Daniel Púa

Malaga, Andalusia, Spain
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Daniel Púa is an offensive security leader with 8+ years of hands-on experience in bug bounty, penetration testing, and security consulting across web, mobile, APIs and embedded systems, currently heading security at Magnific (formerly Freepik). He builds and runs end-to-end security programs—threat detection, incident response, WAF/EDR deployments and automated vulnerability workflows—while keeping security aligned to business goals. A seasoned CTF competitor and member/mentor of Spain’s ECSC team, he blends competitive exploit skills with practical engineering, authoring popular tools like nomore403 (1.6k+ stars), debugHunter and pwny.cc that embody his “if it parses, it breaks” mindset. Based in Málaga, he combines leadership and research: still active as an independent security researcher for bug bounty and pentest engagements, and an organizer in the local infosec community.
code7 years of coding experience
job7 years of employment as a software developer
bookAdvanced Technician in Networked Computer Systems Administration (ASIR), Administración de sistemas informáticos en red, Advanced Technician in Networked Computer Systems Administration (ASIR), Administración de sistemas informáticos en red at Colegio Salesianos San Ignacio
bookTechnician in Microcomputer Systems and Networks (SMR), Sistemas Microinformáticos y redes, Technician in Microcomputer Systems and Networks (SMR), Sistemas Microinformáticos y redes at I.E.S. Fernando Aguilar
languagesSpanish, English
github-logo-circle

Github Skills (6)

pentesting10
bypass10
web-security10
http10
go10
pentest10

Programming languages (3)

ShellGoPython

Github contributions (5)

github-logo-circle
devploit/nomore403

Aug 2021 - Sep 2022

Tool to bypass 403/40X response codes.
Role in this project:
userBack-end Developer & Security Engineer
Contributions:5 releases, 2 reviews, 48 commits in 1 year 1 month
Contributions summary:Daniel primarily contributed to the development of the `nomore403` tool, focusing on bypassing 40X response codes. Their work involved modifying the core logic to incorporate methods for bypassing these codes, including implementing different request types and headers. They also improved the tool by fixing misconfigurations and implementing security enhancements such as handling self-signed certificate errors and custom IP bypass functionality.
offensive-securitybugbountyctfpentestwaf-bypass
devploit/pentesting-wiki

Sep 2020 - Oct 2021

Contributions:62 commits, 60 pushes, 1 branch in 1 year
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Daniel Púa