About Hall of Fame Methodology Contact
// Security Researcher & BugBounty Hunter

MUHAMMAD
ZEESHAN

Web Application Security  ·  Responsible Disclosure  ·  Bug Bounty

Specialized in uncovering high-severity vulnerabilities across global platforms — from government agencies to enterprise technology. Turning security gaps into trust.

Hall of Fame Get In Touch
rana_zeeshan@zeeshan.id ~ % whoami → security_researcher
Scroll
Profile

Who I Am

I am Muhammad Zeeshan, a security researcher and bug bounty hunter with a sharp focus on web application vulnerabilities and responsible disclosure. My goal is to identify critical security weaknesses before they can be exploited.

My work has earned Hall of Fame recognition from NASA, the US Department of Commerce, Air Canada, Xsolla Inc, and TNS — reflecting a consistent ability to find real, high-impact issues across diverse environments worldwide.

Every engagement is approached with precision and professionalism. From deep recon to a clean final report, I am committed to making the systems I test genuinely more secure.

const researcher = {
  focus: "web_application_security",
  approach: "responsible_disclosure",
  impact: "high_severity_findings"
}

Core Competencies
Web App Pentesting
XSS & Injections
Auth Bypass
SSRF & XXE
API Security
IDOR & BAC
Recon & OSINT
Business Logic
CSRF & CORS
Subdomain Enum
Proficiency
Web Application Testing95%
Recon & OSINT90%
API Security88%
Vulnerability Research92%
Recognition

Hall of Fame

Recognized by leading organizations across government, aviation, fintech, and enterprise technology for responsible disclosure of verified security vulnerabilities.

NASA
NASA
Hall of Fame
US Department of Commerce
US Dept. of Commerce
Hall of Fame
Air Canada
Air Canada
Hall of Fame
Xsolla Inc
Xsolla Inc
Hall of Fame
TNS
Transaction Network
Services
Hall of Fame
Process

How I Hunt

01
Recon & Enumeration
Deep target reconnaissance — subdomain discovery, endpoint mapping, JavaScript analysis, and technology fingerprinting to map the complete attack surface.
02
Vulnerability Analysis
Systematic testing against OWASP Top 10 and beyond — authentication flaws, injection points, broken access controls, and complex business logic vulnerabilities.
03
Exploitation & PoC
Crafting clean, reproducible proof-of-concept exploits that demonstrate real-world impact and communicate severity clearly and accurately to security teams.
04
Responsible Disclosure
Structured reports with CVSS ratings, exact reproduction steps, impact assessment, and clear actionable remediation recommendations for every finding.
05
Remediation Support
Working alongside security teams through the fix cycle — verifying patches, clarifying findings, and ensuring vulnerabilities are fully and correctly resolved.
06
Continuous Research
Staying ahead through ongoing CVE analysis, CTF competitions, and deep engagement with the global vulnerability research and bug bounty community.
Contact

Get In Touch

Have a private program invitation, security consultation inquiry, or want to discuss a collaboration? I respond to all legitimate inquiries within 24–48 hours.

Direct Email
security@zeeshan.id