.png){kind=logo}
Position Overview
As an Embedded Systems Vulnerability Researcher, you will operate at the cutting edge of security projects. Your mission is to identify, exploit, and mitigate security flaws in complex hardware/software ecosystems. You will bridge the gap between the digital and analog worlds, analyzing everything from low-level firmware to the electromagnetic spectrum.
Responsibilities
- Vulnerability Discovery: Perform deep-dive security analysis and "bug hunting" on proprietary embedded systems and RTOS.
- Exploit Development: Create Proof-of-Concept (PoC) exploits for identified vulnerabilities, including memory corruption, logic flaws, etc.
- Firmware Analysis: Conduct static and dynamic analysis of binary blobs using advanced reverse engineering suites.
- Hardware Probing: Utilize JTAG, UART, and SWD interfaces to extract firmware, monitor execution, etc.
- Tooling: Develop custom scripts and tools in Python, C, C++ to automate the research and exploitation pipeline.
Requirements
- The Mindset: Passion and motivation for finding vulnerabilities in complex systems.
- Reverse Engineering: High-level proficiency in IDA Pro, Ghidra, etc., specifically targeting non-x86 architectures (ARM, MIPS, RISC-V).
- Low-Level Mastery: 4+ years of experience in C/C++ and Assembly, with a deep understanding of memory management, heap/stack protections, and OS internals.
- System Knowledge: Comprehensive understanding of the boot process and hardware-software abstraction layers.
Advantages
- RF Security: Experience with Software Defined Radio (SDR), signal processing, and protocol analysis of wireless communications.
- Education: Bachelor’s degree in Physics, Electrical Engineering, or Computer Science.
- Military Background: Graduate of an elite technological unit in the IDF.
Skills Required
- Passion and motivation for finding vulnerabilities in complex systems
- High-level proficiency in IDA Pro, Ghidra, and other reverse engineering suites targeting non-x86 architectures (ARM, MIPS, RISC-V)
- 4+ years of experience in C/C++ and Assembly with deep understanding of memory management, heap/stack protections, and OS internals
- Comprehensive understanding of the boot process and hardware-software abstraction layers
- Experience performing firmware analysis (static and dynamic) on binary blobs
- Hardware probing experience using JTAG, UART, SWD to extract firmware and monitor execution
- Develop custom scripts and tools in Python, C, C++ to automate research and exploitation pipelines
- Experience with Software Defined Radio (SDR), signal processing, and wireless protocol analysis
- Bachelor's degree in Physics, Electrical Engineering, or Computer Science
- Military background: graduate of an elite technological unit in the IDF
What We Do
KayHut is looking for people who dare to do the UNBELIEVABLE on the daily basis. We are a young, innovative, fast growing company engaged in cyber research and security solutions. Currently we count over 100 employees and we are rapidly growing. Our clients are the most demanding and sophisticated organizations in the government and private sectors. We are looking for individuals with creative minds and exceptional skills in one or more of these areas: ·Reverse engineering ·Cyber-intelligence system engineering ·Vulnerability research ·Static and dynamic code analysis and algorithms ·OS kernel and internals Our culture is known as FFF: a combination of Fun, Freedom and Fearlessness. If this appeals to you and you’re ready to do the UNBELIEVABLE, talk to us. We’re eager to hear from you and have you join our team. KayHut is unlike any other company you’ve ever worked for. We do what nobody else does and we have great fun doing it. Think this is UNBELIEVABLE? Let us surprise you! Go to http://www.kayhut.com/#jobs to check out our latest job openings
