About

Hey, I’m Moein Erfanian — a security researcher, full-time bug bounty hunter, and developer of hacking tools.

This site is where I share my journey in ethical hacking, security research, and automation. I write about what I learn, bugs I find, and tools I build. Whether it’s hunting for XSS in a massive scope, bypassing WAFs, or writing custom scanners to automate tedious work — I document it all here.

I believe in learning by doing. Every tool, write-up, or post here is the result of late nights, real-world hunting, and trial-and-error.

Some areas I focus on:

• Web application security
• XSS, auth issues, and logic flaws
• Automation & tool development (Python, Bash, etc.)
• Red team–style recon and enumeration
• Program tracking, change monitoring, and asset discovery

I build and maintain several tools for the community, many of which are shared on GitHub. Some are public; some stay private for a while — but everything is made with love for the craft.

If you’re into bug bounty hunting, OSINT, or just love breaking stuff to understand it better — you’ll probably feel at home here.

Welcome to my digital lab.