Since I was child I loved technology. But I hadn't a computer until I was 15. I learned to program at my neighbourhood library with paper, a pen, and the C reference book.In my career, I was in theoffensive and defensive part of the development. Idestroyed and created software and systems and worked on hundreds of technologies, sometimes acting as CTO and others ones as CISO.

I started my career as anethical hacker and moved to thedefender's side, little by little.

I have published more than 100 security tools and projects as Open Source. I diddozens of talks worldwide and wrote a networking security book (I'm writing another one).

I worked for top companies in different sectors:Startups, Insurance, Construction Companies, Software Companies, Banks, Governments, Telecommunications, Lawyers, or Internet Service Providers.

I am an expert inPython, REST API Security, and the security life cycle of software. I also have extensive experience and knowledge in software scalability, SecDevOps, automation, architecture design, or Cloud (AWS or Google Cloud, among others).

You can find more details of my career onmy LinkedIn.

Popular repositoriesLoading

1. dockerscandockerscanPublic

   Docker security analysis & hacking tools

   Python 1.4k 201

2. vulnerable-nodevulnerable-nodePublic

   A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of security analyzers tools tools

   JavaScript 461 691

3. aiotasksaiotasksPublic

   A Celery like task manager that distributes Asyncio coroutines

   Python 436 37

4. nosqlinjection_wordlistsnosqlinjection_wordlistsPublic

   This repository contains payload to test NoSQL Injections

   356 67

5. festinfestinPublic

   FestIn - Open S3 Bucket Scanner

   Python 231 33

6. aiohttp-swaggeraiohttp-swaggerPublic

   Swagger API Documentation builder for aiohttp server

   JavaScript 186 82