Vulnerability Research Winternship 2022 – 2023

Trail of Bits

Remote


About the Winternship ProgramTrail of Bits offers unique remote, short-term internship opportunities called "Winternships" (Winter internships).

Winterships generally happen over your University's winter break.

You get paid (~$2500) to work on a project that excites you and spend time with your friends and family.

Unlike other internships, our "Winternship" program is designed for people who are ready to start working on day 1.

You will take skills that you have learned and apply them to a short-term research project.

Vulnerability Research WinternshipCTFs are a common recommendation for learning Vulnerability Research, but most contests just last a weekend.

Real vulnerability research takes time, and this winter we are excited to offer students paid internships to audit code, find bugs, reverse engineer protocols, or write analysis queries.

Our researchers will be here to help by providing interns with suggestions and guidance.

At the end of the internship, you will write about your approach, results, and experience and present it to our team.

Example Projects:• Audit a library for vulnerabilities• Perform root cause analysis of a CVE and write an n-day exploit• Reverse engineer protocol parsing code and make accurate types and structures• Write CodeQL queries for variant analysis• Perform differential analysis to find bugs in libraries• Propose your own projectRequirementsYou must be a student or recently a studentYou must have at least 4 weeks of time between December 5, 2022 and January 27, 2023 to dedicate to the projectDedication to diversity, equity, & inclusionTrail of Bits is committed to creating and maintaining a diverse and inclusive workplace where our employees can thrive and be themselves! We welcome all persons into our community.

We embrace the diversity of gender, gender identity or expression, race, color, religious creed, national origin, ancestry, age, physical and mental disabilities, medical condition, genetic characteristic, sexual orientation, marital status, family care or medical leave status, military or veteran status, or perceived membership in any of these groups.