Michele Orru

Senior Software Engineer at Dataflow Security

Italy
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Michele Orrù is a Senior Software Engineer and seasoned offensive security specialist with 14+ years of experience building and hardening web applications, leading pentests, and developing bespoke red-team tooling. He’s a prolific open-source contributor and former core developer for the widely used BeEF Browser Exploitation Framework, and has driven security-focused back-end work on projects like Muraena—a reverse proxy for automated phishing/post-phishing workflows. Michele blends deep protocol- and code-level expertise (Golang, JavaScript) with hands-on experience in social engineering, code review, and secure architecture from roles at Trustwave, NCC Group, and multiple freelance engagements. A frequent speaker and co-organizer of specialist security conferences, he pairs a pragmatic offensive mindset with creative lateral thinking and a curiosity for unconventional research approaches.
code14 years of coding experience
job19 years of employment as a software developer
bookbachelor, information technology, bachelor, information technology at Alma Mater Studiorum – Università di Bologna
bookerasmus, information technology, erasmus, information technology at University of Bergen (UiB)
languagesItalian, English, Spanish, French
github-logo-circle

Github Skills (16)

sinatra10
go10
websocket10
api10
apidoc10
redis10
ruby10
security9
reverse-proxy9
back-end-development9
data-persistence8
javascript8
network-security8
whois7
docker4

Programming languages (4)

C#JavaScriptGoPHP

Github contributions (5)

github-logo-circle
beefproject/beef

Nov 2011 - May 2017

The Browser Exploitation Framework Project
Role in this project:
userBack-end Developer
Contributions:486 commits, 18 PRs, 66 pushes in 5 years 7 months
Contributions summary:Michele's commits primarily involve refactoring the server core and related API/classes, specifically rewriting the server core to use Thin and Rack instead of WebRick. The user also contributed to the Requester extension, implementing and enhancing the integration of HTTP requests and responses within the framework. Furthermore, the user addressed bugs, updated API calls, and refactored code related to the WebSocket channel to support communication with the BeEF shellcode.
browsersecuritypentestingexploitationbrowser-exploitation
muraenateam/muraena

May 2019 - Apr 2021

Muraena is an almost-transparent reverse proxy aimed at automating phishing and post-phishing activities.
Role in this project:
userBack-end & Security Engineer
Contributions:15 commits, 1 PR, 9 pushes in 1 year 11 months
Contributions summary:Michele primarily contributes to back-end functionalities related to the Muraena project, which focuses on reverse proxying for phishing and post-phishing activities. Their work involves modifying code to bind the proxy to 0.0.0.0 and refactoring parts of the code to implement Redis-based persistence, including victim and cookie data. The user also integrates MaxMind and Whois queries and introduces a necrobrowser integration for session hijacking, demonstrating security-focused development.
pythontransparentproxyreverse-proxyactivities
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Michele Orru - Senior Software Engineer at Dataflow Security