Marcin Bury is a blockchain security researcher and co-founder with 10 years of hands-on experience in offensive security and vulnerability research, currently focused at OpenZeppelin from Spain. He began his career building practical security capabilities—network administration and consultancy—and progressed to developing and refining high-impact exploit tooling used for embedded devices, contributing to well-known projects like Routersploit and Metasploit. Marcin specializes in finding and implementing exploitation vectors (path traversal, credential disclosure, RCE, command injection) for networked and IoT devices, bringing that offensive mindset to blockchain protocol and smart contract security. His background running Threat9 and contributions to prominent open-source exploitation frameworks underscore a pragmatic, tool-focused approach to security research that blends entrepreneurship with deep technical craft.
10 years of coding experience
5 years of employment as a software developer
Information Technology, Information Technology at The Silesian University of Technology (Gliwice, Poland)
Contributions:4 releases, 362 commits, 353 PRs in 6 years 7 months
Contributions summary:Marcin primarily contributed to the development and improvement of the routersploit framework by implementing exploits for various vulnerabilities. Their work focused on crafting and testing exploits, demonstrating a strong understanding of network security and exploitation techniques. Contributions include path traversal, credentials disclosure, and remote code execution for different network devices, which indicates a specialization in identifying and exploiting security flaws in embedded systems. This includes the integration and testing of exploit modules, which enhances the tool's capabilities for penetration testing and vulnerability assessment.
Contributions summary:Marcin primarily contributes to a Metasploit module designed to exploit a command injection vulnerability in D-Link DSL-2750B devices. Their contributions involve implementing the exploit, writing module descriptions, and adding references. They also refined the exploit code and corrected documentation based on code reviews. Their work highlights a focus on vulnerability research and the development of exploitation tools within the Metasploit framework.
metasploitmetasploit-framework
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Marcin Bury - Blockchain Security Researcher at OpenZeppelin