Ryan Dewhurst

Founder of KEVIntel - vulnerability intelligence researcher

Ryan Dewhurst

Creator of the Damn Vulnerable Web Application (DVWA) and founder of WPScan.

I research how attackers exploit vulnerabilities in the real world. Today that work is focused on KEVIntel, my curated, real-time database of Known Exploited Vulnerabilities - tracking what is genuinely being exploited so defenders can prioritise what matters.

Explore KEVIntel See my work Get in touch
Ryan Dewhurst, vulnerability intelligence researcher and founder of KEVIntel

Featured in

Selected coverage quoting my research and work.

BleepingComputer CRN Orca Security Business Wire

What I'm building

Founder

KEVIntel

A curated, real-time database of Known Exploited Vulnerabilities (KEVs). KEVIntel tracks vulnerabilities under active exploitation in the wild, enriched with honeypot telemetry and threat intelligence - often identifying and enriching KEVs faster than many government and commercial feeds.

View all projects and vulnerability research →

Frequently asked questions

Who is Ryan Dewhurst?

Ryan Dewhurst is a vulnerability intelligence researcher based in Malaga, Spain. He is the founder of KEVIntel, the creator of the Damn Vulnerable Web Application (DVWA), and the founder of WPScan, the WordPress vulnerability scanner acquired by Automattic in 2021. His work spans offensive security, vulnerability research and threat intelligence.

What is KEVIntel?

KEVIntel (kevintel.com) is a curated, real-time database of Known Exploited Vulnerabilities (KEVs) founded by Ryan Dewhurst. It tracks vulnerabilities under active exploitation in the wild, enriched with honeypot telemetry, and is recognised for identifying and enriching KEVs faster than many government and commercial feeds.

What is WPScan?

WPScan is a WordPress security scanner and vulnerability database founded by Ryan Dewhurst in 2011. It catalogues tens of thousands of WordPress core, plugin and theme vulnerabilities and was acquired by Automattic in 2021, where it was integrated into Jetpack.

What is DVWA?

DVWA (Damn Vulnerable Web Application) is a deliberately insecure PHP/MySQL web application created by Ryan Dewhurst. It is one of the world's most widely used security training platforms, helping people learn and teach web application security legally and safely.

How can I contact Ryan Dewhurst?

You can reach Ryan via the contact page, or connect on LinkedIn, X (Twitter) and GitHub. Links are in the site footer and on the contact page.