API
FAQTop ExpertsChrome Extension
Sign in

Sam Sanoop

Senior Security Researcher Analyst (Static Analysis)

United Kingdom
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
Sam Sanoop is a Senior Security Researcher/Analyst (Static Analysis) based in the UK with 10 years’ experience creating detection rules and proof‑of‑concepts for real-world open-source vulnerabilities. At Snyk he authors Datalog-based static analysis rules, triages and prototypes flaws in popular libraries, and builds tooling and datasets that feed the Snyk vulnerability database and ML models. He pairs that defensive work with offensive education—contributing to projects like Damn Vulnerable Web Services and a repository of vulnerable code snippets used for training and testing. A former trainer and consultant who has taught at Black Hat and other conferences, Sam combines deep exploit knowledge with automated detection engineering. As CTO at Fight Division he now blends hands-on research, teaching, and technical leadership to turn identified weaknesses into repeatable defenses.
code10 years of coding experience
job4 years of employment as a software developer
github-logo-circle

Github Skills (21)

sql-injection10
javascript10
node-js10
web-application-security10
it-security10
security10
code-injection10
php10
javascripts10
xss10
vulnerabilities10
api-design9
restful-api9
buffer-overflow9
api-rest9

Programming languages (12)

TypeScriptJavaCSSC++RustSolidityJavaScriptGo

Github contributions (5)

github-logo-circle
snoopysecurity/Broken-Vulnerable-Code-Snippets

Jan 2019 - Oct 2022

A small collection of vulnerable code snippets
Role in this project:
userSecurity Engineer
Contributions:120 commits, 8 PRs, 75 pushes in 3 years 9 months
Contributions summary:Sam contributed a series of code snippets designed to showcase various security vulnerabilities, including resource injection, open redirects, SQL injection, and cross-site scripting (XSS) issues. Their commits demonstrate an understanding of common web application flaws by creating examples in different programming languages such as PHP, Ruby, and JavaScript, and illustrating how to exploit them. This focus on creating vulnerable code suggests a role centered around security testing or educational purposes.
vulnerablesnippets
snoopysecurity/dvws-node

Apr 2020 - Dec 2022

Role in this project:
userBack-end Developer & Security Engineer
Contributions:2 reviews, 102 commits, 25 PRs in 2 years 9 months
Contributions summary:Sam's contributions primarily focused on implementing and addressing security vulnerabilities within the web services application. They introduced features related to SQL injection, JSON hijacking, XML-based vulnerabilities (XXE, XSS), and path traversal. This user was also responsible for refactoring code and fixing bugs to enhance the overall security posture of the application. They demonstrated a solid understanding of common web application security flaws and their mitigation.
vulnerableapivulnerabilitiessecurityweb-services
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Privacy PolicyPrivacy Data SubjectsTerms of UseDo Not Sell My Info