Windows Client Application Developer

Title: Windows Endpoint Engineer (C++ / Rust / .NET) Description: We are looking for an experienced Windows developer to build a lightweight client application consisting of a background service and a per-user agent. The project involves low-level Windows API integration, system hooks, and enterprise-ready packaging. Responsibilities: Develop a Windows service (LocalSystem) and per-user agent process. Implement clipboard, paste, and text input monitoring using Win32 APIs, low-level keyboard hooks, and UI Automation (UIA). Build a local detection engine (normalization, regex with checksum validation, Bloom filters, SimHash/MinHash similarity). Implement IPC between service and agent (Named Pipes). Handle local secure storage (SQLite/JSONL with DPAPI encryption). Build overlay UI components (toast-style warnings, always-on-top, DPI/multi-monitor aware). Package as MSI (WiX), with Intune/SCCM deployment readiness. Integrate auto-update mechanism with signature validation and rollback. Apply hardening: ASLR/DEP/CFG, WDAC/AppLocker guidance, EV Authenticode signing. Optimize for low latency (under 10ms per event scan), low idle CPU (under 1 percent), and small memory footprint (under 80 MB per process). Requirements: Strong expertise in C++ (C++17/20) or Rust with Win32/Windows-rs bindings. Proven experience with UI Automation (UIA) and low-level keyboard/mouse hooks. Familiarity with ETW event consumption (DNS, WinHTTP, Schannel, MsQuic) or WFP callouts for PID to Domain mapping. Experience with regex libraries (RE2, Hyperscan) and checksum algorithms (Luhn, IBAN mod97). Hands-on knowledge of inter-process communication (Named Pipes, shared memory). Experience building MSI installers (WiX Toolset) and deploying via Intune/SCCM. Knowledge of code signing, DPAPI, and Windows security hardening. Ability to write efficient, low-latency, fault-tolerant code for production endpoints. Nice to Have: Experience with Windows Filtering Platform (WFP) driver development. Knowledge of enterprise endpoint environments (RDS/Citrix session handling, multi-monitor DPI). Familiarity with crash reporting pipelines and staged rollout update systems. Deliverables: Windows service and agent executables. Secure policy cache and local event storage. MSI installer, signed binaries, auto-update system. Documentation (installation, deployment, update process, WDAC/AppLocker rules). Test coverage across Edge/Chrome/Firefox, multiple paste/input methods, and high-DPI/multi-monitor environments.

Project ID: 39732052