我们使用Cookie和类似技术来改善您的体验、分析网站使用情况并协助我们的营销工作。我们收集的数据包括页面访问记录和匿名使用统计。 隐私政策
职位预算: USD 15,000-30,000
发布时间:
We seek a security engineer with deep hands-on experience in comprehensive security assessment and defense system building for web apps, mobile platforms (iOS/Android), and IoT devices. Candidate must independently execute end-to-end offensive workflows: asset discovery, automated scanning (Burp Suite, MobSF, Nmap, Frida, JADX), manual pentesting (OWASP Top 10, Mobile Top 10, IoT firmware reverse engineering & protocol analysis), PoC development, exploit validation, and actionable remediation guidance. Requirements: • Deep web protocol security knowledge (HTTP/S, TLS, OAuth2, JWT); familiarity with vulnerabilities & hardening for Spring Boot, React Native, Flutter; • Android APK decompilation, Frida/Libffi instrumentation, iOS jailbroken debugging, SSL pinning bypass; • IoT firmware extraction (binwalk, firmware-mod-kit), embedded reverse engineering (IDA Pro/Ghidra), BLE/Zigbee/Wi-Fi analysis, hardware risks (JTAG/SWD, insecure bootloaders);