chintan | Security Researcher Profile
Security researcher chintan has already helped fix 141 vulnerabilities.
Researcher reputation: 30
Real name:
chintan
About me:
WebApp penetration tester
Contact email:
chintankdesai07[at]gmail[dot]com
Experience in Application Security
1-3 years
Award / Bug Bounty I prefer:
Mostly stickers
Follow me on:
Twitter
Ethics and Rules:
chintan is required to abide by the ethics and rules of the Open Bug Bounty project. If you reasonably believe that rules are not respected, please report this to us.
Recommendations and Acknowledgements
Thank you for your great work and professional report! You found a vital security issue, that allowed us to move forward to our development ! Thank you again for your time and dedication! |
I had a pleasure to work with Chintan for a short period. Chintan has discovered a vulnerability on our website and showed excellent communication skills and attention to detail. I believe Chintan has strong practical and theoretical knowledge of Owasp Top 10 vulnerabilities. I am sure he will discover more vulnerabilities during his career as a penetration tester and help the owners to close those vulnerabilities proactively. |
Honor Badges
Number of Secured Websites
|
|
|
|
10+ Websites
|
50+ Websites
|
500+ Websites
|
WEB SECURITY VETERAN
1000+ Websites
|
Advanced Security Research
|
|
|
|
WAF Bypasser
|
CSRF Master
30+ Reports
|
AppSec Logic Master
30+ Reports
|
Fastest Fix
Fix in 24 hours
|
Outstanding Achievements
|
|
|
|
Secured OBB
|
OBB Advocate
|
Improved OBB
|
Commitment to Remediate and Patch
|
|
|
|
Patch Master
55% Patched
|
Patch Guru
65% Patched
|
Patch Lord
75% Patched
|
Recommendations and Recognition
|
|
|
|
REPUTABLE
10+ Recommends
|
FAMOUS
25+ Recommends
|
GLOBALLY TRUSTED
50+ Recommends
|
Distinguished Blog Author
|
|
|
|
1 Post
|
3 Posts
|
5+ Posts
|
Research Statistics
Total reports: | 261 |
Total reports on VIP sites: | 27 |
Total patched vulnerabilities: | 141 |
Recommendations received: | 3 |
Active since: | 24.02.2016 |
Reported Vulnerabilities
All Submissions VIP SubmissionsFeatured Submissions
Domain | Reported | Status | Type |
---|
07.02.2019 Reporting CSRF via Openbugbounty
The website is vulnerable to CSRF because there is no use of Anti-CSRF tokens in the website but the main focus of this post is how to submit a proper CSRF report via OBB because in the start OBB couldn't reproduce the CSRF reports and they all went to the rejected section in my case and in result making this post. Not only for bounty but you’ll get the idea what important things we should keep in our mind when making a detailed CSRF report.
Please login via Twitter to add a recommendation