Clint Gibler is a security research leader and Head of Research with 13 years of experience building AppSec tooling and leading teams across startups, consultancies, and government-focused contractors. He has deep expertise in static analysis, mobile (especially Android) security, and DevSecOps, having led research teams at Semgrep and NCC Group and founded the tl;dr sec newsletter to distill top security research. Clint pairs hands-on technical work—publishing tools, conference talks, and vulnerability research—with product and marketing collaboration to translate findings into practical defenses. He holds a PhD in Computer Science from UC Davis and brings a habit of constant learning (from new programming languages to improv and screenwriting) that fuels creative approaches to security problems.
13 years of coding experience
10 years of employment as a software developer
Doctor of Philosophy (PhD), Computer Science, Doctor of Philosophy (PhD), Computer Science at University of California, Davis
Bachelor of Science (B.S.), Computer Science, Bachelor of Science (B.S.), Computer Science at Case Western Reserve University
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
Contributions:29 PRs, 46 pushes, 48 branches in 3 years
runtimebenchmarksastsecurity-toolsvulnerabilities
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.