Ivan Kwiatkowski is a security engineer and seasoned cybersecurity researcher with 12 years of experience, now based in London and currently working at a major tech company. He has led threat research teams at HarfangLab and Kaspersky GReAT, presented at international conferences like RSA, and specializes in reverse engineering, malware analysis and exploit mitigation detection. An active open-source contributor, he built IDA Pro tooling that leverages language models to accelerate reverse engineering and enhanced a PE static analyzer with ATT&CK mapping and Yara rules. Ivan blends deep technical reverse-engineering skills with practical tooling and automation, and his work often bridges academic research, incident response, and developer-focused integrations.
12 years of coding experience
10 years of employment as a software developer
Offensive-Security.com
Master’s degree, Computer science and computer imagery, Master’s degree, Computer science and computer imagery at lSIMA Clermont-Ferrand
IDA plugin which queries language models to speed up reverse-engineering
Role in this project:
Back-end Developer
Contributions:4 releases, 16 commits, 16 PRs in 3 months
Contributions summary:Ivan primarily contributed to the development of an IDA Pro plugin, Gepetto, designed to leverage language models for reverse engineering tasks. Their work focused on integrating the OpenAI API to explain and rename function variables within the IDA Pro environment. Contributions include implementing core functionalities like API interaction, asynchronous request handling, and integrating responses into the IDA interface via comments. They also improved error handling and added support for automatically renaming variables and internationalization of the plugin.
Contributions:216 commits, 12 PRs, 216 pushes in 8 years 1 month
Contributions summary:Ivan focused on improving the output format of the PE analyzer, introducing a generic API and various output formatters including a JSON formatter. They also implemented and enhanced security-related features, such as the detection of exploit mitigation techniques and process hollowing techniques in the binaries, along with adding several Yara rules to detect malicious indicators, including code from the Mimikatz tool. Furthermore, the user contributed to the codebase by creating a Python script that maps Manalyze's output to the ATT&CK framework.
static-analyzerexecutablesanalysismalwareanalyzer
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.