Giter Site home page Giter Site logo

Hi, I'm Andrzej! 👋

My cybersecurity career started over 15 years ago. During this time, I moved from hacking to securing, which has given me the perspective of both an attacker and a defender. I currently run a consulting and training company called Bezpieczny Kod. In this role, I'm empowering teams with skills and advising on best practices for securing software across the SDLC.

In recent years, I have trained hundreds of IT specialists (QA, Dev, Ops) in subjects such as Security Testing, Threat Modeling, DevSecOps, and Secure By Design. I emphasize hands-on learning in my trainings, ensuring that engineering teams can immediately put new skills to use in their day-to-day tasks.

The demand I encountered from clients during trainings led me to offer consulting services. As a Trusted Advisor, I now assist companies in establishing and enhancing security for software they're developing.

I'm also an active content creator. I'm building an open community around application security (Discord), run a YouTube channel and Podcast, and send out a weekly newsletter. I've also created an online course "Offensive Testing of Web Applications" (OTWA) and I'm already building another one (on the topic of DevSecOps). My activities are aimed at educating and creating a space for IT professionals to exchange knowledge.

Andrzej Dyjak's Projects

afl-rb icon afl-rb

Extension of AFL to Target Rare Branches

afl-unicorn icon afl-unicorn

afl-unicorn let's you fuzz any piece of binary that can be emulated by Unicorn Engine.

armx icon armx

ARM-X Firmware Emulation Framework

assessment-mindset icon assessment-mindset

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

asvs icon asvs

Application Security Verification Standard

awesome-fuzzing icon awesome-fuzzing

A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.

awesome-threat-modelling icon awesome-threat-modelling

A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.

bcc icon bcc

BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more

binaryalert icon binaryalert

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection

bugid icon bugid

Python script that uses the cBugId module to detect, analyze and id application bugs

bugs icon bugs

Collection of software bugs found by SkyLined

burpdeveltraining icon burpdeveltraining

Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"

chromeless icon chromeless

🖥 Chrome automation made simple. Runs locally or headless on AWS Lambda.

contracts icon contracts

A small collection of potentially useful contract templates

crabstone icon crabstone

crabstone is a Ruby binding to the capstone disassembly library by Nguyen Anh Quynh

crashwalk icon crashwalk

Bucket and triage on-disk crashes. OSX and Linux.

dharma icon dharma

A generation-based, context-free grammar fuzzer.

difuze icon difuze

Fuzzer for Linux Kernel Drivers

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.