Loading Image


Salman Khan


Loading Image

Who Am I?

An experienced web designer & developer, focused on creating simple and elegant solutions for complex problems. I am passionate about all kinds of web work: graphics design, web apps, frontend & backend development, ecommerce and QA testing.

I spend half of my time as a "maker" (developer) and the other half as "breaker" (pentester). With my expertise in web application & android application security testing and 4+ years of experience, I have helped securing 100s of companies inlcuding Microsoft, Nokia, Samsung, PayPal etc.

I can work with










Angular JS



What I can do for you

Web Design/Dev

Graphics Design

Security Assessment

Have any amazing idea in your mind? Let's discuss and turn it into reality.

Loading Image

What People Say

I have been working with Salman for a while now and am yet to meet such a devoted, hardworking and humble human being. I was referred to him by my friend who made me aware of SALMAN's talents. Salman has a great impact on the social media and graphic design aspect of our business. He can both develop and design that is what makes salman so great. I wish him the best with all his future endeavor.
Sameer Ali
from The Waffle Witch
Working with Salman was an absolute pleasure. Finally someone who understood the problems I needed to solve with my website for my customers. Not only that, his after-sales service is also impeccable.
Sana Khan Niazi
Founder at Paimona
Salman Khan is an amazing Web Designer. I've met many web designers that either have the knowledge to work a computer or have the ideas to make something look beautiful. With Salman, it's both. His aesthetic sense combined with his skill makes for an amazing combination. I highly recommend Salman. He is patient and manages time really well.
Natasha Naveed
Founder at N.N
We had a great experience with Salman. He did a great job helping us to make our application secure. The security assessment report was done super professional and Salman was very responsive during the project. Highly recommended!
CTO of Ad Tech Startup
We have been very satisfied with the security services provided by Salman Khan. He found many security risks for us. If you care about the security of your web site, Salman will provide fast and reliable service. Highly recommended!
Aytekin Tank
Founder at Jotform
Salman Khan is one of the most professional guy I have worked with. I was able to get a clean, modern and BEAUTIFUL design + security testing without going over budget.
Benjamin Leviton
Founder at Interactify
Thanks for the Fast Delivery. Main thing, I got bunch of logos for selection and edition there. This is awesome service from Salman. It was great experience with him and surely will do more work.
Babar Akhunzada
from Green Pakistan
Salman Khan reported several security issues in our web application. His report was detailed and thorough enough to help us quickly fix the problem. We highly recommend having Salman review the security of your website. Thank you for your services!
Jared King
Co-Founder at Invoiced
Salman Khan helped us find and fix several bugs and security flaws in our application. Reporting was detailed, informative and very helpful. Would definitely recommend and use again.
Dirk de Kock
Owner at NVOICE
I would like to recommend Salman for great security job he has done for us. He reported security issues about our site professionally and responsibly. I highly recommend Salman Khan.
David Robins
CEO at BinFire
Loading Image


Have a look at some previous awesome projects that I've done

It's huge!
I'm doing my best to upload complete portfolio asap

Loading Image


Open Redirect in CPanel

I'm going to write about an open redirect vulnerability that I found in CPanel back in July 2015. This one is pretty simple & easy. CPanel has a file at "/unprotected/redirect.html" that does redirect function & redirects the user after when the user logs-in to the CPanel...

PayPal Account Verification Bypass

So this a very simple bug that I found in PayPal back then in January 2015. I guess its Reproduction is the "Smallest Bug Reproduction Ever". Yes! that is right. So the bug is that when someone logs-in to his/her PayPal account, due to some cases i.e Login from unusual location, entering wrong password first and then entering correct password etc...

How I was able to change any User's Password

First of all thanks guys for your good responses on my first ever (previous) writeup. I'm back with another PoC. I don't have much time right now, I wanted to share another PoC but that will take huge time (Don't worry I will write it later) so I have decided to write this one...

How I Hacked User Accounts through Password Reset

I don't usually writeup my issues but I thought I should now starting sharing some of the issues which I've found. I mostly don't participate in Public Bug Bounties. I like to work for private sites. Like two months back, A company asked me to do the security test of their site. As always, I instantly started finding vulnerabilities in their site...

Loading Image



+92 313 1015702

...or send me your message by filling the form below

Your Message