Platform update: please use our 
geeknik
Top Security Researcher of the Month
Top VIP Security Researcher of the Month | Security Researcher Profile
Security researcher geeknik has already helped fix 10764 vulnerabilities.
Researcher reputation: 430
Real name:
Brian Carpenter
About me:
Geeknik Labs is a security research lab operating from Oklahoma since 1999. Our primary mission is to make the Internet safer for everyone around the world. We believe that all technology contains flaws and that the public plays a crucial role in identifying these flaws. Our research into open source software alone has helped better secure the likes of OpenSSL, Firefox, PHP, Perl, libxml2, libpng, tcpdump, libcurl, and more, resulting in almost 200 security advisories since 2016.
Contact email:
[email protected]
Alternative Contacts:
https://geeknik-labs.com/
Certifications & Diplomas:
High school graduates and college dropouts.
Experience in Application Security
over 5 years
Award / Bug Bounty I prefer:
If you're feeling generous:
CashApp: https://cash.app/$geekniklabs
PayPal: https://paypal.me/geeknik
Amazon Gift Cards: https://amzn.to/3mO1lKw
Or your favorite cryptocurrency..
Thank you!
Halls of Fame:
https://bugcrowd.com/geeknik
https://cs.detectify.com/profile/geeknik
https://hackerone.com/geeknik
https://huntr.dev/users/geeknik/
https://www.intigriti.com/researcher/profile/geeknik
Follow me on:
Twitter
Ethics and Rules:
Brian Carpenter is required to abide by the ethics and rules of the Open Bug Bounty project. If you reasonably believe that rules are not respected, please report this to us.
Recommendations and Acknowledgements | Full List:
18 July, 2020
avulatharun5531 @avulatharun5531 :| I am really big fan of you bro. You are my inspiration |
3 April, 2020 KenDennis Ken from KDTS:| Brian helped to identify an XSS Vuln on a client's wordpress implementation and was quick and helpful to respond to our query. With his notes, we were able to quickly mitigate this issue and we appreciate his help and professionalism. |
2 March, 2020 phistrom Phillip from The Stromberg Group:| Really appreciate your help identifying an XSS exploit on our website. Your responsible disclosure and example URL allowed us to immediately find and correct the problem. Thank you for helping us keep the internet safe. |
26 February, 2020 reinisroz Reinis Rozenbergs from Orion:| Our product was made long time ago and quite a lot of issues has not been addressed. Thanks for pointing out the problem! Means a lot! |
31 January, 2020 eingemaischt Philipp from imi:| Thank you for reporting a XSS vulnerability on our portal. We were able to reproduce and fix it within 2 days. |
22 January, 2020 uwatmosscicomp1 David Warren from University of Washington:| Thanks for reporting our security problem. You were very helpful in finding, and fixing it. |
12 January, 2020 digiguide Dan from Digiguide.tv:| Thank you so much for your report; it was wonderful to get an email responsibly informing us of an issue which we fixed within a few hours of receiving notification. We are very grateful to you, thanks! |
11 January, 2020 karim_ouda Karim from QuranAnalysis:| Thanks geeknik for your report, in addition to fixing the vulnerability I learned something new as well |
3 December, 2019 nickwest Nick West from University of Washington Information School:| Brian responded to my request for details very quickly and was nothing but professional. He shared details that allowed us to quickly fix the issue the geeknik team discovered. Really great talking with him and appreciate the work! |
3 December, 2019 nickwest Nick West from University of Washington Information School:| Brian responded very quickly with detailed information that allowed us to quickly fix the exploit that the folks at Geeknik Labs discovered. Perfectly professional and a complete pleasure to communicate with. |
2 December, 2019 Kol_Fish Kolby from Undisclosed:|
Brian was a pleasure to work with. Due to his concise, well explained report of a misconfiguration on my site, I was able to quickly patch the site, and rotate the exposed credentials. Brian was prompt in responding to my requests for additional information, allowing me to determine the scope of the leaked information and who may have accessed it. He is definitely a top tier security researcher. Thanks a ton! |
