Hi there! I'm David, a passionate developer, early adopter, and team builder. I love solving hard problems at any scale or part of the stack.
- π± At NowSecure, I work with the product management, development, engineering, and research teams to enable automated application security and risk management solutions at scale.
- π© Although a significant portion of my work is for private companies, I enjoy contributing to communities while hacking on various hobby projects. I also like exploring radical new approaches to knowledge and code management e.g., Glamorous Toolkit, or fixing less maintream, more niche technical things like Erlang client generation for the openapi-generator project. In the past, I developed a Node.js API client for the Google Play Store to download APKs. I rewrote that client in Rust here, which was forked by EFF.
- π I particularly like working in areas where I can leverage a broad set of skills ranging from AI, APIs, mobile technologies, reverse engineering, security, and privacy. I enjoy working with product and technology teams, collaborating on all sorts of challenging problems and projects within an enterprise B2B organization.
- π οΈ Lately I use a lot of tools especially Glamorous Toolkit, Frida, Radare, and working on projects involving iOS or Android, mitmproxy, and more.
- π³ I've been an early adopter of many new technologies and like to rediscover old technologies and make them new. Sometimes I document my learnings through blog posts, e.g., some handy docker articles from 2014, which was back in the early days when everyone was learning how best to use containerization with development projects.
- π§ Currently thinking a lot about things interconnected with AI, product management, cybersecurity, development, and operations.
- π I try and maintain awesome-frida: A curated list of awesome projects, libraries, and tools powered by Frida.
- π OWASP Crackme Solution solved with Frida: I wrote this a long time ago to provide a comprehensive guide on solving a OWASP Crackme challenge for mobile app security enthusiasts while showcasing some of the amazing tools we've built.
- π©οΈ Cloudbleed Vulnerability and its Impact on Mobile App Security: An example that demonstrates the type of data I've worked with a deep dive into the Cloudbleed vulnerability and its implications for mobile app security at the time.
- Post-Quantum Cryptography: Security in Mobile Apps An article I wrote about quantum's impact on mobile apps.
- π I enjoy helping customers solve challenges, discussing growth opportunities, entrepreneurship.
- π Proficient in TypeScript/JavaScript/Node.js, Smalltalk/Pharo, Rust, Erlang, Python, C/C++, and other languages with a REPL, hot code loading, and convenient FFI.
- π€ Experienced with various product management tools, frameworks, and platforms... I'm always eager to learn and adopt or adapt old and new technologies.
- π Skilled in fostering collaboration and building strong relationships with my team members and business stakeholders ranging from super technical to non-technical alike.