Skills & Expertise

Security

Vulnerability Research Exploit Development Shellcode Writing Fuzzing infrastructures Reverse Engineering Windows Kernel Development Windows Malware Analysis Android Malware Analysis IoT

Programming

C C++ Python Assembly x86/ARM JavaScript Java

Tools

IDA Pro LLDB WinDbg GDB Frida x64dbg Visual Studio Sysinternals

Leadership & Business

Entrepreneur Team Leadership Technical Mentorship Strategic Planning Business Development Public Speaking Strategic Vision

Notable Achievements

  • #41 cyber security influencer by Calcalist
  • CVE-2020-1321 - Office365 Remote Code Execution vulnerability
  • 6th place at the National Code Guru competition
  • High security clearance
  • Personal commendation letter from IDF Chief of Staff Aviv Kohavi
  • Grandmaster rank on League of Legends (top 0.029% of players)

Professional Training

  • macOS and iOS kernel internals by Stephan Esser (2021)
  • Android Security - Reverse Engineering & App Pentesting (2015)
  • Silan (2010)

Career Experience

ActiveFence
Android Security Researcher (Consultant Position)
  • Led and supervised malware research teams, providing one-on-one mentorship and strategic guidance
  • Developed static unpacking solutions for leading packers (Jiagu360, NMMP, Cocos)
  • Provided boutique android reverse engineering services for Fortune 500 companies
  • Created extensive native on-boarding syllabus and technical presentations
Cellebrite (IPO)
MacOS Security Researcher (Vulnerabilities researcher)
  • Strategized 0-day attacks on newest versions of macOS systems (Catalina & BigSur)
  • End-to-end productization from kernel heap-overflow to userland code execution
  • Developed LLDB automation scripts for the research team's efficiency
  • Developed LLDB automation scripts for the research team, including automated heap slab status extraction post-shaping attack and browser-based memory visualization for streamlined debugging
Consulting
Cyber Security Solutions Consultant
  • Toka - Vulnerabilities research (Found 0-day vulnerabilities on embedded IoT devices)
  • MimeCast - Vulnerability research for PR (CVE-2020-1321)
  • Watchful - Android App Research solutions
  • DoubleVerify - Kickoff company’s research roadmap and researchers hiring
SNDBOX (Acquired by OPSWAT)
Founder & CTO
  • Recruited and led a team of industry-leading R&D engineers (ML, Full Stack, DevOps)
  • Designed large-scale cloud analysis infrastructure
  • Developed Windows Kernel components for malware analysis
  • Established technological partnership with VirusTotal
  • Led company's roadmap, product vision, and business development
  • Maintained connections with leading tech newsletters and co-wrote PR blogs
Seculert (Acquired by Radware)
Malware Reverse Engineer
  • Reverse engineered & bypassed malware anti-detection techniques
  • Implemented automated sandbox analysis using Cuckoo
  • Developed Windows driver components
  • Published technical deep-dive blog posts on malware families
Nice Systems (Acquired by Cyberbit)
Security Researcher
  • Reverse engineered packed applications
  • Developed intelligence solutions for data collection
IDF
Security Expert
  • Classified