Savage Software /dev
Explore the work of Jordi Murgó, also known as "Savage" – an early Catalan hacker, developer of security tools, and a digital activist who has contributed to the field since the 80s.
This portal provides an overview of his work in code and system exploration, and highlights his contributions to the evolution of the Internet in Spain.
Connect with Jordi:
$ whoami
Jordi Murgó, known as "Savage", is a prominent figure in Spanish hacking. Born in Lleida in 1968, he became an early leader, guiding the group Apòstols during the late 80s. Under his leadership, the group not only developed numerous open-source security tools but also played a role in early international ethical hacktivism campaigns.
From his early years as "The Phreaker" to his contributions to the Linux kernel, Jordi has consistently demonstrated key aspects of hacker philosophy: curiosity driving exploration, effective problem-solving, and a commitment to the free dissemination of knowledge.
Today, Jordi continues to innovate in the digital space. As a Security and Artificial Intelligence Specialist at GFT, he combines his decades of experience with new advancements in emerging technologies, remaining active in the cybersecurity field.
The Early Years: MSX and the 300 Baud Era
1
1982-1987
At a mere 14, Jordi Murgó began exploring ASM 6502 on an Acorn Atom at school. Driven by curiosity, he saved his earnings to acquire his first computer, a Sony HitBit MSX, followed by an "unofficial" 300 baud modem. This period initiated his self-taught journey into programming.
2
1988
Demonstrating early talent, Jordi developed a suite of communication applications for MSX: BlueBox, COMS3, and COMS4. These tools contributed to microcomputer communication and gained adoption within the growing digital community.
3
1989
As his reputation grew, Jordi was invited to join the hacker collective, Apòstols. Here, he developed his skills, delving into X.25 networks, navigating Unix/VAX systems in universities and corporations, and practicing phreaking across the Spanish telephone network.
These early years were marked by characteristic hacker inventiveness: Jordi's pursuit of knowledge led him to construct RS-232 interfaces to connect his modem to the MSX. When commercial software proved insufficient, he created his own terminal programs, tailored to his needs. His exploration of international networks, alongside a developing community of like-minded enthusiasts, laid the groundwork for his future contributions.

In this "golden age" of hacking, Savage and his companions met in digital rooms, notably QSD on the French Minitel network. Originally an LGBTQ+ chat platform, it became a common meeting point for European hackers, where the ironic opening query "Are you a hacker or gay?" became a shared code among those exploring technology.
From Digital Frontier to Tool Development
As the internet emerged in the 90s, a new digital frontier beckoned. Savage honed his talent, dedicating himself to developing security tools, all rooted firmly in the ethos of free and open-source software.
QueSO (1997-1998)
QueSO emerged as one of the first known tools for remote operating system fingerprinting, leveraging specifically designed, malformed TCP packets. Its design not only served as an inspiration for Nmap but also triggered a false alarm in Israel, mistakenly perceived as a coordinated cyberattack.
NePED (1998)
NePED, a sniffer detection program, was conceived from a challenge among his hacker peers. Savage demonstrated the feasibility of detecting passive espionage tools, a development that ultimately earned NePED an official recommendation from CERT.
Early Contributions to the Hispanic Internet
FidoNet Beginnings (1987)
Before the rise of Lleida.Net, Jordi managed two pivotal Bulletin Board Systems (BBSs): MSX ACC (2:343/401), and Savage Software (2:343/403). These early digital hubs laid the groundwork for what would eventually become Lleida.Net.
Lleida.Net (1993)
In 1993, Jordi founded Lleida.Net, one of the pioneering Internet providers in his region. This initiative transformed a local BBS into a full-fledged Internet Service Provider (ISP), significantly contributing to the democratization of network access during an era when connectivity was a luxury.
IRC-Hispano (1996-2000)
Alongside his colleague Rampa (Ramón Martínez) from Apòstols, Savage co-founded the IRC-Hispano network. This platform rapidly became a dominant chat community across Spain for several years.
Despite modest resources—relying on Linux servers configured overnight—they established an independent infrastructure for the Hispanic IRC community, providing thousands of daily users with their own dedicated digital space.
These entrepreneurial ventures were instrumental in shaping the 1990s Hispanic internet culture, from facilitating dial-up access to fostering the vibrant, interactive world of IRC chat.
Hacktivism: Code in Service of Causes

