Dmitry Roshchin

Infrastructure Security Engineer at inDrive

Novi Sad, Vojvodina, Serbia
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

👤
Senior
Dmitry Roshchin is an infrastructure security engineer with over 15 years in network and application security and 11 years of focused professional experience across roles from network specialist to infrastructure security lead. He has led security initiatives at Merlion for more than a decade and now secures infrastructure at inDrive, combining pentesting, coding, and hands-on operations. Dmitry contributes to notable open-source tooling—adding memcache injection, reflected file download and cleartext-password-detection plugins to the well-known w3af web vulnerability scanner—underscoring practical expertise in web app vulnerability detection. He is increasingly focused on container security and DevSecOps, applying broad knowledge of security technologies to harden cloud-native environments. Based in Novi Sad, Serbia, he blends deep technical troubleshooting with pragmatic engineering leadership, often turning research findings into production-grade detection capabilities. Colleagues rely on him for tough root-cause analysis and for translating complex attack techniques into actionable defenses.
code11 years of coding experience
languagesEnglish, Russian
github-logo-circle

Github Skills (5)

scanner10
python10
security10
testing9
sql-injection7

Programming languages (5)

TypeScriptJavaShellGoPython

Github contributions (5)

github-logo-circle
andresriancho/w3af

Sep 2014 - Dec 2014

w3af: web application attack and audit framework, the open source web vulnerability scanner.
Role in this project:
userSecurity Engineer
Contributions:7 commits, 2 PRs, 3 comments in 2 months
Contributions summary:Dmitry contributed significantly to the w3af project, a web application security scanner, by implementing a new plugin for memcache injection vulnerabilities and a reflected file download (RFD) vulnerability. They also added a plugin to detect cleartext password submissions. Moreover, the user made changes to existing plugins and unit tests, enhancing the project's ability to identify and assess security weaknesses in web applications. This indicates an active role in improving the framework's vulnerability detection capabilities.
bugbountyweb-applicationmethodologysecurity-toolsvulnerabilities
nixwizard/kube-alien

Apr 2019 - May 2021

Contributions:4 commits, 3 pushes, 1 branch in 2 years 1 month
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Dmitry Roshchin - Infrastructure Security Engineer at inDrive