26 November, 2019 notinhalloffame Theodore from NotinHallofFame:| Thanks for the report, and working with me to recreate it on my end so I could patch it properly. |
7 November, 2019 themattrauch Matt from eagle.ca:| Brian spotted a misconfiguration on one of our websites that would leak information that could be used maliciously. Brian explained the issue clearly and concisely and was excellent at explaining what needed to be done to resolve the issue. Thank you Brian, excellent work! |
3 August, 2019 NewLineHorizon1 Melisa from NewLineHorizon:|
Dear, Thanks for participating in responsible disclosure program. The reports you submitted were extremely helpful to our team and provided us the details we needed to resolve the issues that you identified. We are deeply committed to provide a safe and secure experience to our users and are therefore grateful for your efforts to help us improve our services. Best Regards! |
26 July, 2019 ToonPlanet Young J. from Behr Paint:| Thanks for the report of the security research. This helped to find and fix the problem. |
1 July, 2019 twoucan Twoucan Support from Twoucan:|
In your report, I was able to fix the vulnerability due to misconfiguration. Thank you. |
27 June, 2019 RMV1983 Michael from eduvdom:| Thanks for the report of the security research. This helped to find and fix the problem. |
14 May, 2019 wirismath Sonia Gago from WIRIS MATH:| Hello, @geeknik! We want to thank you for your vulnerabity report. Thanks to your information and collaboration, we could fix a security issue in one of our websites. Great job! |
9 April, 2019 mardigr Mardi from Higher Education:| Brian notified us responsibly in relation to an issue with one of our websites. Upon seeking further information, his response was prompt and thorough. I see one if his goals is to 'to help make the Internet safer for everyone, near and far'. He is certainly doing this, thank you Brian! |
5 April, 2019 tropicaljeremy Jeremy C from Montessori Services:| Brian notified us of a vulnerability, responding immediately via email with further details, so we could remedy it. Professional and clear communication. No expectation of payment. He's one of the GOOD guys! |
25 March, 2019 jleproust Julien L from Diwi:|
Brian has responsibly reported a misconfiguration on one of my servers that could have led to sensitive information disclosure. He clearly and quickly explained the issue and its potential implications, and made it clear he did not expect anything for this. Brian is a true internet hero, we need more people like Geeknik. Thanks a lot for making the internet safer. |
Honor Badges
Number of Secured Websites
 |
|
|
 |
|
10+ Websites
|
50+ Websites
|
500+ Websites
|
WEB SECURITY VETERAN
1000+ Websites
|
Advanced Security Research
 |
 |
 |
 |
|
WAF Bypasser
|
CSRF Master
30+ Reports
|
AppSec Logic Master
30+ Reports
|
Fastest Fix
Fix in 24 hours
|
Outstanding Achievements
 |
 |
 |
|
|
Secured OBB
|
OBB Advocate
|
Improved OBB
|
Commitment to Remediate and Patch
 |
|
|
|
|
Patch Master
55% Patched
|
Patch Guru
65% Patched
|
Patch Lord
75% Patched
|
Recommendations and Recognition
 |
|
|
|
|
REPUTABLE
10+ Recommends
|
FAMOUS
25+ Recommends
|
GLOBALLY TRUSTED
50+ Recommends
|
Distinguished Blog Author
 |
|
|
|
|
1 Post
|
3 Posts
|
5+ Posts
|
Research Statistics
| Total reports: | 42143 |
| Total reports on VIP sites: | 1257 |
| Total patched vulnerabilities: | 10764 |
| Recommendations received: | 21 |
| Active since: | 14.07.2015 |
| Top Security Researcher Awards: | 
Top Security Researcher of the Month
Top Security Researcher of the Month
Top Security Researcher of the Month
Top Security Researcher of the Month
Top Security Researcher of the Month
Top Security Researcher of the Month
Top Security Researcher of the Month |
| Top VIP Security Researcher Awards: | 
Top VIP Security Researcher of the Month
Top VIP Security Researcher of the Month
Top VIP Security Researcher of the Month
Top VIP Security Researcher of the Month
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week
Top VIP Security Researcher of the Week |
Open Bug Bounty Certificate
Reported Vulnerabilities
All Submissions VIP SubmissionsFeatured Submissions
| Domain | Reported | Status | Type |
|---|
07.05.2024 
Please login via Twitter to add a recommendation