Founder at Bonsai Information Security
Argentina
- Current
-
- Founder at Bonsai Information Security
- Project leader at w3af
- Past
-
- Speaker at OWASP Europe
- Capture the Flag organizer at CONFidence conference
- Senior Penetration Tester at Cybsec S.A.
- Speaker at CanSecWest
- Speaker at Ekoparty Information Security Conference
- Speaker at CIBSI Information Security Conference
- Information Security Trainer at IT Master
- Speaker at Argentinian Bank Asociation
- Speaker at T2'07 Information Security Conference
- IDS / IPS Administrator at Impsat
- Speaker at LugFi Conference
- Recommended
-
14 people have recommended Andres - Connections
-
296
connections
- Industry
- Information Technology and Services
- Websites
Andres Riancho’s Summary
Andrés Riancho is an information security researcher and founder of Bonsai, where he is mainly involved in Penetration Testing and Vulnerability Research. In the research field, he discovered critical vulnerabilities in IPS appliances from 3com and ISS; and contributed with SAP research performed at his former employer.
His main focus has always been the Web Application Security field, in which he developed w3af a Web Application Attack and Audit Framework used extensively by penetration testers and security consultants. Andrés has spoken and hold trainings at many security conferences around the globe, like OWASP (Poland), CONFidence (Poland), OWASP World C0n (USA), CanSecWest (Canada), T2 (Finland) and ekoparty (Buenos Aires).
Andrés founded Bonsai in 2009 in order to further research into automated Web Application Vulnerability detection and exploitation.
Andres Riancho’s Specialties:
Web Application Security, IPS device evasion, Networking, Information security research in general, Software development.
Andres Riancho’s Experience
-
Founder
Bonsai Information Security
(Information Technology and Services industry)
January 2009 — Present (1 year )
Bonsai is a company involved in providing professional computer information security services. Currently a sound growth company, since it was founded in early 2009 in Buenos Aires, Argentina, it provides high quality information security services, focused on domestic and international customers’ real needs.
Bonsai is committed with the Open Source community, and is a Platinum sponsor of the w3af project, Web Application Attack and Audit Framework, lead by Andrés Riancho, founder of Bonsai.
Employees at Bonsai are widely experienced in their fields of knowledge, and have carried out far-reaching projects with international financial entities, retail and .com companies. -
Project leader
w3af
(Non-Profit; 1-10 employees; Internet industry)
February 2005 — Present (4 years 11 months)
w3af is an open source web application attack and audit framework, the goals of the project are to create a software that can find and exploit most web application vulnerabilities, and to create a community of experts that interact and share ideas.
-
Speaker
OWASP Europe
(Non-Profit; Computer Software industry)
May 2009 — May 2009 (1 month)
Gave a presentation about the latest improvements in w3af in Owasp Europe, Krakow, Poland.
-
Capture the Flag organizer
CONFidence conference
(Information Technology and Services industry)
May 2009 — May 2009 (1 month)
I helped with the organization of the Capture the Flag game for the CONFidence conference in Krakow, Poland.
-
Senior Penetration Tester
Cybsec S.A.
(Internet industry)
November 2005 — December 2008 (3 years 2 months)
-
Speaker
CanSecWest
(Privately Held; 1-10 employees; Internet industry)
March 2008 — March 2008 (1 month)
I presented the latest features of the w3af framework.
-
Speaker
Ekoparty Information Security Conference
(Internet industry)
2007 — 2007 (less than a year)
-
Speaker
CIBSI Information Security Conference
(Educational Institution; 501-1000 employees; Internet industry)
December 2007 — December 2007 (1 month)
-
Information Security Trainer
IT Master
(Internet industry)
July 2007 — November 2007 (5 months)
I trained a small group of information security enthusiasts, the classes were practical and theoretical with a lot of emphasis in secure programming, web application and linux security.
-
Speaker
Argentinian Bank Asociation
(Partnership; 501-1000 employees; Banking industry)
September 2007 — September 2007 (1 month)
I gave a talk about home banking security to CIOs and some other management level employees of the most important banks in Argentina.
-
Speaker
T2'07 Information Security Conference
(Educational Institution; 51-200 employees; Internet industry)
July 2007 — July 2007 (1 month)
I gave a two hour talk about w3af; where I presented beta4 features.
-
IDS / IPS Administrator
Impsat
(Privately Held; Telecommunications industry)
2003 — 2005 (2 years )
I managed the IDS and IPS devices for Impsat's clients using a centralized management console. The work consisted in configuring the devices, creating new rules and reporting events.
-
Speaker
LugFi Conference
(Educational Institution; 51-200 employees; Non-Profit Organization Management industry)
December 2003 — December 2003 (1 month)
I gave a talk about layered security in GNU/Linux systems.
Additional Information
Andres Riancho’s Websites:
Andres Riancho’s Interests:
Sports, traveling and programming.
Andres Riancho’s Contact Settings
Interested In:
- career opportunities
- consulting offers
- new ventures
- job inquiries
- expertise requests
- business deals
- reference requests
- getting back in touch
