Igor Stepansky is a Security Researcher at OX Security, where he builds agentic AI for offensive security and automated penetration testing. Previously he was part of Orca Security's Research Pod. His research has surfaced unauthenticated remote code execution in AI/LLM serving frameworks, a use-after-free race condition in the Linux kernel's ksmbd SMB3 server, and a steady stream of supply chain and CI/CD vulnerabilities across modern developer ecosystems. That sits on top of years of hands-on AppSec work - SAST, SCA, IaC scanning, secrets detection, malicious-package hunting, and hardening cloud, container, and GitHub environments. He likes finding and exploiting high-impact bugs in infrastructure that's deployed everywhere, and is a regular contributor of CVEs to open-source software
@iggy_p0pi
linkedin.com/in/igor-stepansky/
