An experienced web designer & developer, focused on creating simple and elegant solutions for complex problems. I am passionate about all kinds of web work: graphics design, web apps, frontend & backend development, ecommerce and QA testing.
I spend half of my time as a "maker" (developer) and the other half as "breaker" (pentester). With my expertise in web application & android application security testing and 4+ years of experience, I have helped securing 100s of companies inlcuding Microsoft, Nokia, Samsung, PayPal etc.
Have any amazing idea in your mind? Let's discuss and turn it into reality.
I have been working with Salman for a while now and am yet to meet such a devoted, hardworking and humble human being. I was referred to him by my friend who made me aware of SALMAN's talents. Salman has a great impact on the social media and graphic design aspect of our business. He can both develop and design that is what makes salman so great. I wish him the best with all his future endeavor.
Sameer Alifrom The Waffle Witch
Working with Salman was an absolute pleasure. Finally someone who understood the problems I needed to solve with my website for my customers. Not only that, his after-sales service is also impeccable.
Sana Khan NiaziFounder at Paimona
Working with Salman has been a wonderful experience. Salman is a very talented web designer who combines his aesthetic sense with the latest trends. Definitely going to recommend Salman to anyone and everyone who wants to get a website made or just revamped. He meets all deadlines and works very professionally.
Natasha NaveedFounder at A&N Foundation
We had a great experience with Salman. He did a great job helping us to make our application secure. The security assessment report was done super professional and Salman was very responsive during the project. Highly recommended!
PashaCTO of Ad Tech Startup
We have been very satisfied with the security services provided by Salman Khan. He found many security risks for us. If you care about the security of your web site, Salman will provide fast and reliable service. Highly recommended!
Aytekin TankFounder at Jotform
Salman Khan is one of the most professional guy I have worked with. I was able to get a clean, modern and BEAUTIFUL design + security testing without going over budget.
Benjamin LevitonFounder at Interactify
Thanks for the Fast Delivery. Main thing, I got bunch of logos for selection and edition there. This is awesome service from Salman. It was great experience with him and surely will do more work.
Babar Akhunzadafrom Green Pakistan
Salman Khan reported several security issues in our web application. His report was detailed and thorough enough to help us quickly fix the problem. We highly recommend having Salman review the security of your website. Thank you for your services!
Jared KingCo-Founder at Invoiced
Salman Khan helped us find and fix several bugs and security flaws in our application. Reporting was detailed, informative and very helpful. Would definitely recommend and use again.
Dirk de KockOwner at NVOICE
I would like to recommend Salman for great security job he has done for us. He reported security issues about our site professionally and responsibly. I highly recommend Salman Khan.
David RobinsCEO at BinFire
Have a look at some previous awesome projects that I've done
So this a very simple bug that I found in PayPal back then in January 2015. I guess its Reproduction is the "Smallest Bug Reproduction Ever". Yes! that is right. So the bug is that when someone logs-in to his/her PayPal account, due to some cases i.e Login from unusual location, entering wrong password first and then entering correct password etc...
First of all thanks guys for your good responses on my first ever (previous) writeup. I'm back with another PoC. I don't have much time right now, I wanted to share another PoC but that will take huge time (Don't worry I will write it later) so I have decided to write this one...
I don't usually writeup my issues but I thought I should now starting sharing some of the issues which I've found. I mostly don't participate in Public Bug Bounties. I like to work for private sites. Like two months back, A company asked me to do the security test of their site. As always, I instantly started finding vulnerabilities in their site...
+92 313 1015702
...or send me your message by filling the form below