Positions

PhD students and Postdocs

We are constantly looking for motivated and talented PhD students and postdocs interested in one of these areas:

These are currently our areas of interest:

  • Web security (e.g., vulnerability analysis, measurements, etc.)
  • New automated program analysis techniques (e.g., web application scanners, static program analysis, client and server-side code analysis, etc.)
  • Machine learning and artificial intelligence for program analysis
  • Security of immersive web applications (e.g., metaverse security and privacy, WebXR, etc.)

Please look at our recent publications to learn more about our current interests.

If you would like to know more, please send your questions to Giancarlo Pellegrino.

General Requirements

  • A BSc/MSc degree/PhD in Computer Science, Information/Cyber Security, Mathematics, or equivalent
  • English proficiency (knowledge of German is not required)
  • Excellent programming skills
  • (Depending on the topic of interest) Proven background in web security, program analysis, and/or reinforcement learning/machine learning

How to apply

All applications must be submitted through the CISPA application system and contain the following:

  1. Cover letter. As the CISPA application system is centralized, your cover letter must specify that you are applying for a position in the group of Dr. Pellegrino
  2. CV/Resume
  3. For PhD positions, the most recent transcript of records
  4. Certificates
  5. Names, titles, and email addresses of your referees

Submit PDF files only; Microsoft Office documents will be discarded.

To speed up the process, send me a heads-up email for your submission to pellegrino@cispa.de.

Moar Instructions

Why submitting boring applications?!

Is sending a bunch of PDFs via email too boring for you? Would you like to spice your application a little bit up? Say no more. I got you covered!

Below are four challenges. The first three are string tokens, each hiding a secret text message. Your goal is to find the text message and follow the additional application submission instructions in it. The final challenge is about a vulnerability. Following these new instructions is the only requirement to prove you got the solution. Solving the challenges is strongly recommended.

The complexity of the first three challenges is incremental, and solving one will help in solving the next one. Be aware that solving the challenges takes time. Depending on your skillset, solving all challenges may take about one hour.

Challenge 1

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

Challenge 2

MRQXIYJ2ORSXQ5BPNB2G23B3MJQXGZJWGQWFAR3IGBRFO5ZLKBDWQ3CZK5ISWUCDHFXVUV2GNNIGU6DJMIZFENKQNJ4G6TKUGVCGCR2GONREOVTVLIZFKZ2NNJ3XMYKEIUVVASCBFNITEOLVLIZUU2DEJBLHGWKYKJYGEMRUNBEUM3DWMRJUE6TCGJ4DEWSXKFTWIR3INREUOTTPLFLXQ422K42W4WSTIJ2WIVZRNFNFQSLHJVUTIZ2UNU4TGTCDII2WEM2VM5RFQVT2MRBUE2C2I5IWOZCHNBWESSCOGBRW23DVLJ4UEMDCGJ2GYYTJIJGVEVSRORKXSMKTKQYE4TCJI5DDASKIKJXVUU2CNRRG2ULHMIZFSZ3EI5UGYSKIJYYVS3LQNRMTGULVKBBTS52QNJ3XMWLNHFVWKVBUHBGDE2BQMJLXOKY=

Challenge 3

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==

Challenge 4: The SUPER-MEGA-CHALLENGE!!!

Follow the white rabbit…