Avatar for SimSpace

Enhance your cybersecurity through people, process, and technology

Software Engineer, Attack Tools

$90k – $150k • 0.02% – 0.05%
Apply now
ADVANCED ADVERSARY EMULATION TEAM

The Advanced Adversary Emulation Team has the exciting task to develop the range frameworks, tools and means to emulate sophisticated adversaries and defeat or evade all known security defenses. These capabilities will support both pen-testers and our SimSpace Red Team to model sophisticated adversaries during tests, training and exercises. Capabilities that must be developed include the ability to gain access and a foothold on target machines, develop host and network implants, memory based attacks, process injection, covert command and control mechanisms, hardware based implants to model lifecycle attacks and air-gap jumping techniques.

ATTACK TOOLS SOFTWARE DEVELOPER

As an Attack Tools Software Developer you will create the tools and means to penetrate and exploit computer networks. You will have to defeat the latest exploit mitigation techniques, bypass or evade defensive tools and maintain a covert presence within a network. You will be responsible for ensuring end-to-end functionality of the tools and making sure they are robust and ready for our Red Team to use.

You will:
• Develop exploits and implants based on current requirements
• Design and develop software for our Red Team to use during training exercises and tests
• Design and develop stealthy communication channels
• Collaborate with our team of experienced developers to create usable and robust attack tools
• Collaborate with our Red Team to prioritize development efforts
• End-to-end testing of attack tools to ensure functionality and the ability to evade defensive tools

You have:
• A clear understanding of the current state-of-the-art technologies in computer and network security.
- Exploit mitigation techniques
- Anti-debugging / anti-instrumentation techniques and countermeasures
- Defensive tools (detection, forensics, auditing, etc.)
- Ability to analyze and understand weaknesses of defensive tools
• Knowledge and understanding of multiple operating systems and their internals, network programming, and protocol analysis
• Demonstrated aptitude developing low-level capabilities across one or more operating systems and architectures
• Experience with unit testing frameworks and familiarity with full integration testing a plus
• Understanding of web frameworks and some front end development experience a plus
• Networking/socket programming and/or protocol analysis experience
• Knowledge in encryption algorithms and current implementations
• A strong sense of pride in writing code that is both well-tested and well-designed
• Strong communication skills

Your skills:
• Experience with C/C++, Python, Ruby, Lisp
• Windows System and Kernel Programming
• Linux kernel and driver development
• Development experience with the Metasploit Framework
• Familiarity with multiple toolchains and cross-compilation
• Developing unit tests
• Continuous integration and testing experience (e.g. Jenkins)
• Experience analyzing and implementing proprietary protocols
• U.S. citizenship as required by our existing U.S. Government contracts

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.

More jobs at SimSpace

View all jobs

Software Engineer, Attack Framework

Apply now

Software Engineer, Backend

Apply now

DevOps Engineer

Apply now

Software Engineer, Frontend

Apply now

Senior UI Engineer

Apply now

QA Engineer

Apply now