Josh Grossman

Consultant

Israel
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
Josh Grossman is an InfoSec consultant based in Israel with 10 years' hands-on experience securing web and mobile applications. He combines back-end engineering skills with practical security testing—contributing to high-profile open-source projects like OWASP Juice Shop and Needle—where he implemented API tests, hardening headers, and iOS keychain/plist analysis tools. His work on OWASP ASVS shows fluency in standards and documentation, having improved report generation and introduced a flat JSON export of requirements. Colleagues know him by the handle TGhostH and he brings a pragmatic mindset: if you can break a system, you should also be able to fix it. He blends technical depth with a tester’s curiosity, often tackling both tooling and configuration to raise security posture.
code10 years of coding experience
stackoverflow-logo

Stackoverflow

Stats
1reputation
0reached
0answers
0questions
github-logo-circle

Github Skills (17)

javascript10
ios10
python10
back-end-development10
security10
application-security10
owasp10
pandoc10
documentation10
api-testing10
testing9
json9
apidoc8
api8
nodejs8

Programming languages (23)

MDXC#JavaCSSHandlebarsVueGoHTML

Github contributions (5)

github-logo-circle
OWASP/ASVS

Dec 2018 - Jan 2023

Application Security Verification Standard
Role in this project:
userTechnical Writer & Security Engineer
Contributions:1 release, 307 reviews, 759 commits in 4 years 1 month
Contributions summary:Josh primarily focused on improving the documentation and generation scripts for the OWASP ASVS project. They updated the report generation template and scripts, added detailed explanations for the DOCX generation process, and integrated a new flat JSON format for exporting requirements. The commits also involved modifying the `asvs.py` file, suggesting a deeper understanding of the project's underlying security principles and data structures.
application-securitysecuritysecurity-testingintegritymethodology
WithSecureLabs/needle

Sep 2016 - May 2017

The iOS Security Testing Framework
Role in this project:
userMobile Developer (iOS)
Contributions:78 commits, 30 PRs, 62 comments in 8 months
Contributions summary:Josh primarily contributed to the iOS security testing framework, Needle. Their work involved modifying and adding modules focused on iOS-specific tasks. This included updating the jailbreak detection module description, enhancing the pasteboard monitoring module, and adding and updating plist file dumping and analysis features. The user also integrated a new keychain dumping tool.
dynamic-analysistesting-frameworkfridasecuritysecurity-testing
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Josh Grossman - Consultant