Researcher reputation:  830

Real name:
SecuNinja

About me:
white-hat and I'm nice :)

How to contact me:
English or German:

[email protected]
https://twitter.com/secuninja

Certifications & Diplomas:
CCNA and others

Experience in Application Security
3-5 years

Award / Bug Bounty I prefer:
Feel free to provide Bug Bounty:
PayPal, Vouchers, BTC, public recognition, tweets or any kind of swag

Halls of Fame:
listed on my website https://secu.ninja

Follow me on:
Twitter

Recommendations and Acknowledgements | Full List:

    29 June, 2017

     1und1 Andreas Maurer from 1&1 Internet:

Secuninja reported a severe vulnerability on our website. He was fast, polite and professional. A great help and much appreciated.

    12 May, 2019

     CouriernetI Alexander Janussek from Couriernet GmbH:

Secuninja helped us fix the vulnerability on our website. He replied to all our emails in a very friendly, professional and patient way. He provided us all the technical details to solve the problems. Thanks a lot for that. Great job.

    1 April, 2019

     cyberday_gmbh DLO from CYBERDAY GmbH:

thanks for reporting

    23 November, 2018

     testberichteDE Andreas S from Testberichte.de:

Hi SecuNinja, thank you very much for your information on our vulnerability! This helps us keeping our website secure.

    12 November, 2018

     Tgirl_Christin Christin Löhner from Akademie für Sport und Gesundheit:

Thanks to SecuNinja, who has found a vulnerability on our website. After claiming the site here on OpenBugBounty and so getting the information about the vulnerability, I was able to fix it in seconds. Thanks again, for hunting! Christin

    10 October, 2018

     GeorgiHristov George Hristov from Webit.org:

Many thanks to SecuNunja for fast and helpful response about problems of our website.

    17 September, 2018

     RajatAr51352684 Rajat from ESCADA SE:

thanks a lot for reporting security vulnerability in our website. Great work and very supportive in case of additional questions.

    12 September, 2018

     endurit1 Christian from endurit gmbh:

Thank you, SecuNinja, for pointing out a vulnerability on one of our websites. And for the professional support.

    17 July, 2018

     winterreise1978 Gregor from Gregor:

Thank you for alerting to an XSS vulneribilty on our site. We fixed it thanks to your alert.

    11 July, 2018

     cms_admin CMSAdmin from European University Viadrina:

Secuninja has helped us to secure our website. Quickly, friendly and most of all professional. Thank You!

    27 June, 2018

     gerryfort Gerry from BikeBug:

Secuninja reported a vulnerability on our website. He was polite to deal with and professional. A great help and much appreciated. Highly recommend!

    20 June, 2018

     medizinfuchs Tobi from medizinfuchs GmbH:

Thank you very much for finding of a XSS Vulnerability on our website! Great job, very competent, friendly and quick replies.

    4 June, 2018

     SPARintheUK Katherine from SPAR UK:

Thanks SecunNinja for highlighting an XSS vulnerability, and for the prompt and friendly interactions

    30 May, 2018

     borox M. Bloch from Mistershoplister.de:

Thank you SecuNinja, for the finding of a XSS Vulnerability on my website! Super job, very competent, friendly and quick replies.

    24 May, 2018

     eulenberger Sven from netclusive GmbH:

Thanks for the great support!

    23 April, 2018

     RealArties RealArties from ASC Computersysteme:

Thank you for finding and reporting an XSS Vulnerability on our website. And thank you SecuNinja for the provided additional informations thus enabling us to fix the issue and make our site safer for our visitors!

    21 April, 2018

     StadlerITS H. Stadler from Stadler ITS:

SecuNinja uncovered a XSS vulnerability in a Magento extension of a shop from one of our clients. The contact with him was very professional and friendly, thanks a lot from our side!

    19 April, 2018

     kevinBaseCom Kevin from Online Commerce:

Thank you for alerting to an XSS vulneribilty on our site

    19 April, 2018

     CONET_Group Simon Vieth from CONET:

Thank you SecuNinja for identifying and reporting an XSS Vulnerability on our website, thus enabling us to fix the issue and make our site safer for us and our visitors! --- Vielen Dank dafür, dass Sie uns auf die XSS-Sicherheitslücke auf unserer Website aufmerksam gemacht und damit dazu beigetragen haben, unsere Seite sicherer zu machen!

    28 March, 2018

     DIASoftware Christopher Meyering from DIA Connecting Software GmbH & Co. KG:

Big "thank you" to SecuNinja for not only finding some XSS-issues in our applications, but also for smart and fast answers!

