Carl Livitt

Principal Researcher

Carl Livitt is a Principal Researcher at Bishop Fox. He has decades of experience in mobile and application security, hardware and embedded devices, reverse engineering, and global-scale penetration testing.

Carl is credited with the discovery of many vulnerabilities within both commercial and open-source software. He was brought in as a third-party expert to lead the team that confirmed several security issues with St. Jude Medical implantable devices. His work eventually led to an official communication from the FDA.

Carl has served as a contributing author to Hacking Exposed Web Applications 3rd Edition as well as a technical advisor for Network Security Assessment 1st Edition. He has been interviewed on NPR and quoted in publications including USA Today and eWeek. Carl co-authored the iOS reverse engineering framework iSpy, which was featured at Black Hat USA’s Tools Arsenal. In 2016, he appeared as a guest speaker on the topic of “Responding to Cybersecurity Risks” at The Association of Corporate Counsel’s Annual Compliance and Risk Management Forum.

The Latest From Carl

Industry Blog
On Apple, Encryption, and Privacy: A Word About Decryption
Industry Blog
On Apple, Encryption, and Privacy
Tech Blog
Rethinking & Repackaging iOS Apps: Part 2
Tech Blog
Rethinking & Repackaging iOS Apps: Part 1
Industry Blog
Guide to Hardening Your Firefox Browser in OS X
Tech Blog
SSL Key Generation Weaknesses
Oracle WebLogic Node Manager allows arbitrary configuration via UNC path