Josh Summitt

Co-Founder And CTO at Faction Security

Memphis, Tennessee, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Josh Summitt is a seasoned security-focused technologist and entrepreneur with over 18 years in information security, electrical/software engineering, and incident response, currently serving as Co-Founder and CTO at otto JavaScript Security and founder of Faction Security. He combines deep application and mobile penetration testing expertise with secure SDLC design, having led assessments at Bank of America and built enterprise security tooling for vulnerability management and assessment collaboration. Josh is a hands-on developer across languages and platforms—authoring a Burp Suite extension (NoPE Proxy) and other open-source work that blends protocol manipulation and UI improvements. His background in electronics and embedded systems (from FedEx hardware work to PLC integration) gives him a rare ability to trace security from silicon and firmware up through cloud and web applications. Certified in CISSP, GPEN, GREM and more, he pairs formal credentials with practical red-team experience and a knack for turning complex attack research into pragmatic defenses. Based in Memphis, he also brings a musician’s creativity to engineering, often prototyping unconventional tooling to streamline assessment workflows.
code12 years of coding experience
job10 years of employment as a software developer
bookBSEE Electrical Engineering, BSEE Electrical Engineering at University of Memphis
github-logo-circle

Github Skills (9)

javas10
proxy10
burp10
java10
tcp9
python9
ui-design9
front-end-development9
uid9

Programming languages (7)

TypeScriptJavaJavaScriptObjective-CHTMLElixirPython

Github contributions (5)

github-logo-circle
summitt/Nope-Proxy

May 2016 - Aug 2020

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
Role in this project:
userFull-stack Developer
Contributions:16 releases, 84 commits, 4 PRs in 4 years 3 months
Contributions summary:Josh primarily contributed to the development of the "NoPE Proxy" Burp Suite extension, focusing on both frontend and backend aspects. They implemented features for matching and replacing traffic, including support for both string and hexadecimal replacements, with directional control. Furthermore, they worked on the code playground feature, integrated a Python mangler for traffic manipulation, and fixed several bugs related to resource loading and connection handling. The user also improved the UI and added enhancements like the ability to automatically add HTTP proxy listeners.
proxydnssecuritynopefiddler
factionsecurity/faction

Nov 2023 - Apr 2025

Pen Test Report Generation and Assessment Collaboration
Contributions:42 releases, 1 review, 67 PRs in 1 year 5 months
application-securitypenetration-testingpenetration-testing-toolspentestingreporting
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Josh Summitt - Co-Founder And CTO at Faction Security