Marc-etienne Léveillé is a seasoned malware researcher with 12 years of hands-on experience hunting and analyzing threats, now serving as a Malware Swatter at Google after a long tenure at ESET. He specializes in creating detection artifacts—YARA rules and Kaitai Struct definitions—to identify and classify diverse malware families such as Mumblehard, Keydnap, SSHdoor, Prikormka, and Kobalos. Based in Montreal, he blends deep reverse-engineering skills with practical threat intelligence to turn complex investigations into actionable Indicators of Compromise. His open-source contributions to a widely used IOC repository reflect a commitment to community defense and reproducible analysis. Collected technical rigor from an engineering degree at Université du Québec (ÉTS) underpins his methodical approach to disrupting adversary operations.
12 years of coding experience
13 years of employment as a software developer
B.Ing., Génie des technologies de l'information, B.Ing., Génie des technologies de l'information at Université du Québec - Ecole de Technologie supérieure
Indicators of Compromises (IOC) of our various investigations
Role in this project:
Security Engineer
Contributions:35 commits, 7 PRs, 182 pushes in 7 years 3 months
Contributions summary:Marc-etienne contributed several YARA rules and Kaitai Struct definitions to identify and analyze malware indicators of compromise (IOCs). They added rules for various malware families, including Mumblehard, Keydnap, SSHdoor, Prikormka, and Kobalos. These contributions enhance the repository's ability to detect and classify malicious software based on specific patterns and behaviors.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.