Paulo Silva is a Principal Security Researcher based in Portugal with over a decade of hands-on experience blending software engineering, security research, and entrepreneurship. He progressed from LAMP/Node.js development and system administration to leading security research, red teaming and secure coding initiatives, contributing to OWASP and well-known open-source projects such as the Go-SCP secure coding guide and node-http-mitm-proxy. Paulo teaches secure coding, presents at security conferences, and has led teams shipping mitigations for real-world web threats (including replacing insecure hashing and improving proxy certificate handling). His background in innovation and entrepreneurship led him to co-found an EV mobility startup and to take partner/CTO roles, giving him product-level perspective beyond pure research. An avid freedom and FOSS advocate, he balances technical depth with practical exploit-proofing and a penchant for long-distance mountain biking and motorcycle exploration.
11 years of coding experience
13 years of employment as a software developer
Bachelor Computer Sciences, Bachelor Computer Sciences at Universidade do Minho
Math And Computer Sciences, Math And Computer Sciences at University of Évora
Building Global Innovators, Building Global Innovators at ISCTE-IUL MIT Portugal
3rd Level of Professional Degree Technological Course of Informatics, 3rd Level of Professional Degree Technological Course of Informatics at Escola Secundária Dr. Ginestal Machado
Master entrepreneurship, Master entrepreneurship at Faculdade de Engenharia da Universidade do Porto
Contributions:1 review, 206 commits, 47 PRs in 4 years 11 months
Contributions summary:Paulo contributed to the project by implementing security enhancements and bug fixes. Their work involved replacing MD5 with SHA256 for improved cryptographic integrity checks within log files. Additionally, the user merged release branches, integrated pull requests, and applied hotfixes, indicating involvement in code maintenance and release management. This involved code changes within session management and access control as well.
Contributions summary:Paulo contributed several features to the `node-http-mitm-proxy` project, primarily focused on enhancing certificate handling and proxy functionality. They implemented the `onCertificateRequired` and `onCertificateMissing` features, enabling custom certificate management. Additionally, the user removed a dependency and refactored the code to leverage Node.js's `https.listen()` for port management, improving the project's efficiency. Their work is evident in the code changes across core proxy functionalities and related testing.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Paulo Silva - Principal Security Researcher at Rittma