Internships 2014

Fri 15 November 2013 by cedric

We have 4 open positions for internships:

  • Assessment of tools detecting APT
  • Binary instrumentation
  • Analysis of a virtualization platform
  • Electronic Control Units (ECU) analysis

Internship 1: Assessment of tools detecting APT

Description:

The first part of the internship consists of analyzing different solutions that detect advanced attacks. Then, based on these results, the intern will have to define a methodology and a test environment to quickly identify any advantages and weaknesses of such solutions.

For this internship, we can distinguish 3 steps:

  • State of the art
  • Studies of commercial APT detection systems
  • Defining the test environment

Requirements:

  • Good knowledge and skills in reverse engineering
  • Malware analysis, packer
  • Virtualization detection methods

Internship 2: Binary instrumentation

Description:

The purpose of this internship is to define the best tool for Dynamic Binary Instrumentation (DBI) and apply it to debug software. Thus, it will contribute to studies concerning software’s reaction when being fuzzed.

The internship will be split in 3 parts:

  • State of the art
  • Study of DBI solutions
  • Tests and evaluations

Requirements:

  • Reverse engineering: IDA, WinDbg
  • Windows Internals: SDK, WDK

Internship 3: Analysis of a virtualization platform

Description:

The purpose of this internship is to study a virtualization system currently used in the cloud. The effective level of isolation will be assessed.

The internship will be devised in 4 parts:

  • State of the art
  • Study of the hypervisor
  • Study of the environment that may weaken the security model
  • Tests and proof of concept

Requirements:

  • Understanding of virtualization hardware technologies: Intel VT-x, VT-c (Network), VT-d (I/O MMU)
  • Reverse engineering: Ida, Hex-Rays

Internship 4: Electronic Control Units (ECU) analysis

Description:

The aim of this internship is to analyze an ECU, study diagnostics devices, and create tools for attacking different types of ECU.

This internship will be divided in 3 parts:

  • State of the art
  • Creation of a test platform
  • Development and maintenance of needed tools

Requirements:

  • Good knowledge in electronics, networks and real-time computing (a minimum knowledge of CAN would be appreciated)
  • Development in C/C++, and a scripting language like Python or Ruby
  • Basics in reversing would be appreciated for firmware analysis and patching

Duration of internships: 4-6 months

Contact: internships-lab@sogeti.com

Location: Paris (Issy les Moulineaux)