    27 March, 2018

     Halotho Thomas from UDG:

Thank you for finding an XSS security leak on one of our customers websites.

    20 March, 2018

     feinkonzept Volker from Trion GmbH:

Thanks to SecuNinja for reporting a XSS vulnerability on a website of our client. He is doing a great job and the contact was very friendly and helfpful. Thumbs up!

    19 March, 2018

     Ruegenwalder Thomas from Rügenwalder Mühle:

Thank you SecuNinja for identifying a XSS Vulnerability on our Website. Thanks a lot for your help!

    2 March, 2018

     snudhh Thomas from snud:

Thank you for identifying two XSS Vulnerability on our Websites and the provided additional informations. Very professional ! Thanks a lot !

    27 February, 2018

     ziduniwien Computer Center from University of Vienna:

Dear SecuNinja, The University of Vienna would like to thank you for your valuable contribution in finding multiple website security issues. Your input is highly welcome and helps to raise the security level of our educational institution. Servus and greetings from Vienna, Austria.

    19 February, 2018

     thorp88 Miles from Banana Moon:

Big thanks SecuNinja for reporting a XSS vulnerability and the speedy response!

    11 February, 2018

     Forumotion Team from Forumotion:

Secuninja helped us to fix a XSS vulnerability, very kind, fast and helpful. Many thanks !

    25 January, 2018

     alsoisp Alex from AlSoISP:

Thank you Secuninja for reporting a XSS vulnerability on our website! Danke Secuninja für die Meldung einer XSS-Sicherheitslücke auf unserer Website!

    9 January, 2018

     FabianSchorb Fabian :

Thank you for identifying a XSS Vulnerability on our Website and the provided additional information!

    19 December, 2017

     derhesse47 Thomas Z. from AerzteZeitung:

Secuninja identified an issue on our site. He offered help to fix the problem. Thanks a lot.

    28 November, 2017

     BstockerS Benjamin from SolNet:

We got a a reply from SecuNinja very quickly. He described the XSS Vulnerability very clear so we could fix it. Very friendly contact. Thanks a lot!

    19 November, 2017

     hhilbert66 Heiko from Informunity:

Many Thanks for reporting a XSS vulnerability on our domain. Contact was very friendly and helpful to fix that vulnerability. I recommend him for his good work!

    6 November, 2017

     DerCraig derCraig from somewebsite:

Thanks to @SecuNinja for finding XSS on a customers website! :)

    3 November, 2017

     AckenKuehn F. Kühn from ZZ:

Thanks for closing the XSS vulnerability, fast and professional!

    30 October, 2017

     wiknf Marcel Junemann from nsv-online.de:

Thank you Secuninja for reporting a XSS vulnerability on our website! Much appreciated!

    10 October, 2017

     pixelit Florian from PIXELit:

Secuninja found a XSS vulnarabilty. Contact was helpful and friendly and we werde able to fix the problem quickly. Thanks.

    9 October, 2017

     Gastrodax Philipp from New Gastroline:

Vielen Dank nochmal!

    2 October, 2017

     ARMistice Alexander from BrettspielWelt:

Secuninja found XSS vulnerability on our WebSite, and we are very grateful about pointing out to this problem. He is very friendly, helpful and actively interessted in solving the problems. I recommend him highly for his work!

    28 September, 2017

     seeli Niels from TRIXIE Heimtierbedarf:

Secuninja reported a XSS vulnerability on our website. With the proof of concept the vulnerability was found very fast. He offered to help closing the vulnerability. many thanks!

    21 September, 2017

     NETGAMESGera Markus from NETGAMES.de:

Thank you, Bug is fixed :-)

    19 September, 2017

     ImperiaRZ Michael from Universität Regensburg:

Thank you, secuninja, for reporting a xss vulnerability on one of our Domains. Also thanks and big pespect for your fast response and the professional and cooperative contact.

    4 September, 2017

     hqentertain Dominic from HQ Entertainment Network:

Thanks very much for your researches and your work Secuninja! We really appreciate your hints and your prompt responses. Very professional and good work!

    27 August, 2017

     eventrakete Thomas H. from eventrakete.de:

Many thanks to secuninija! He helped us to find a XSS vulnerability on our website. Keep up the good work!

    24 August, 2017

     FowlerSack andre from iriedaily.de:

thanx for your hint and your good work

    16 August, 2017

     MischkaMcLovin Stegemann from Spion Media GmbH:

Fast response. Great support. Perfect! Thank's a lot!

    10 August, 2017

     ulrich_heck Ulrich Heck from Mirabit GmbH:

Secuninja helped us to make our website safer! Thank you very much!!!

