Maksim Shudrak

Maksim is an offensive security researcher and engineer with more than a decade of experience in red teaming, malware analysis, and exploit development complemented by a PhD in machine code vulnerability detection. He loves searching for complex large-scale issues in modern technologies and outlining their impact. Maksim is an author of open-source tools for scanning cloud infrastructure, fuzzing, and dynamic malware analysis which he presented at various conferences such as DEF CON, VirusBulletin, and BlackHat Arsenal.

• @Mshudrak
• Dynamic Presentation Playlist

Presentations:

• 2025-08-08 12:30 - DEF CON 33 (2025) - Edge of Tomorrow: Foiling Large Supply Chain Attacks By Taking 5k Abandoned S3 Buckets from Malware and Benign Software
• 2019-08-10 14:00 - DEF CON 27 (2019) - Zero bugs found? Hold my Beer AFL! How To Improve Coverage-Guided Fuzzing and Find New 0days in Tough Targets
• 2019-03-04 13:30 - BSidesSF 2019 - Fuzzing Malware for Fun & Profit: Applying Coverage-Guided Fuzzing to Find and Exploit Bugs in Modern Malware
• 2018-10-04 09:00 - VB2018 - Tricky sample? Hack it easy! Applying dynamic binary instrumentation to lightweight malware behaviour analysis
• 2018-08-12 15:00 - DEF CON 26 (2018) - Fuzzing Malware For Fun & Profit. Applying Coverage-guided Fuzzing to Find and Exploit Bugs in Modern Malware