Feb 2023 – Present · 3 yrs 3 mos

Jan 2023 – Feb 2024 · 1 yr 1 mo · United States · Remote

Mar 2022 – Mar 2023 · 1 yr

• Leading CPU and Microarchitecture security research

Jan 2022 – Present · 4 yrs 4 mos

May 2021 – Apr 2026 · 4 yrs 11 mos

Dec 2020 – Nov 2024 · 3 yrs 11 mos

Jan 2020 – Mar 2022 · 2 yrs 2 mos · Remote

Sep 2019 – Present · 6 yrs 8 mos

Oct 2013 – Dec 2019 · 6 yrs 2 mos · Hillsboro

• Founder of the team STORM (STrategic Offensive Research & Mitigations). Previously led the Core Client and BIOS Teams Security Teams.

Jul 2013 – Dec 2013 · 5 mos · Urbana-Champaign Area

• While doing my PhD, I received a tuition and support from the university to perform research in the field of computer security and to give classes on reverse engineering in different curriculums.

Jan 2013 – Jul 2013 · 6 mos

• Responsible for the Cipher Technology, Cipher Intelligence and Cipher Labs Teams
• Coordinate the R&D and Innovation teams
• Manage the Ethical Hacking Team that provides Penetration Test, Code Review and other high-level technology offers to customers

Jul 2011 – Dec 2012 · 1 yr 5 mos

• Lead the Security Research Initiatives in Qualys related to automated malware analysis and vulnerability finding, exploitation and understanding.

Jul 2010 – Present · 15 yrs 10 mos

• Dissect.pe is a malware research project, now in beta stage.
• The idea of the project is to provide a free interface for malware analysis, similar to other existing projects, but with advances that will be announced when we start freely dissecting samples.
• For now, the system has malware classification and is open for partnership with industry vendors and other projects for feed exchange.
• The link for the project is: http://feeds.dissect.pe/

Nov 2008 – Jul 2010 · 1 yr 8 mos

• COSEINC is a Singapore based and privately funded company dedicated to providing highly specialized information security services to our clients. Founded in 2004, we are a young and dynamic company whose constitution are computer security experts, from diverse backgrounds and geographies, with distinguished credentials and experience.
• It is our aim to provide our clients with the most professional and competent expertise and services at the most reasonable rates so that they can achieve the highest returns on their information technology investment.
• Organizationally, COSEINC is structured into 2 teams. They are the Advanced Malware Laboratory (AML) and the Vulnerability Research Laboratory (VRL).
• As for the VRL, this team is focus on discovering inherent vulnerabilities in software either due to bad development or weak implementation. Basically software is created by humans, and to err is human. The VRL team is sub-divided into 2 sub-teams, namely the Windows sub-team and the Linux sub-team. Both sub-teams have published several findings.

Apr 2008 – Jul 2011 · 3 yrs 3 mos · Israel

• Responsible for the Vulnerability Discovery Team (VDT)

Jan 2008 – Jan 2008 · 0 mo

• Lead the vulnerability research initiatives in the company.

Jan 2007 – Feb 2010 · 3 yrs 1 mo

• Hakin9 is an important magazine in the IT Security Industry, with leading articles.
• For Hakin9 I contributed with two articles (about Kernel Exploitation and Anti-Forensics and about IDS/IPS Evasion). Also, I was a top reviewer of articles approved for publication, giving feedbacks to the authors as well.

Nov 2006 – Dec 2009 · 3 yrs 1 mo

• The first to bring the SANS trainings to Brazil during a Hackers to Hackers Conference (H2HC) I'm authorized to give the Cutting Edge Hacking Techniques, the Mastering Packet Analysis and the Exploitation classes.

May 2006 – May 2008 · 2 yrs

• Worked as a software Engineer at IBM, member of the Advanced Linux Response Team (ALRT), part of the IBM Linux Technology Center (IBM/LTC) Brazil also worked in the IBM Toolchain (Debugging) Team for Power Architecture.

Jan 2006 – Jul 2006 · 6 mos

• University Professor for the Operating Systems class, focusing on the design of operating systems trying to bring together the academic focus with real-life experience.

Jan 2005 – May 2006 · 1 yr 4 mos

• Act as a leader in solution provide using opensource and with focus on security. The company is small-sized, but one of the main sellers of Citrix in the latin America, with many big customers.

Jan 2005 – Jan 2006 · 1 yr

• Developed solutions to automate security needs, participated in new projects definitions, taking care of the security design.

Jan 2004 – Present · 22 yrs 4 mos

• We are organizing since 2004 a security conference called Hackers to Hackers Conference (H2HC).
• This conference is increasing every year and is used as a powerful way of communication between high skilled security researchers in Brazil.
• Many new techniques, tools and vulnerabilities have been presented during the conference years.
• Also acting as a speaker, I presented about the follow topics:
• Polymorphic attacks (where I presented the SCMorphism software that "automagically" generates polymorphic shellcodes)
• Kernel Rootkits x Application Layer Firewalls (with real sample using ISA Server 2004)
• Syscall Proxying || Pivoting (where I showed a framework to be PRELOADED permiting you run any program in your own machine but in fact it was translated to the analysed machine)

Jan 2004 – Present · 22 yrs 4 mos

• Organization founded in 2004 by three brazilian security researchers specialized in vulnerability research, exploit development, source code auditing, reverse engineering, intrusion detection and computer forensics. The main objective is to evolve, ethically sharing the results with the security community.

Jan 2002 – Nov 2004 · 2 yrs 10 mos

• Helped in the new infra-structure of the SCUA Suite which provides Windows Desktop Security
• Developed a Linux PoC of the SCUA Suite for a big RFP in the Brazilian Government
• Participated in Security Consultancy engagements in SCUA customers

Jan 2002 – Jan 2004 · 2 yrs

• Acted as an external consultant in Cyclades Brazil, giving trainings to partners and to support employees about the company equipaments and network in general.
• Also, helped the development team in questions regarding Linux.

Jan 2000 – Jan 2005 · 5 yrs

• Firewalls was founded to provide state-of-art security solutions to different customers needs. The idea was to act as an outsourced company for big vendors, achieving the best-in-class solution design without the need of all burocracy of a big company.
• In the company I acted as the design and code of the custom-made solutions for many different customers. As the owner/founder I also had the opportunity to deal with many aspects of the business and grown in experience in understand the challenges behind a company.

Jul 1998 – Jan 2000 · 1 yr 6 mos

• Acted in many different aspects of a new company starting to offer Linux and Security services.
• Teacher in the trainings, consultant to many different companies and developer of internal tools to automation of the services.