We are looking for experienced and passionate people who have a background in vulnerability research, offensive security and reverse engineering on Apple platforms.
The role:
You'll join our team looking to identify vulnerabilities in Apple platforms using both static and dynamic analysis techniques.
You'll develop Proof-of-Concepts for vulnerabilities identified.
You'll use common VR toolsets such as fuzzers, LLMs and reverse engineering tools; as well as have access to custom tooling built in-house (along with developing your own!).
You'll need to present your findings in a useful and accessible way to others.
You'll have access to internal and external training and conferences to refine and hone your skillsets.
The ideal candidate:
Developed tools and proof of concepts in a modern programming language such as Python and Rust.
Skills in debugging and hacking around with low level or other relevant languages such as C, Swift, C++, Objective C, etc.
Ability to reverse engineer ARM64 binaries using common toolsets such as IDA, Binary Ninja and Frida.
Interest and a passion in learning new things, taking them apart, and getting stuck into new problems and challenges.
Desirable technical experience:
Research on the low-level internals of Apple platforms, including topics such as runtime internals, platform security features and exploit mitigations.
Reverse engineering and vulnerability research on userland components on Apple platforms including XPC protocols, private frameworks and userland system daemons.
iOS application reverse engineering and bug hunting, looking for weaknesses, logic bugs and memory corruption issues.
Kernel or system level software internals and vulnerability research, for example XNU code review or IOKit reverse engineering and exploitation.
Salary:
Packages are competitive and differ according to researcher experience. Full details can be discussed upon an invitation to interview.
Perks and benefits:
25 days annual leave + public holidays
Annual bonus based on company targets
Minimum of 12% superannuation
Training and conference budgets
Employee assistance program
Company socials throughout the year
The location:
This is a remote role so the successful candidate can be based anywhere in Australia, or indeed the world!
Interrupt Labs is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
We aim to respond to all candidates via email within a week of their application. Please note that emails may go to your spam or junk folder.
Skills Required
- Background in vulnerability research, offensive security, and reverse engineering on Apple platforms
- Developed tools and proofs-of-concept in modern languages such as Python or Rust
- Experience debugging and working with low-level languages such as C, Swift, C++, Objective-C
- Ability to reverse engineer ARM64 binaries using tools like IDA, Binary Ninja and Frida
- Experience using fuzzers and LLMs as part of vulnerability research toolsets
- Ability to present research findings clearly and accessibly to others
- Research on low-level internals of Apple platforms (runtime internals, platform security, exploit mitigations)
- Reverse engineering and vulnerability research on userland components (XPC, private frameworks, daemons)
- iOS application reverse engineering, bug hunting, and memory corruption analysis
- Kernel or system-level internals and vulnerability research (XNU, IOKit)
What We Do
Interrupt Labs is a specialized computer security firm dedicated to providing world-leading vulnerability research and capabilities. The company's expert team leverages a diverse range of backgrounds across the security landscape to tackle complex challenges. They provide their research services to a variety of high-stakes sectors, including telecommunications, banking, and government entities, focusing on targets such as browsers, mobile devices, and automotive systems.
