Marcin Bury

Blockchain Security Researcher at OpenZeppelin

Spain
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Marcin Bury is a blockchain security researcher and co-founder with 10 years of hands-on experience in offensive security and vulnerability research, currently focused at OpenZeppelin from Spain. He began his career building practical security capabilities—network administration and consultancy—and progressed to developing and refining high-impact exploit tooling used for embedded devices, contributing to well-known projects like Routersploit and Metasploit. Marcin specializes in finding and implementing exploitation vectors (path traversal, credential disclosure, RCE, command injection) for networked and IoT devices, bringing that offensive mindset to blockchain protocol and smart contract security. His background running Threat9 and contributions to prominent open-source exploitation frameworks underscore a pragmatic, tool-focused approach to security research that blends entrepreneurship with deep technical craft.
code10 years of coding experience
job5 years of employment as a software developer
bookInformation Technology, Information Technology at The Silesian University of Technology (Gliwice, Poland)
github-logo-circle

Github Skills (16)

metasploit10
ruby10
vulnerabilities10
exploit10
network-security10
security-vulnerability10
penetration-testing10
command-injection10
vulnerability-research10
python10
vulnerability10
security10
sys9
linux9
embedded9

Programming languages (7)

TypeScriptDockerfileCSolidityJavaScriptRubyPython

Github contributions (5)

github-logo-circle
threat9/routersploit

Mar 2016 - Sep 2022

Exploitation Framework for Embedded Devices
Role in this project:
userSecurity Engineer
Contributions:4 releases, 362 commits, 353 PRs in 6 years 7 months
Contributions summary:Marcin primarily contributed to the development and improvement of the routersploit framework by implementing exploits for various vulnerabilities. Their work focused on crafting and testing exploits, demonstrating a strong understanding of network security and exploitation techniques. Contributions include path traversal, credentials disclosure, and remote code execution for different network devices, which indicates a specialization in identifying and exploiting security flaws in embedded systems. This includes the integration and testing of exploit modules, which enhances the tool's capabilities for penetration testing and vulnerability assessment.
dictionary-attackscannerpythonrouter-exploitation-frameworksecurity
rapid7/metasploit-framework

May 2018 - May 2018

Metasploit Framework
Role in this project:
userSecurity Engineer
Contributions:6 commits, 8 comments in 9 days
Contributions summary:Marcin primarily contributes to a Metasploit module designed to exploit a command injection vulnerability in D-Link DSL-2750B devices. Their contributions involve implementing the exploit, writing module descriptions, and adding references. They also refined the exploit code and corrected documentation based on code reviews. Their work highlights a focus on vulnerability research and the development of exploitation tools within the Metasploit framework.
metasploitmetasploit-framework
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Marcin Bury - Blockchain Security Researcher at OpenZeppelin