Alexander Innes

Crowed Sourced Bug Bounties at Bugcrowd

London, England, United Kingdom
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

👤
Senior
🎓
Top School
Alexander Innes is a CREST-certified web application tester with 12 years of hands-on experience in vulnerability research and crowdsourced bug bounty programs, currently working at Bugcrowd from London. He previously led testing teams at ECSC, combining structured security assessments with practical exploit development and remediation guidance. An active open-source contributor, he maintains backend logic for tools like rtfm, a searchable command database he enhanced with authoring, search-by-date and dump features to streamline operator workflows. He balances formal standards knowledge—PCI-DSS, ISO27001 and RFCs—with pragmatic tooling that automates repetitive security tasks. Outside client work he publishes notes on Necurity.co.uk, probes WordPress plugins for flaws, and builds utilities such as RTFM.py to accelerate testing. Comfortable switching between deep technical work and advisory roles, he also keeps learning broadly, from web frameworks to a bit of French.
code11 years of coding experience
bookComputer Security, Computer Security at De Montfort University
github-logo-circle

Github Skills (11)

sqlite10
python10
database-design10
sql9
api8
api-design8
command-line7
cli7
command-line-interface7
git3
version-control3

Programming languages (4)

CPHPRubyPython

Github contributions (5)

github-logo-circle
leostat/rtfm

Feb 2017 - Sep 2017

A database of common, interesting or useful commands, in one handy referable form
Role in this project:
userBack-end Developer
Contributions:1 review, 66 commits, 7 PRs in 6 months
Contributions summary:Alexander primarily focused on developing and maintaining the back-end logic for the "rtfm" project. They implemented an update feature, fixed Vim-related code errors, and added the ability to add and manage references to commands. The user also made improvements, including adding a dump feature, search by date functionality, and author functionality. The user's work involved modifications to the core Python code, and DB setup to enhance the functionality and usability of the command database.
useful-commandsdatabasehandyinteresting
leostat/Necurity.co.uk

Oct 2014 - Mar 2015

Contributions:6 commits, 35 pushes in 5 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Alexander Innes - Crowed Sourced Bug Bounties at Bugcrowd