Location: Bethesda, MD (must be able to report to DC3, Linthicum Heights MD for onboarding)
Duration: Long-Term Contract
Client: DC3
Description:
Mobile Software Reverse Engineering (with support to development and malware analysis efforts).
Background: Conduct software exploitation against applications, middleware, operating systems (OS) user interface, OS drivers/runtimes, firmware and other binary data:
o Working experience in software engineering and related technologies. Experience in sizing and scoping, in design, implementation and delivery of mobile application solutions using iOS and/or Android development environments.
o Provide malicious code reverse engineering to isolate, review, analyze, and reverse-engineer potentially malicious programs recovered from compromised computer systems and networks.
o Research new trends, techniques, and packaging of malicious software to stay current and ready to identify and handle zero-day exploits.
o Research behavior of binaries and share detailed understanding of how apps behave at memory/register level in support of technical exploitation operations.
o Support efforts to design, prototype, document, test, conduct exploitation automation and transition code analysis methods and tools specific to technical exploitation operations.
Qualifications: • Experience with Windows, Linux, Android, OS X, and iOS operating system & architecture. • Experience in computer or cell phone architecture, system internals, operating systems, and/or boot process software engineering. • Experience with static analysis tools such as IDA Pro, Ghidra and Binary Ninja. • Experience with debugging tools such as WinDbg. • Experience with virtualization, sandboxing, and emulation tools like VMware, KVM, QEMU and others. • Working knowledge of programming languages such as C, C++, .NET, Python, Java, etc. • Experience debugging mobile application memory and performance issues.
Preferred: • Experience requiring a deep knowledge of Android and a strong passion in mobile industry and mobile development. • Experience developing/designing mobile phone platforms highly desired. • Experience in wireless API's (Wi-Fi, Bluetooth) preferred. • Engineer software scripts in C, C++, and Java with emphasis on prototyping and API extraction. • DoD 8570 Compliant, IAT Level II.