Pierre Pronchery
Gubener Straße 40
10243 Berlin
Germany
|
|
|
|
French citizen, born in 1982
|
|
Skills
|
| Security consulting: |
- Source code audits (C/C++, PHP)
- Reverse-engineering (binaries, firmwares, protocols)
- Penetration tests (hosts, networks)
- System hardening (UNIX servers, embedded)
|
| Programming: |
- Systems software (assembly, kernel, libc, compilers)
- Distributed software (TCP/IP, PVM, SQL)
- Graphical interfaces (Gtk+, SDL)
- Web applications (PHP, XHTML/CSS, Javascript)
|
| Systems administration: |
- GNU/Linux, BSD, and other UNIX environments
- Deployment of services (DNS, SMTP, LDAP...)
- Task automation (perl and shell scripting)
- Monitoring solutions (performance, security)
|
|
Education
|
| Sep 2003 - Oct 2005: |
INSIA part-time computer engineering school, Paris (France)
Computer science engineer (systems, networks, programming, security)
|
| Sep 2002 - July 2003: |
Brookes University, Oxford (United Kingdom)
Bachelor of science in Computing with Honors (system software, networks, object oriented programming, distributed systems, compiler construction)
|
| Sep 2000 - June 2002: |
IUT2 Pierre Mendès-France University, Grenoble (France)
DUT (2 years Computer Science degree)
|
|
Languages:
|
French: native, English: fluent, German: conversational
|
|
Work Experience
|
| Since Feb 2010: |
Co-founder of loopb-ack IT-Security Consulting GbR
- Security reviews
- Exposure assessment
- Research & Development
|
| Since Sep 2007: |
DUEKIN Consulting as Freelance security consultant
- Source code and network audits
- Embedded systems development
- Research in applicative flaws and reverse-engineering
|
| Jul 2008 - Oct 2009: |
Bearstech with the R&D team |
| Feb 2006 - May 2007: |
n.runs AG as Security consultant
- Source code audits (C/C++, embedded...)
- Network penetration-tests
|
| Jan 2005 - Oct 2005: |
Fpconcept as Web developper (PHP/MySQL, scholar internship)
- Conception and development of a groupware solution
- Deployment of websites, including an online shop
|
| Nov 2004 - Dec 2004: |
Netanswer as Web developer (PHP/MySQL, scholar internship) |
| May 2004 - Oct 2004: |
COVENTYA as Systems administrator (scholar internship)
- Monitoring of servers and network equipments (Squid, Cacti, Nagios)
- Administration of the software infrastructure (Active Directory, Lotus Domino)
- Maintenance of user workstations, helpdesk
|
| Apr 2002 - Sep 2002: |
INRIA Rhône-Alpes as software developper
- Graphical interface in C++ and Gtk+ for the "Opale" project
|
|
Personal involvement
|
|
Participations in community events:
- Pas Sage en Seine 2010, « Confidences par SMS » (Mobile security)
- CELF 2009, launch of « hackable-devices.com »
- RMLL 2009, embedded development workshop
- FOSDEM 2009, embedded development workshop
- HAR 2009, embedded development workshop
- GSMA 2009, talk about « hackable devices »
- 25C3 2008, lightning talk and embedded development workshop
- 23C3 2006, « Fudging with firmware » (firmware reverse-engineering)
- 0sec 2006, « Fudging with firmware »
- 0sec 2005, « Packet tapping » (libpcap shortcomings)
- RMLL 2005, « Paranoia hour » during Les Nocturnes
|
|
Contributions to the NetBSD Operating System:
- security advisory and patch for a local DoS (CVE-2010-0561)
- fixes and backports into NetBSD 4.0 and 5.0
- port of the aps driver from OpenBSD
- maintainer of 15 packages in pkgsrc-wip
|
|
Development of an experimental Operating System, DeforaOS:
- remote and secure access to users' data
- POSIX-compatibility layer
- desktop environment
- support for embedded platforms
|
|
Extra curricular activities
|
|
Music, Movies, Wushu |