Hello,
the resume follows. Generally speaking, I am looking for a security
reseach or development job. As I live in Poland, I will gladly discuss
relocation/telecommuting possibilities.
Regards,
RW
Rafal Wojtczuk <[EMAIL PROTECTED]>
AGE: 27
EDUCATION
Master of Science at Warsaw University (in 1999), The Institute of
Informatics
INTERESTS
- multiuser systems security
- network security
- low level programming, including kernel development
- designing/writing secure applications / OS elements / protocols
- finding vulnerabilities in applications / OS elements / protocols
- Intrusion Detection Systems
PUBLICATIONS (see http://www.avet.com.pl/~nergal/publ/)
- an article in phrack58 titled "The advanced return-into-lib(c)
exploits: PaX case study"
- several bugtraq posts (high quotation index)
-- new, original root exploits (Linux and OpenBSD)
-- the new method of TCP blind spoofing (Linux)
-- the new generic method of NIDS bypassing
-- the first generic method to bypass Solar Designer
non-executable stack patch
- "Libnids: the infallible E-component of Network Intrusion Detection
Systems" - my master thesis (in Polish)
- libnids (http://www.packetfactory.net/Projects/Libnids)
- a few articles in Polish computer magazines
PRESENTATIONS IN PUBLIC
- USENIX conference NordU2002, Helsinki, Finland : "Owl - a security
enhanced OS" (one of the two speakers)
- CanSecWest 2002, Vancouver B.C., Canada: "Owl - a security
enhanced OS" (one of the two speakers)
- a few lectures during local Polish security events
COMPUTER SYSTEMS KNOWLEDGE
- expert level knowledge of Linux, including kernel issues, advanced
routing and firewalling solutions, device drivers etc
- knowledgeable in other Unix platforms (Solaris, *BSD)
- excellent knowledge of all aspects of TCP/IP networks and
IP based protocols with particular stress on security issues and low-level
features
- NIDS; experience with ISS Realsecure and opensource projects
- firewalls; experience with FW-1, PIX and Linux native firewalls
- MAC implementations within Linux kernel: Medusa, rsbac, hp-lx
COMPUTER PROGRAMMING KNOWLEDGE
- C/C++
- the compiler developer tools - flex, bison
- i386 assembly
- bash, sed, awk etc scripts
- CASL scripts
- cvs environment
RECENT SOFTWARE ACHIEVEMENTS
- Linux device drivers for WAN cards
(see ftp://ftp.sbei.com/pub/OpenSource/Linux)
- segvguard: Linux 2.4.x kernel module, implementing host-based IDS
functions; event driven by processes' memory faults
- pam_tcb: a secure reimplementation of pam-unix for the needs of Owl;
makes possible to strip s-bit from /usr/bin/passwd
- lb.o: Linux 2.4.x kernel module, implementing load balancing among
many ISP (uses iptables features)
TIMELINE
- since Dec 2000: security analyst and developer at 7bulls.com SA,
http://english.7bulls.com
- Sep 1999 - Dec 2000: security analyst and developer at AVET,
http://www.avet.com.pl
OTHER
- December 94: the First Certificate in English exam (grade A)