Candice Xie is a founder-led CEO and engineer with eight years of experience building security-focused backend systems and running a Los Angeles-based startup, Veo. She combines an MBA and finance background with hands-on development work, contributing significant open-source tooling for web vulnerability scanning and WebSocket-based memory shell technologies. Her GitHub work shows deep expertise in pragmatic security features—integrating exploit modules for widespread flaws like Log4j and optimizing proxy/command execution for performance and larger transfers. Comfortable at the intersection of product, finance, and low-level security engineering, she drives both business strategy and technical execution. Colleagues describe her as entrepreneurial and technically curious, blending startup grit with an attention to secure, auditable systems.
8 years of coding experience
Bachelor of Science (B.S.) with Distinction, Finance, Bachelor of Science (B.S.) with Distinction, Finance at Purdue University
Bachelor of Science (B.S.), Finance, General, Bachelor of Science (B.S.), Finance, General at China Agricultural University
Master of Business Administration - MBA, Master of Business Administration - MBA at University of Chicago
Exchange Student, Finance, General, Exchange Student, Finance, General at National Chung Hsing University
Contributions:22 releases, 3 reviews, 246 commits in 1 year 4 months
Contributions summary:Candice primarily contributed to the website vulnerability scanning tool by adding several features and security enhancements. They incorporated functionalities for detecting vulnerabilities such as remote code execution (RCE) and file inclusion, while also addressing code improvements and bug fixes. The user's commits are heavily focused on integrating exploit modules for popular vulnerabilities, including Log4j, and expanding the tool's capabilities to cover additional security checks, as well as improving the features of admin brute.
Contributions:84 commits, 3 PRs, 80 pushes in 5 months
Contributions summary:Candice primarily focused on implementing and modifying components related to WebSocket proxy and command execution functionality. They developed JSP files for WebSocket-based proxying, allowing connections to external servers, and for executing system commands. Furthermore, they addressed identified issues (fixes), and optimized the code to support larger file transfers, demonstrating a focus on core functionality and performance.
websocketweblogicproxywebshellmemshell
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.