geeknik Top Security Researcher of the Month Top VIP Security Researcher of the Month | Security Researcher Profile
Security researcher geeknik has already helped fix 10764 vulnerabilities.
Researcher reputation: 430
Real name:
Brian Carpenter
About me:
Geeknik Labs is a security research lab operating from Oklahoma since 1999. Our primary mission is to make the Internet safer for everyone around the world. We believe that all technology contains flaws and that the public plays a crucial role in identifying these flaws. Our research into open source software alone has helped better secure the likes of OpenSSL, Firefox, PHP, Perl, libxml2, libpng, tcpdump, libcurl, and more, resulting in almost 200 security advisories since 2016.
Contact email:
[email protected]
Alternative Contacts:
https://geeknik-labs.com/
Certifications & Diplomas:
High school graduates and college dropouts.
Experience in Application Security
over 5 years
Award / Bug Bounty I prefer:
If you're feeling generous:
CashApp: https://cash.app/$geekniklabs
PayPal: https://paypal.me/geeknik
Amazon Gift Cards: https://amzn.to/3mO1lKw
Or your favorite cryptocurrency..
Thank you!
Halls of Fame:
https://bugcrowd.com/geeknik
https://cs.detectify.com/profile/geeknik
https://hackerone.com/geeknik
https://huntr.dev/users/geeknik/
https://www.intigriti.com/researcher/profile/geeknik
Follow me on:
Twitter
Ethics and Rules:
Brian Carpenter is required to abide by the ethics and rules of the Open Bug Bounty project. If you reasonably believe that rules are not respected, please report this to us.
Recommendations and Acknowledgements | Full List:
I am really big fan of you bro. You are my inspiration |
Brian helped to identify an XSS Vuln on a client's wordpress implementation and was quick and helpful to respond to our query. With his notes, we were able to quickly mitigate this issue and we appreciate his help and professionalism. |
Really appreciate your help identifying an XSS exploit on our website. Your responsible disclosure and example URL allowed us to immediately find and correct the problem. Thank you for helping us keep the internet safe. |
Our product was made long time ago and quite a lot of issues has not been addressed. Thanks for pointing out the problem! Means a lot! |
Thank you for reporting a XSS vulnerability on our portal. We were able to reproduce and fix it within 2 days. |
Thanks for reporting our security problem. You were very helpful in finding, and fixing it. |
Thank you so much for your report; it was wonderful to get an email responsibly informing us of an issue which we fixed within a few hours of receiving notification. We are very grateful to you, thanks! |
Thanks geeknik for your report, in addition to fixing the vulnerability I learned something new as well |
Brian responded to my request for details very quickly and was nothing but professional. He shared details that allowed us to quickly fix the issue the geeknik team discovered. Really great talking with him and appreciate the work! |
Brian responded very quickly with detailed information that allowed us to quickly fix the exploit that the folks at Geeknik Labs discovered. Perfectly professional and a complete pleasure to communicate with. |
Brian was a pleasure to work with. Due to his concise, well explained report of a misconfiguration on my site, I was able to quickly patch the site, and rotate the exposed credentials. Brian was prompt in responding to my requests for additional information, allowing me to determine the scope of the leaked information and who may have accessed it. He is definitely a top tier security researcher. Thanks a ton! |
Thanks for the report, and working with me to recreate it on my end so I could patch it properly. |
Brian spotted a misconfiguration on one of our websites that would leak information that could be used maliciously. Brian explained the issue clearly and concisely and was excellent at explaining what needed to be done to resolve the issue. Thank you Brian, excellent work! |
Dear, Thanks for participating in responsible disclosure program. The reports you submitted were extremely helpful to our team and provided us the details we needed to resolve the issues that you identified. We are deeply committed to provide a safe and secure experience to our users and are therefore grateful for your efforts to help us improve our services. Best Regards! |
Thanks for the report of the security research. This helped to find and fix the problem. |
In your report, I was able to fix the vulnerability due to misconfiguration. Thank you. |
Thanks for the report of the security research. This helped to find and fix the problem. |
Hello, @geeknik! We want to thank you for your vulnerabity report. Thanks to your information and collaboration, we could fix a security issue in one of our websites. Great job! |
Brian notified us responsibly in relation to an issue with one of our websites. Upon seeking further information, his response was prompt and thorough. I see one if his goals is to 'to help make the Internet safer for everyone, near and far'. He is certainly doing this, thank you Brian! |
Brian notified us of a vulnerability, responding immediately via email with further details, so we could remedy it. Professional and clear communication. No expectation of payment. He's one of the GOOD guys! |
Brian has responsibly reported a misconfiguration on one of my servers that could have led to sensitive information disclosure. He clearly and quickly explained the issue and its potential implications, and made it clear he did not expect anything for this. Brian is a true internet hero, we need more people like Geeknik. Thanks a lot for making the internet safer. |
Honor Badges
Number of Secured Websites
|
|
|
|
10+ Websites
|
50+ Websites
|
500+ Websites
|
WEB SECURITY VETERAN
1000+ Websites
|
Advanced Security Research
|
|
|
|
WAF Bypasser
|
CSRF Master
30+ Reports
|
AppSec Logic Master
30+ Reports
|
Fastest Fix
Fix in 24 hours
|
Outstanding Achievements
|
|
|
|
Secured OBB
|
OBB Advocate
|
Improved OBB
|
Commitment to Remediate and Patch
|
|
|
|
Patch Master
55% Patched
|
Patch Guru
65% Patched
|
Patch Lord
75% Patched
|
Recommendations and Recognition
|
|
|
|
REPUTABLE
10+ Recommends
|
FAMOUS
25+ Recommends
|
GLOBALLY TRUSTED
50+ Recommends
|
Distinguished Blog Author
|
|
|
|
1 Post
|
3 Posts
|
5+ Posts
|
Research Statistics
Total reports: | 42143 |
Total reports on VIP sites: | 1257 |
Total patched vulnerabilities: | 10764 |
Recommendations received: | 21 |
Active since: | 14.07.2015 |
Top Security Researcher Awards: | Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month |
Top VIP Security Researcher Awards: | Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week |
Reported Vulnerabilities
All Submissions VIP SubmissionsFeatured Submissions
Domain | Reported | Status | Type |
---|
17.10.2019 The "S" in IOT is for Security
Please login via Twitter to add a recommendation