Hackajob*
is collaborating with
CoreTech Security*
to connect them with exceptional tech professionals for this role.
Working for CoreTech as a vulnerability researcher will see you join a world-class team of developers and vulnerability researchers whose mission is to deliver bespoke products and research into the most interesting cyber security clients in the UK.
CoreTech is looking for candidates with a bug hunting, ethical hacking or reverse engineering background to join our vulnerability research team. We deliver bespoke and innovative solutions which enable the operational needs of our clients. Our team is highly experienced, deeply technical and has a rich history of blending rapid prototyping, security research and software engineering skills.
Our Research team use Ghidra as our tool of choice for reverse engineering and produce proof of concepts in the most suitable language for the project which could be C, C++, Python or assembly code. The role requires an inquisitive mindset and enthusiasm for solving difficult research tasks.
Typical tasks might include
* Developing a deep understanding of how Android mobile devices work, from applications to kernel.
* Reverse engineering proprietary binaries using your knowledge of ARM, ARM64, and MIPS.
* Auditing C and C++ source code, spotting security flaws that others haven't.
* Growing the team's capabilities by developing novel tools and techniques to enable cutting-edge vulnerability research.
* Working in tandem with other hugely talented vulnerability researchers and software engineers.
* Designing and producing niche solutions with immediate real-world impact.
An ideal candidate will
* Have a passion for cyber security.
* Thrive on solving difficult and complex problems.
* Have a genuine interest in bug hunting and be familiar with recent vulnerabilities.
* Enjoy sharing their knowledge and working with team members.
Your Experience
* Reverse engineering in IDA Pro or Ghidra.
* Familiarity with one or more of ARM, AARCH64, x86, x64 and MIPS.
* Knowledge of bug hunting / vulnerability research.
* Ethical hacking, including familiarity with web/network technologies.
* Knowledge of exploitation techniques and mitigations.
* Experience and knowledge of Linux and its internals.
* Experience and knowledge of Android or iOS and its internals.
* A good understanding of the C or C++ language.
This vacancy is for experienced researchers and will require skills and experience in several of the areas listed as well as the ability to lead technical projects. If you do not meet these requirements please check our other vacancies which have different skills requirements.