"We are hackers out of necessity; computing was expensive and you had to find a way to get tools, information, access networks... to create the programs that would prevent you from paying." - Jordi Murgó
Shunning destructive paths, Savage used his technical skills for social advocacy and ethical activism. In 1997, he joined forces with the Portuguese collective ToXyN in an early hacktivism campaign, participating in protests against Indonesia's occupation of East Timor.
Engineered Solutions
Savage directly contributed by developing custom exploits and specialized tools like WhatOS (a precursor to QueSO). These instruments were designed to identify vulnerabilities within Indonesian government systems, alongside tailor-made exploits for the campaign, including those targeting imapd and ncsa httpd.
Strategic Coordination
Beyond coding, he organized synchronized Denial-of-Service attacks aimed at key Indonesian government websites. His commitment translated into "code and sleepless hours," a significant contribution to the cause, contributing to impact through coordinated digital action.
Global Impact
The collective's efforts led to the disruption of most official Indonesian government websites, notably including the military's. This cyber-protest generated international attention, bringing the East Timor conflict into the global spotlight.
Murgó consistently emphasized that his hacktivism was directed "always abroad"—never against systems within his own country. This principle highlighted his hacker ethics: a commitment to challenging power and exposing injustice, driven by altruism rather than profit or destruction.
$ cat profesional_journey.log
1
1990-2000: Building a Foundation
For over a decade, Jordi was involved in system management at Telefónica, working with diverse platforms including Theos, IBM, Unix, and Linux. Concurrently, he was developing his security projects: QueSO and NePED.
2
2000-2010: Transition to Industry
Savage transitioned from independent work to the corporate sector. He became a software development manager at a multinational technology firm, later contributing his engineering expertise to the financial sector.
3
2010-Present: Focus on Cybersecurity
He further developed his skills, taking on technical leadership roles with a focus on cybersecurity. He currently works as a Security and Artificial Intelligence Specialist at GFT.
Across these decades, Jordi has been involved in technological developments, from the era of noisy modems to the emergence of generative AI. He has continuously adapted, and his hacker spirit has remained: characterized by curiosity, a drive for system exploration, and a passion for solving complex problems.
Sneak32: Hardware Hacking in the IoT Era
In a demonstration of his continued ingenuity, Savage has developed "Sneak32" – a device powered by ESP32 microcontrollers. This tool is designed to identify suspicious electronic devices by analyzing their WiFi and Bluetooth emissions, offering a useful capability in digital security.
More than a mere gadget, Sneak32 provides an example in cybersecurity and counter-surveillance. It showcases Savage's dedication to "tinkering" with hardware and software to address contemporary challenges, reflecting the spirit that defined his earlier work in the 80s, now adapted for modern technology.
Presented at RootedCON 2025, where it was discussed in the context of identifying infiltrators within social movements, Sneak32 demonstrates the hacker ethos applied to today's demands. It serves as an effective tool for helping to counter surveillance and support privacy in an increasingly connected world.

As smart devices proliferate throughout our environments, tools like Sneak32 help activists and everyday citizens identify hidden spy hardware and unauthorized tracking devices, contributing to personal privacy.
Savage's Engagements: Impact and Insight
RootedCON 2010: A Return
Marking a notable return, Savage rejoined his collaborator Ramón Martínez (rampa) on the "Apostols" panel, revisiting discussions about the early hacking landscape.
RootedCON 2019: Bridging Generations
On the "Historical Hackers" panel, Savage stood alongside other prominent figures, sharing insights and connecting with newer generations of cybersecurity enthusiasts.
SecAdmin 2022: Evolutionary Perspective
Contributing his extensive experience, Savage shared his perspective on contemporary cybersecurity challenges, offering a view shaped by his experience with the digital landscape's evolution.
RootedCON 2023, 2024, 2025: Current Insights
In 2025, Savage delivered two presentations: "Do LLMs Believe in God?", an exploration of AI ethics, and the official unveiling of his Sneak32 project, designed for infiltrator detection.
Beyond the main stage, Savage participates in "Old School Table" roundtables, where he connects emerging talents with the foundational principles of original hacker culture. His presence has also been noted in various media outlets, highlighting the legacy of Spain's early hackers.
Savage's contemporary message is both educational and practical: he advocates for critical inquiry, urging caution in the face of evolving cybersecurity threats and the complex ethical considerations presented by advanced artificial intelligence. His words serve as a guiding influence in the ongoing narrative of digital security.
echo "A life of digital exploration"
Jordi "Savage" Murgó's journey spans decades, from the early days of 80s mainframes and dial-up modems to contemporary artificial intelligence.
His journey, encompassing hacking, entrepreneurship, activism, and a professional life, illustrates his evolution from an early figure to a recognized cybersecurity authority. Today, through Savage Software, Jordi maintains an identity: the "ancient Unix wizard" – a self-effacing title he embraces – who demonstrates expertise in both offensive and defensive aspects within the digital domain.
As an early figure in Spain, a developer of tools that influenced a generation, and a supporter of free knowledge, Jordi Murgó embodies the hacker spirit: a strong passion for exploration, understanding, and the ability to work with complex systems to improve digital security and contribute to the digital community.
Email (jordi.murgo@gmail.com)