AWS CSA certified. Most of my industry experience has been with backend/fullstack Python. Some amateur computer security experience, specifically with fuzzing, primarily with IRC clients. You can see my name credited on the Irssi security page, as an example of one particular client: https://irssi.org/security/.
Have published a couple of blog posts on the Irssi blog concerning fuzzing Irssi:
This is a big deal imo. There are many tutorials out there on fuzzing servers, but anything that abstracts away the source code changes necessary to fuzz servers is a great thing. Essentially this is taking what those tutorials do and making it so you don't have to adapt those tutorials to the particular software you are dealing with. If it is easier to fuzz software, more fuzzing will be done leading to more bugs being discovered and fixed.
At The Irssi Project, fuzzing has been very effective in helping to discover bugs. Fuzzing can turn up bugs that aren't otherwise found or that are unreproducible through typical use of the program. See https://irssi.org/security/.
Of course Irssi is a client, not a server. IRC servers often have protections against frequent connections and messages, which can result in fuzzers getting kicked. So this new development in TCP server fuzzing outlined in the article is a great improvement, but there are going to be cases where the code of the server will have to be modified moreso than just swapping out the main function (which I know the author never claims to not be the case).
Remote: Yes
Willing to relocate: Yes
Technologies: Python, SQL, AWS, Flask, HTML, CSS, JavaScript, Linux
Résumé/CV: https://www.linkedin.com/in/josephbisch/ (Email for PDF résumé)
email: joseph.bisch[at]gmail.com
AWS CSA certified. Most of my industry experience has been with backend/fullstack Python. Some amateur computer security experience, specifically with fuzzing, primarily with IRC clients. You can see my name credited on the Irssi security page, as an example of one particular client: https://irssi.org/security/.
Have published a couple of blog posts on the Irssi blog concerning fuzzing Irssi:
* https://irssi.org/2017/05/12/fuzzing-irssi/
* https://irssi.org/2018/01/24/pyircfuzz/