Rafi Gana

Cybersecurity Professional

About Me

I'm a cybersecurity analyst and software engineer focused on creating secure, adaptable systems. I enjoy diving deep into systems to uncover insights, using a structured approach to break down complex problems and find practical solutions.

I always prefer open-source and self-hosted setups, as they give me the flexibility to customize and learn hands-on. I see my work as a blend of technical precision and collaboration, and I thrive in team environments where I can share ideas and learn from others.

At the end of the day, I'm driven by the challenge of building secure, reliable systems that meet real needs while continually growing in my field.

Professional Experience

Software Security Consultant
Freelance
2023
  • Compiling comprehensive reports on existing vulnerabilities, including risk assessments and detailed remediation plans to guide stakeholders.
  • Crafting and implementing robust secure development process policy to minimize future vulnerabilities and ensure secure coding practices.
  • Conducted in-depth reverse engineering and penetration testing projects to uncover, report and/or exploit security weaknesses in software applications.
Embedded Systems Security Researcher
CyberToka Ltd.
2020-2022
  • Reverse engineering Automotive embedded systems, focusing on RCE and PE, using tools including Saleae, IDA, Ghidra, GDB, Frida, ptrace.
  • Security research from "bare metal" chip off, eMMC OOB data parsing and partition analysis, to patching and Jailbreaking.
  • In-depth knowledge of the Linux kernel including patching the source code and writing LKMs.
  • Monitor, analysis and manipulation of network traffic using Wireshark, Burp, TCPdump, Ubertooth, Internalblue, Airmon and BlueZ.
Software Engineer and OS Security Researcher
Prime Minister's Office
2016-2019
  • APKs and ELF reversing using state of the art debugging and decompiling tools.
  • Coping with modern OS security mitigations and exploitation countermeasures.
  • Managing and developing several full-stack projects from planning through execution.

Education

B.Sc. Computer Science
The Academic College of Tel Aviv-Yafo
2016-2020
Electronics Practical Engineer
Amal 1 Holtz, Tel-Aviv-Yafo
2011-2013
Languages: Hebrew (Native), English (Full professional proficiency)