我們使用Cookie和類似技術來改善您的體驗、分析網站使用情況並協助我們的營銷工作。我們收集的數據包括頁面訪問記錄和匿名使用統計。 私隱政策
職位預算: USD 15,000-30,000
發佈時間:
We seek a security engineer with deep hands-on experience in comprehensive security assessment and defense system building for web apps, mobile platforms (iOS/Android), and IoT devices. Candidate must independently execute end-to-end offensive workflows: asset discovery, automated scanning (Burp Suite, MobSF, Nmap, Frida, JADX), manual pentesting (OWASP Top 10, Mobile Top 10, IoT firmware reverse engineering & protocol analysis), PoC development, exploit validation, and actionable remediation guidance. Requirements: • Deep web protocol security knowledge (HTTP/S, TLS, OAuth2, JWT); familiarity with vulnerabilities & hardening for Spring Boot, React Native, Flutter; • Android APK decompilation, Frida/Libffi instrumentation, iOS jailbroken debugging, SSL pinning bypass; • IoT firmware extraction (binwalk, firmware-mod-kit), embedded reverse engineering (IDA Pro/Ghidra), BLE/Zigbee/Wi-Fi analysis, hardware risks (JTAG/SWD, insecure bootloaders);