Lost Rabbit Labs
Job Description:Pentester I
Employment Type: Full-Time / Contract
Location: Remote/Hybrid
Min hours per week: 40
Penetration tester I
About Lost Rabbit LabsAt Lost Rabbit Labs, we push the boundaries of offensive security, cybersecurity research, and AI-driven automation. Our team is made up of red team operators, security researchers, and penetration testers who conduct real-world attack simulations, exploit development, and security automation to help clients identify vulnerabilities before attackers do.
We’re looking for a Penetration Tester I who is eager to hone their offensive security skills, conduct real-world penetration testing engagements, and work on custom offensive security tools. If you have a hacker mindset, an insatiable curiosity, and a passion for security testing, we want to hear from you!
What You’ll Do- Conduct penetration testing engagements on web applications, APIs, networks, cloud environments, and enterprise systems.
- Perform reconnaissance & attack surface analysis using OSINT, WisQuas, and threat intelligence techniques.
- Develop & modify exploits, payloads, and attack chains to simulate real-world adversaries.
- Write penetration testing reports, including risk assessments, PoCs, and remediation recommendations.
- Collaborate with security engineers & developers to test and improve security automation tools.
- Perform cloud security assessments on AWS, Azure, and GCP environments.
- Research and test new attack vectors, contributing to Lost Rabbit Labs' offensive security R&D efforts.
Required Skills & Qualifications1+ years of cybersecurity, penetration testing, or security research experience (internships, self-study, or labs count).
Understanding of web application security & OWASP Top 10 (XSS, SQLi, SSRF, RCE, etc.).
Basic knowledge of offensive security tools (Burp Suite, Metasploit, Nmap, BloodHound, Empire, etc.).
Experience with scripting & automation in Python, Bash, or PowerShell.
Understanding of common pentesting methodologies (MITRE ATT&CK, PTES, NIST).
Familiarity with networking concepts, protocols, and VPN usage.
Strong analytical skills and willingness to continuously learn and improve.
Bonus Skills (Nice to Have, but Not Required)Experience with Active Directory pentesting (Kerberoasting, Pass-the-Hash, NTLM relays, etc.).
Familiarity with cloud security testing (AWS, GCP, Azure).
Basic reverse engineering & malware analysis skills.
Understanding of exploit development, fuzzing, or binary analysis.
Experience with wireless & IoT penetration testing.
Certifications (OSCP, PNPT, eJPT, CEH, or similar) are a plus.
Why Join Lost Rabbit Labs?🔹 Work on real-world penetration testing engagements with top-tier security professionals.
🔹 Develop offensive security skills in a mentorship-driven environment.
🔹 Collaborate on cutting-edge research in exploit development, security automation, and adversary simulation.
🔹 Remote-friendly workplace with flexible hours.
🔹 Opportunities for career growth, including research projects, red team training, and advanced certifications.
