Andrea Brancaleoni is a Senior Security Engineer with 12 years of experience building tooling and secure infrastructure across projects from Brave to freelance engagements. He blends deep backend and DevOps expertise—contributing to high-profile open-source projects like Electron and Burp Suite extensions—with a pragmatic focus on reproducible builds and classloading/debugging fixes. A polyglot coder who enjoys writing Ruby, Andrea manages over a hundred packages for the security-oriented Void Linux distribution and treats infrastructure as code as first-class engineering. His background spans OS security, penetration testing, and automation, with hands-on work to modernize Burp extension APIs and improve GraphQL testing tooling. Colleagues value his ability to operate across the full stack while keeping systems auditable and deterministic. He’s as comfortable profiling Windows toolchains for CI as he is resolving subtle dependency and classpath issues that break security tooling.
12 years of coding experience
6 years of employment as a software developer
Bachelor's degree, Information Technology, Bachelor's degree, Information Technology at Politecnico di Milano
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
Role in this project:
Back-end Developer
Contributions:11 releases, 10 reviews, 144 commits in 2 years 7 months
Contributions summary:Andrea contributed significantly to the `inql` project, focusing on the back-end development aspects of the GraphQL testing tool. Their work involved implementing new features for the tab widgets, refactoring code for improved efficiency by migrating to stringjoins, and removing unused imports and legacy functionality. These changes included modifications to the filetree, omnibar, and tab modules, contributing to the functionality and user experience of the Burp Suite extension.
Contributions:12 commits, 9 PRs, 4 comments in 1 year 5 months
Contributions summary:Andrea primarily focused on enhancing the burp-rest-api, specifically targeting its integration with the Burp Suite security tool. Their contributions included porting the API to support the second-generation Burp extensions API, enabling dynamic loading of the Burp jar and 2nd gen extensions. They also addressed classloading issues, resolved dependencies, and added new features to align with the latest Burp Suite functionalities.
apisecurity-toolssecurityjson-restjson-rest-api
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Andrea Brancaleoni - Senior Security Engineer at Freelance