JOJIN
Available · Thrissur, Kerala, India
JOJIN
JOHN

MERN Stack Intern at Luminar Technolab & Bug Bounty Researcher on YesWeHack.
Building secure, scalable applications — and breaking the insecure ones.

₹1L+
Bounty Earned
4
Valid Reports
6.5
Top CVSS
Jojin John
Status
Open to Work
YesWeHack
Bug Bounty Hunter
Scroll

Jojin John
Who I Am
BUILDING &
BREAKING

I'm a BCA student (entering 3rd year) from Thrissur, Kerala, currently working as a MERN Stack Intern at Luminar Technolab. I'm passionate about building web applications and exploring cybersecurity through real-world practice.

I have hands-on experience in bug bounty programs, identifying and responsibly disclosing vulnerabilities on live systems — including a Business Logic issue that earned a paid bounty on YesWeHack.

My core interests span Web Application Security, API Security, and Full-Stack Development using the MERN stack.

₹1L+
Bug Bounties
3rd Yr
BCA Student
5+
Certifications
OWASP
Top 10 Expert
Advent of Cyber 2023 CRTOM Certified CPPS Certified AI Aware Badge GitHub Foundations GCP Facilitator

Hall of Fame
BUG
BOUNTY
WINS

Real vulnerabilities. Real payouts. Reported responsibly on YesWeHack — protecting systems worldwide.

CWE-840 Business Logic Error — Multiple Bounties + Paid Bounty
CWE-364 Race Condition — Paid Bounty
CVSS Scores up to 6.5 (Medium)
BOUNTY SUMMARY
₹1L+
Total Earned
4
Valid Reports
6.5
Top CVSS Score
2
CWE Types
Paid Bounty Race Condition Bounty
CWE-364 · Race Condition · Paid Reward
Paid Bounty Business Logic Bounty
CWE-840 · Business Logic · Paid Reward
Paid Bounty Business Logic Bounty
CWE-840 · Business Logic · Paid Reward

Career
EXPERIENCE
Luminar Technolab · Kakkanad, Kochi
Full Stack Developer
Intern (MERN)
APR 2026 — MAY 2026

Building responsive web applications using HTML, CSS, JavaScript, and modern UI frameworks. Developing front-end interfaces, learning Node.js/Express.js backend, and using Git & GitHub for version control and collaboration.

MongoDBExpress.jsReactNode.jsBootstrapTailwindGit
YesWeHack · Remote
Independent Security
Researcher
MAR 2025 — PRESENT

Participating in global bug bounty and responsible disclosure programs. Specialized in Business Logic vulnerabilities (CWE-840) and Race Conditions (CWE-364). Using Burp Suite, Nmap, FFUF, and OSINT for vulnerability assessment.

Burp SuiteOWASP Top 10NmapFFUFOSINTAPI Security
🏆 Multiple Bounties · Paid Bounty · Paid Bounty Bounties — CVSS up to 6.5
Google Cloud Skills Boost · India
Cloud Arcade
Facilitator '25
APR 2025 — JUL 2025

Selected as a Facilitator for Google Cloud Arcade (Failtour'25). Mentored peers through hands-on labs. Worked with Compute Engine, Kubernetes, Cloud Run, and AI/ML services. Earned multiple GCP badges.

Compute EngineKubernetesCloud RunGCP AI/ML
Elims College · University of Calicut
Bachelor of
Computer Applications
JUN 2024 — MAY 2028

Pursuing BCA in Computer Science at Elims College of Arts and Science under University of Calicut. Actively applying academic knowledge to real-world full-stack and cybersecurity projects alongside formal education.

Computer ScienceBCA2024–2028

Technical Arsenal
SKILLS &
TOOLS
Frontend
HTML5 / CSS390%
JavaScript82%
React75%
Tailwind / Bootstrap85%
Backend
Node.js / Express72%
MongoDB70%
REST APIs78%
Cybersecurity
Web App Security / OWASP80%
Burp Suite78%
API Security75%
OSINT / Recon72%
Cloud & DevOps
Google Cloud (GCP)65%
Git / GitHub85%
Kubernetes / Cloud Run55%

Let's Connect
GET IN
TOUCH

Actively seeking internship opportunities in full-stack development and cybersecurity. Open to collaborating on secure, scalable applications.

jojin@yeswehack ~ bash
Jojin John