Merab Tato Kutalia

Information & Communications Technology

android Software Development

Tbilisi, T'bilisi, Georgia

Merab Tato Kutalia

Android Software Engineer / Chapter Lead, GDG Tbilisi Organizer

Software Engineer with 8 years of experience, specializing in Android development. He is a fan of all things software development, particularly architecture with a penchant for exploring the potentials of the platform. Out of work, Merab maintains an active podcast about work ethics and career growth, writes tech-blogs, and is a GDG organizer and speaker at international meetups/conferences (droidcon, DevFest, OWASP) and beyond. Cares about community and newcomers. Alongside his technological pursuits, he is an amateur cyclist and runner, biohacker, and spends lots of time on personal development.

references:
https://www.droidcon.com/media-detail?video=491027100 - droidcon APAC 2020
https://youtu.be/LLtzvEDqedM - DevFest Tbilisi/Vienna/Yerevan 2019
https://youtu.be/KUzIGjxoMO0 - Software Development Webinar 2020
https://youtu.be/LwEPvOx-2fU - OWASP Tbilisi 2020
https://tatocaster.medium.com/
https://debuggerpodcast.ge

Current sessions

Reverse and Inject

Android reverse engineering & malware injection. As Android engineers, we often like tinkering with the platform and for us, it is much easier to recognize some patterns while analyzing malicious code which gives us a huge advantage. This talk aims to explore the basics of reverse engineering, trending tools. How to decompile, disassemble the application, how to find malicious code snippets, and what are the possible pitfalls. Difference between static and dynamic analysis. A little bit about Smali and DEX compilers. We will have 2 live demos. First: show how to reverse engineer an application and second: at the end of the session, we will decompile APK, plant malicious code, repackage again and install it on the device to test it for educational purposes. Also will provide some introductory info on what is the Catch The Flag challenges and how we can practice.

Advanced talk, 30 and more minutes. Available demos. 45 minutes perfect

droidcon APAC - https://www.droidcon.com/media-detail?video=491027100

OWASP Tbilisi 2020 - https://youtu.be/LwEPvOx-2fU (Georgian)

Slides: https://speakerdeck.com/tatocaster/reverse-and-inject-droidcon


Mobile DevOps

Mobile DevOps is a modern approach that enables seamless application delivery from testing to production. Modern agile teams need fast iterations and short feedback loops and CI/CD is what technology enables that. The role of the mobile developer has changed, from only being able to code to be able to build and provide an engineering solution. Now developers are required to have DevOps skills in their skillset, that way it makes life easier not only for QA but for the whole team, deploying and delivering applications with a breeze.

30 minutes
ExactPro - Software Development Webinar - https://youtu.be/KUzIGjxoMO0?t=3483

Slides: https://speakerdeck.com/tatocaster/mobile-devops


Defensive Programming x FinTech

Defend against the impossible, because the impossible will happen!
How to avoid common errors in the code and how to master this discipline. Will try to show good and bad examples achieving safe and cleaner code. But there is another extreme part of this: overly defensive code, too much defensive code, I'm going to underline this thin line between defensive and extremely defensive code. Bonus: From my experience, most FinTech Android applications nowadays do it wrong when it comes to money so we will try to fix it

30 minutes
DevFest Tbilisi 2019, DevFest Vienna 2019, DevFest Yerevan 2019 - https://youtu.be/LLtzvEDqedM

Slides: https://speakerdeck.com/tatocaster/defensive-programming-x-fintech


Past and future events

droidcon APAC 2020

13 Dec - 14 Dec 2020