site Scripting
01.07.2018
patched
Cross Site Scripting
08.06.2018
patched
Cross Site Scripting
22.05.2018
patched
Cross Site Scripting
04.05.2018
patched
Cross Site Scripting
29.04.2018
patched
Cross Site Scripting
27.04.2018
patched
Cross Site Scripting
25.04.2018
unpatched
Cross Site Scripting
20.04.2018
patched
Cross Site Scripting
18.04.2018
patched
Cross Site Scripting
14.04.2018
unpatched
Cross Site Scripting
13.04.2018
patched
Cross Site Scripting
24.03.2018
patched
Cross Site Scripting

  Latest Patched

      groupon.cl
    Patched on 20.08.2018
      prnewswire.com
    Patched on 20.08.2018
      diwanmsr.com
    Patched on 20.08.2018
      answers.com
    Patched on 20.08.2018
      thesalarycalculator.co.uk
    Patched on 20.08.2018
      polyvore.com
    Patched on 20.08.2018
      statista.com
    Patched on 20.08.2018
      despegar.com.ar
    Patched on 19.08.2018
      de.statista.com
    Patched on 19.08.2018
      shouldianswer.com
    Patched on 19.08.2018

  Recent Recommendations

    24 July, 2018
     spudstuff:
Tarun is very professional and helpful. His research was exemplary and he comes highly recommended. Thanks Tarun!
    23 July, 2018
     rtournoy:
Siruja provided quick and helpful information which helped us fix the issue. Thank you !
    18 July, 2018
     hikingsite:
Thanks a lot Adel to help me to improve the security of my website. Your examples were very clear and to the point and your follow-up very thorough. Keep up the good work to make the internet a safer place!
    18 July, 2018
     AOKBayern:
Vielen Dank Armin, dass Sie eine Sicherheitslücke an uns gemeldet haben. Wir nehmen solche Dinge sehr ernst und konnten dank Ihren Hinweisen in Zusammenarbeit mit unserem technischen Dienstleister die Sicherheitslücke beseitigen.
    17 July, 2018
     HamRadioOutlet:
Excellent catch! We thought we fixed all XSS on our site but Siruja found one we missed. Even provided extra detail to test it. Thanks!