Eduardo Carbonel-novella is a research scientist and mobile security researcher based in Los Angeles with a decade of experience analyzing and hardening Android applications. He combines hands-on reverse engineering and tooling expertise—contributing YARA rules to the widely used APKiD project to detect modern packers and obfuscators—with practical improvements to r2frida that streamline Frida+Radare2 workflows for Android security testing. His work targets real-world threats like OLLVM, Arxan, and DexProtector, keeping detection capabilities current and actionable for analysts. Comfortable in both code and low-level debugging, he enhances developer usability with features such as breakpoint management, signal handling, and SELinux context manipulation. Colleagues rely on him to translate research findings into tools and rules that scale across the analysis community. He brings a pragmatic, research-driven approach to securing mobile ecosystems.
Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Role in this project:
Mobile Developer (Android)
Contributions:1 release, 77 reviews, 111 commits in 5 years 3 months
Contributions summary:Eduardo primarily contributed to the `apkid` repository by adding and modifying YARA rules for detecting various Android application obfuscation and protection techniques. They implemented rules for identifying packers and obfuscators, including OLLVM, Arxan, DexProtector, and others. Their work focused on enhancing the analysis capabilities of `apkid` by keeping it up-to-date with the latest Android security threats and obfuscation methods. They also made improvements in detecting multiple versions of the OLLVM obfuscator.
Contributions:10 reviews, 56 commits, 27 PRs in 4 years 3 months
Contributions summary:Eduardo primarily focused on enhancing the functionality and usability of the `r2frida` tool, a combined Radare2 and Frida environment for security analysis. Their contributions included implementing and refining commands for interacting with Frida, such as breakpoint management, signal handling, and library injection. They also improved help messages and added features like changing SELinux contexts for Android targets. Additionally, the user kept the project up-to-date by bumping Frida versions.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Eduardo Carbonel-novella - Research Scientist at ETSINF UPV