Nicky Bloor

Security Consultant Security Engineer at Cognitous Cyber Security

England, United Kingdom
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Nicky Bloor is an application security consultant and seasoned exploit developer with over a decade of hands-on experience delivering penetration tests, secure code reviews, IoT assessments, and vulnerability research for clients including Lab126 and enterprise environments. He combines deep reverse-engineering and offensive skills—IDA/Ghidra, Frida, custom Bluetooth/USB tools—with practical defensive delivery, having built open-source tools like BaRMIe and a Burp plugin (Freddy) and been credited with multiple high-profile CVEs (Adobe, HP, Oracle, Drupal). Nicky has a strong software development background across C/C++, Java, PHP, Python and modern web stacks, enabling him to both find complex chains (e.g., HP Device Manager RCE) and implement reliable remediation. He regularly presents technical research at conferences and produces detailed write-ups and tooling that other security teams use, showing a focus on reproducible, high-impact findings. Based in the UK, he pairs consultancy delivery with ongoing tool development and training, making him equally effective as a practitioner, researcher and mentor.
code11 years of coding experience
job7 years of employment as a software developer
bookBSc Internet Computing, BSc Internet Computing at The University of Manchester
github-logo-circle

Github Skills (6)

javas10
data-serialization10
java10
serialization10
command-line-interface8
build-automation7

Programming languages (7)

TypeScriptJavaJavaScriptPHPHTMLRubyPython

Github contributions (5)

github-logo-circle
A tool to dump Java serialization streams in a more human readable form.
Role in this project:
userBack-end Developer
Contributions:7 releases, 19 commits, 9 PRs in 4 years 5 months
Contributions summary:Nicky primarily worked on improving the `serializationdumper` tool. They fixed bugs related to proxy class descriptions and externalizable classes, and also addressed an issue with character reading. Furthermore, the user added support for rebuilding modified serialization streams. They also created build scripts and enhanced the tool's command-line interface by adding validation.
readablestreamsserializationhuman-readablejava-serialization
NickstaDB/PoC

Sep 2018 - Oct 2019

Repo for proof of concept exploits and tools.
Contributions:7 commits, 2 PRs, 11 pushes in 1 year 1 month
securityproof-of-conceptexploits
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Nicky Bloor - Security Consultant Security Engineer at Cognitous Cyber Security