API
FAQTop ExpertsChrome Extension
Sign in

Alessio Santoru

Product Engineer

Milan, Lombardy, Italy
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

👤
Senior
Alessio Santoru is a product engineer specializing in security, with eight years of experience and currently focused on security at AWS. Based in Milan, Italy, he combines hands-on development with security research to deliver robust, cloud-native solutions. An active open-source contributor, his work spans offensive security, research, and product security, including enhancements to the shcheck tool such as information-disclosure header checks, optional SSL validation, GET support, and expanded cookie, proxy, and caching capabilities. He has a track record of translating security findings into practical, production-ready protections. His unique mix of product sense and security engineering enables teams to ship secure software at scale in fast-moving environments.
code8 years of coding experience
languagesEnglish, Italian
github-logo-circle

Github Skills (10)

http10
network-security10
urllib10
headers10
python10
security10
tls139
https9
ssl9
tls129

Programming languages (6)

CSSCJavaScriptGoObjective-CPython

Github contributions (5)

github-logo-circle
santoru/shcheck

May 2017 - Nov 2022

A basic tool to check security headers of a website
Role in this project:
userSecurity Engineer
Contributions:16 releases, 8 reviews, 81 commits in 5 years 7 months
Contributions summary:Alessio primarily contributed to enhancing the security aspects of the `shcheck` tool. Their work involved adding features such as information disclosure header checks, the ability to disable SSL certificate validation, and the option to utilize GET requests. Additionally, they implemented support for caching headers and expanded client header capabilities to increase functionality. The user also made improvements to the tool's output and added support for cookies and proxy configurations.
checklistweb-application-securitysecurity-toolsbugbountysecurity
santoru/filewatcher

Jul 2017 - Mar 2021

A simple auditing utility for macOS
Contributions:27 commits, 1 push in 3 years 9 months
auditsecuritymacosmonitoringhardening
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Privacy PolicyPrivacy Data SubjectsTerms of UseDo Not Sell My Info