Senior Security Researcher
Berlin, Germany
malwarecheese.com | @malwarecheese | github.com/afjoseph | linkedin.com/in/afjoseph/
Profile link: https://www.youracclaim.com/users/afjoseph/
Stack: C/C++, Cryptography,
Reverse-engineering, Android/iOS Internals
Research and consult in the latest adfraud schemes in one of the most used mobile SDKs on the market, installed on more than 90% of all mobile devices around the world.
Stack: C/C++, Go, Rust,
Networking Protocols, Cryptography
Working at a nonprofit organization to lead, research and develop a suite of internet technologies that promotes the heatlh of the free internet; provides uncensored access to dissident writers and journalists; and ensures high-speed network throughput.
This work involves heavy knowledge of cryptography (mainly manipulation work on TLS, QUIC, and zero-knowledge proofs), networking technologies (your day-to-day layer 3-4), protocol reversing, basic linux binary analysis and an unhealthy amount of Rust and Go.
Stack: C/C++, Android+iOS internals,
Ruby, Python, Golang
Berlin, Germany
Facilitate the security and R&D of Adjust’s mobile products which provide mobile analytics services to clients around the globe. Adjust’s open-source solutions are integrated into over 35,000 mobile apps and hitting over 400+ billion data points per month.
This team was responsible for researching, developing, and maintaining Adjust’s endpoint and software protection schemes, as well as reverse-engineer adtech malware, develop regular security updates to our open-source SDKs, and automate our production servers.
Selected highlights: * Train and hire a team of nine software engineers and security specialists. * Research and prototype new endpoint security projects. * Speak at several conferences and encourage the rest of the team to do so. * Liason the communication with the rest of the tech teams to facilitate the security updates. * Improved efficiency and productivity by providing technical input to define project roadmaps and prioritize team tasks. * Oversee the code review process. * Develop and communicate the yearly research plan.
Stack: C/C++, Android+iOS internals,
Ruby, Python, Golang
Berlin, Germany
I started and grew the R&D side of Adjust’s Fraud Team that’s aimed at researching the current and future mobile Ad Fraud schemes and develop appropriate countermeasures. This included heavy reverse-engineering work, knowledge of low-level Android+iOS internals, and knowledge in endpoint and software protection schemes.
My job also included setting up the infrastructure for testing all our security solutions safely and follow-up on proper secure coding standards and best practices.
Stack: Java, Android+iOS development,
Objective-C, Swift
Berlin, Germany
Develop and maintain a collection of open-source mobile analytics SDKs used by over 35,000 apps on 7 non-native platforms and 3 native platforms (Android, iOS, and Windows).
Responsibilities include: - Design and develop a mobile analytics SDK that supports low-cost concurrency, friendly API, safe and secure traffic, and uniform architecture among 10 native and non-native development platforms. Non-native platforms: React Native, Adobe Air, Unity, Cordova SDK, Marmalade, Cocos2d-x, and Xamarin. Native Platforms: Android, iOS, and Windows.
Additional responsibilities include: - Integrating a continuous integration lifecycle - Writing a mock backend server for testing traffic and running integration tests
https://github.com/adjust/sdks
Berlin, Germany
Prepare, teach and run Udacity sessions in Berlin for the Android Nanodegree, as well as individually mentor students, prepare knowledge exchanges, and give career advice.
My responsibilities included:
- Setup a custom education plan for each student
- Regular one-on-ones with students and follow-up on any issues they had with the course.
More info here: https://www.udacity.com/course/android-developer-nanodegree-by-google–nd801
Stack: Android+iOS development, Java,
Kotlin, Objective-C
Same as before, just more responsibilities and more security audits.
Stack: Android+iOS development, Java,
Kotlin, Objective-C
Kuala Lumpur, Malaysia
I was part of the core Android+iOS development team responsible for the development of the company’s flagship apps. It was also my responsibility to research the latest Android and iOS trends and architecture systems to maintain a clean and testable codebase.
Furthermore, introducing automation as part of the testing infrastructure for our mobile apps was one of the main initiatives I’ve worked on.
At later stages, my task shifted mainly to auditing and securing our company’s infrastructure. This involved working closely with most tech team leads to ensure secure and uniform communication from client apps to the backend.
List of apps we successfully shipped and maintained:
- Mindvalley Academy
- Android: https://play.google.com/store/apps/details?id=com.mindvalley.mva
- iOS: https://apps.apple.com/us/app/mindvalley-learn-and-evolve/id1108786610
- Omvana:
- https://play.google.com/store/apps/details?id=com.omvana.mixer
- iOS: https://apps.apple.com/us/app/omvana-get-in-flow/id595585396
Stack: C#, Unity, Java,
Objective-C, Android+iOS Development
Kuala Lumpur, Malaysia
http://www.blockparty.co.jp/en/
Develop and maintain four gaming mobile apps (Android and iOS), as well as, liaison with designers and QA testers to deliver feature requests in a timed and orderly fashion. I used Unity game engine and native Android + iOS extensively.
Furthermore, at the later stages, I was responsible for training and mentoring the juniors.
I freelanced five Java. C++ and Python contracts (fully unit-tested with automation and a proper build system) in different hire-a-developer platforms. This was mostly done to gain experience on the side while working on university studies, as well as pay off my college studies. Life as a college student is hard…
Dual Degree with Asia Pacific University in Malaysia