    27 July, 2017

     DIYDoctor James from DIY Doctor:

Spotted an XSS vulnerability on our site and notified us in a very professional and informative manner, what an absolute star!! Hugely recommended for being both knowledgeable and friendly and polite!

    24 July, 2017

     Liquid_Maker Martin from LiquidMaker:

Many thanks to secuninja! He helped me to identify a vulnerability on my page.

    24 July, 2017

     jumkde Juergen from jumk.de:

Many thanks to secuninja for finding and helping to fix a XSS vulnerability.

    12 July, 2017

     wirthundhorn Operator from Wirth & Horn:

Thank you for reporting XSS vulnerabilities on our customers' websites. Keep up the good work, helps us a lot!

    11 July, 2017

     tarif4you Alexander Gut from tarif4you.de:

Thank you very much, Secuninja, for your very professional work. Friendly and quick contact and good explanation about a security vulnerability founded on our website, so we fix it.

    1 July, 2017

     Jett_Rink Stefan from plattentests.de:

Many thanks to secuninja! He helped us to identify a vulnerability on our page.

    29 June, 2017

     telemarkup Florian Bittner from Russmedia Digital:

Secuninja found a XSS vulnerability on one of our clients sites. He treated the issue professional and confidential and was very kind and friendly when we contacted him for details. Thank you very much for all your efforts and keep up the good work!

    16 June, 2017

     cms_admin CMSAdmin from European University Viadrina:

Secuninja helped us to make our website more secure, even when we thought it wouldn't be possible or necessary (well, it always is :) Thank You for your help and professionalism!

    13 June, 2017

     SayYeahNow Christopher from kernpunkt:

You found an XSS vulnerability in one of our clients sites and you handled it very confidential. And also, you gave us the crucial hint. Our customer, and also we, are very happy that we could fix this with your help. Thank you so much!

    7 June, 2017

     tvinfode Admin from TVinfo:

Very fast, friendly and knowledgeable!

    31 May, 2017

     bdiekert Bjoern from Borkenstein Plus:

Secuninja found an XSS vulnerability in one of our clients sites. This was handled very responsible and I'am happy we could fix this. Thank you so much!

    28 May, 2017

     ChrisFr95162402 Chris from Hikma:

Thanks for reporting the vulnerability on our website and assisting in its resolution. An invaluable service.

    20 May, 2017

     vlasceanu_d divsro from AV:

Thank you for reporting a security vulnerability on our website and for giving us the information needed in order to patch it. We really appreciate your help!

    3 May, 2017

     DirkRoehrborn Dirk Röhrborn from Communardo:

Thank you very much for reporting a security vulnerability on our website that allowed us to take action quickly and resolve the issue with the component vendor. Your work ist highly appreciated!

    14 April, 2017

     MarkDatter Jason from Fluke Calibration:

M found a legitimate XSS vulnerability on our site and worked with us to resolve it. We were very grateful for the discovery - thanks!

    27 March, 2017

     MarkZimmermannT Mark from TROX:

Reported XSS vulnerability could be fixed immediately with his help. We are grateful for his help.

    23 March, 2017

     RobmanMK RobmanMK from MK:

Thank you very much for reporting a security vulnerability on our website. Keep up the good work!

    22 March, 2017

     cpjolly Chris from sommer cable:

M really helped us out after he reported the XSS issue with our site and helped us close the vulnerability. Thanks again

Awards and Achievements

Number of Secured Websites

10+ Websites	50+ Websites	500+ Websites	WEB SECURITY VETERAN 1000+ Websites

Advanced Security Research

WAF Bypasser	CSRF Master 30+ Reports	AppSec Logic Master 30+ Reports	Fastest Fix Fix in 24 hours

Outstanding Achievements

Secured OBB	OBB Advocate	Improved OBB

Commitment to Remediate and Patch

Patch Master 55% Patched	Patch Guru 65% Patched	Patch Lord 75% Patched

Recommendations and Recognition

REPUTABLE 10+ Recommends	FAMOUS 25+ Recommends	GLOBALLY TRUSTED 50+ Recommends

Distinguished Blog Author

1 Post	3 Posts	5+ Posts

Research Statistics

Total reports:	7132
Total reports on VIP sites:	328
Total patched vulnerabilities:	3235
Total vulnerabilities on Hold (Open Bug Bounty):	346
Recommendations received:	64
Active since:	13.03.2017
Top Security Researcher Awards:	Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month
Top VIP Security Researcher Awards:	Top VIP Security Researcher of the Week

Open Bug Bounty Certificate