Jeremy Druin is a known Professional web vulnerability assessor and have spoken at various security conferences about attacking web applications. He is from Louisville, Kentucky Area and a Certified Information Security Specialist at UPS.
Developed Mutillidae together with Irongeek.
The reason he developed Mutillidae is for web application penetration testing in a legal environment.
https://twitter.com/#!/webpwnized
http://www.linkedin.com/in/jeremydruin