Summary
Cristian-Alexandru Staicu is a Senior Security Researcher with 13 years of experience specializing in language-based analysis of JavaScript, using static and dynamic program analysis and test generation to find and prevent vulnerabilities in server-side JS. His academic career includes a PhD in security from TU Darmstadt and a tenure-track faculty role at CISPA, and he has transitioned into industry research at Endor Labs. He has uncovered over 40 previously unknown vulnerabilities in server-side libraries—many rated medium to high severity—demonstrating both depth in theory and impact on practice. Based in Oradea, Romania, he blends rigorous academic methods with hands-on security engineering, focusing on tooling and techniques that bridge research and real-world Node.js ecosystems. An often overlooked strength is his track record of mentoring and building reproducible analyses that make complex program-analysis results usable for developers and maintainers.
13 years of coding experience
9 years of employment as a software developer
Master's degree, Computer and Information Systems Security/Information Assurance, Master's degree, Computer and Information Systems Security/Information Assurance at Università degli Studi di Trento
Technischen Universität Darmstadt
Master's degree, Security and Privacy, Master's degree, Security and Privacy at University of Twente
Automation and Computer Science, Automation and Computer Science at Universitatea Politehnica din Timişoara
Master's degree, Security and Privacy, Master's degree, Security and Privacy at EIT Digital Academy