Summ3r 0f h4ck: Digital Security 2019 internship
Digital Security, one of the largest consulting companies in the field of information security, invites you to the Summ3r 0f h4ck summer internship program in St. Petersburg. Summ3r 0f h4ck will be held from July 15 to August 15, 2019. Accepting applications will last until May 30 (inclusive). Limited number of seats.
As part of the internship, you can:
Feedback from interns about previous internships can be read here and here .
')
At the lectures of the research department specialists, you will learn about finding vulnerabilities in C / C ++ applications (using the whitebox and blackbox methods), useful engineering reverse tricks (IDAPython, Ghidra, DBI), phasing applications (KLEE, libfuzz, AFL ), as well as the security of firmware and hardware.
Employees of the security audit department will analyze common web vulnerabilities, the nuances of the mechanisms on which web security is built, and will also consider useful tools in this area and work with them. In addition, Digital Security staff will talk about privilege elevation in Linux and Windows systems, Active Directory, Android-specific vulnerabilities, and much more.
We expect from candidates:
The company Digital Security has two main areas of activity, each area is engaged in a separate team. To complete an internship in a particular department, you need to fill out the appropriate form.
The audit department is engaged in penetration testing, security analysis of web applications and corporate software. The department is suitable for those who like to understand how the sites are arranged, to stray around the depths of corporate networks and closely gaze into the source codes of applications. Here are waiting for those who like to break everything.
Apply to the security audit department.
The research department is primarily engaged in reverse engineering tasks, searching for vulnerabilities in binary applications and devices. If you like to sit in a disassembler or a debugger, if you want to automate various tasks for finding vulnerabilities, if you like to write super-fuzzers, then you are here.
Apply to the research department.
The selection results will be announced on June 10th. If you have any questions, please email us at traineeship@dsec.ru.
As part of the internship, you can:
- Conduct research in the selected field of practical information security with the support of the curator.
- Present the results of the study at the relevant international conference.
- Get practical skills through specially trained training stands.
- Listen to a course on practical information security from the company's specialists from the research department and the security audit department.
Feedback from interns about previous internships can be read here and here .
')
At the lectures of the research department specialists, you will learn about finding vulnerabilities in C / C ++ applications (using the whitebox and blackbox methods), useful engineering reverse tricks (IDAPython, Ghidra, DBI), phasing applications (KLEE, libfuzz, AFL ), as well as the security of firmware and hardware.
Employees of the security audit department will analyze common web vulnerabilities, the nuances of the mechanisms on which web security is built, and will also consider useful tools in this area and work with them. In addition, Digital Security staff will talk about privilege elevation in Linux and Windows systems, Active Directory, Android-specific vulnerabilities, and much more.
We expect from candidates:
- Possession of basic knowledge and the desire to learn and learn new things in various areas of information security.
- Independence and responsibility, but we are also ready to provide any assistance in research.
The company Digital Security has two main areas of activity, each area is engaged in a separate team. To complete an internship in a particular department, you need to fill out the appropriate form.
Security Audit Department
The audit department is engaged in penetration testing, security analysis of web applications and corporate software. The department is suitable for those who like to understand how the sites are arranged, to stray around the depths of corporate networks and closely gaze into the source codes of applications. Here are waiting for those who like to break everything.
Apply to the security audit department.
Department of research
The research department is primarily engaged in reverse engineering tasks, searching for vulnerabilities in binary applications and devices. If you like to sit in a disassembler or a debugger, if you want to automate various tasks for finding vulnerabilities, if you like to write super-fuzzers, then you are here.
Apply to the research department.
The selection results will be announced on June 10th. If you have any questions, please email us at traineeship@dsec.ru.
Source: https://habr.com/ru/post/450036/
All Articles