Brendan Watters is a Staff Researcher and seasoned cybersecurity engineer with over a decade of experience building and hardening offensive and defensive tooling at Rapid7 and in government. He combines deep systems and exploit development expertise—evidenced by contributions to flagship Metasploit projects like meterpreter/mettle and fixes for reverse TCP payloads—with applied research leadership and patent-aware innovation. Brendan’s background spans kernel and userland programming, forensic and network analysis, and developer training, reflecting a rare blend of hands-on code, teaching, and operational tradecraft. Based in the Dallas–Fort Worth area, he has a strong academic foundation (M.S. Computer Science, M.A. in History & Philosophy of Science and Technology) that informs pragmatic, well-documented security solutions. Not obviously apparent from titles alone, he’s contributed nuanced portability and compatibility improvements (UTF-8 registry support, UUID generation, Python3 Windows fixes) to widely used open-source offensive frameworks.
10 years of coding experience
Master of Science (M.S.), Computer Science, Master of Science (M.S.), Computer Science at Florida State University
Master of Arts (M.A.), History and Philosophy of Science and Technology, Master of Arts (M.A.), History and Philosophy of Science and Technology at University of Florida
This is an implementation of a native-code Meterpreter, designed for portability, embeddability, and low resource utilization.
Role in this project:
Back-end Developer
Contributions:22 commits, 16 PRs, 17 pushes in 6 years 5 months
Contributions summary:Brendan implemented and refined several system calls for the `mettle` project, a native-code Meterpreter. Their work focused on adding functionality for process management, including getting process lists, attaching to processes, killing processes, getting process information, and retrieving the current meterpreter PID. These changes involved modifying existing code and integrating with the Sigar library for process-related data retrieval and management. The user also addressed a bug related to how the `tlv_packet_get_u32` function was getting the wrong sized value, further highlighting the user's contributions in improving the underlying framework.
Contributions:520 reviews, 966 commits, 572 PRs in 6 years 11 months
Contributions summary:Brendan's commits focus on rubocop fixes and on fixing the reverse TCP payload. These changes indicate an interest in improving code quality through formatting and cleanup as well as fixing a critical component of an exploit. Further work includes adding new features.
metasploitmetasploit-framework
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.