tavares.re/blog | X | LinkedIn | TRACE | mailto: andretavare5 AT proton.me

Threat Researcher with Computer Science background, tracking malware botnets through open-source intelligence, malware analysis and reverse engineering. Always looking for new challenges, eager to share knowledge and ready to help the team.

Professional Experience

Senior Threat Researcher

Feb. 2022 — Present
Bitsight — Cyber Security Risk Management, Lisbon, Portugal (Remote)

  • Conducted in-depth research on various diverse malware families, such as PrivateLoader, AgentTesla and Tofsee, including reverse engineering, botnet trackers/emulators development to monitor its command and control (C2) infrastructure and distribution campaigns, and writing of network/file/memory detection signatures.
  • Big data mining and enrichment on various datasets, with Apache Spark on Amazon EMR, aiming to discover compromised systems and credentials.

Threat Researcher

Jan. 2020 — Jan. 2022
Bitsight — Cyber Security Risk Management, Lisbon, Portugal (Remote)

  • Conducted research on various malware families, such as FluBot, IcedID and Trickbot, including reverse engineering, botnet trackers/emulators development to monitor its command and control (C2) infrastructure and distribution campaigns, and writing of detection signatures.
  • Automated domain hunting and classification using Python, including domain clustering.

Junior Threat Researcher

Jan. 2018 — Dec. 2019
Bitsight — Cyber Security Risk Management, Lisbon, Portugal

  • Discovered and classified botnet command and control domain names through open-source intelligence, malware analysis and reverse engineering, using Python for scripting.
  • Writing of network detection signatures.

Research Highlights

Education

B.Sc. + M.Sc. in Computer Science and Engineering
Sep. 2012 - Nov. 2017
Instituto Superior Técnico – Universidade de Lisboa, Lisbon, Portugal

  • Specializations: Cyber Security & Software Engineering (Erasmus @ Universiteit van Amsterdam)

Skills

  • Languages: Portuguese, English, Spanish.
  • Computer Languages: Python, C++, ASM, PySpark, SQL, Java, JavaScript, Bash.
  • Tools: Ghidra, x64dbg, IDA, JADX, YARA, RegEx, Docker, Suricata, Wireshark, Apache Spark, Git, VS Code, OpenSearch.
  • Personal: Curiosity, Perseverance, Dedication, Teamwork, Problem-solving, Adaptability.

Training Highlights

Interests & Hobbies

InfoSec, FOSS, Non-Fiction Books, Calisthenics, Travelling, Outdoors, Playing Guitar 🤘, Casual Gaming, Sustainability, Volunteering.