Red Team Specialist focused on offensive security tooling, malware development, game hacking, and Beacon Object Files. Writing about it at drewalleman.xyz.
I’m passionate about both creating and breaking software, always exploring new technologies and pushing my skills further. I believe strongly in open-source and the value of sharing knowledge with the community. Most of my tools and projects are freely available on GitHub for others to use, learn from, and build upon.
- OffSec Certified Professional+ (OSCP+) — OffSec, Sep 2025
- eJPT — INE Security, Mar 2025
- PenTest+ (PT0-002) — CompTIA, Dec 2023
- Security+ — CompTIA, Mar 2021
- System Administration and IT Infrastructure Services — Google, Jun 2021
- Introduction to Git and GitHub — Google, Jul 2021
- The_BOFfice — AI-driven pipeline that converts Linux coreutils into tiered Beacon Object File collections.
- wiretap — Stealthy Windows audio-capture POC with UDP exfiltration and randomized transmission intervals.
- blight-bofs — BOF repository for an upcoming C2 framework.
- DataSurgeon — Rust tool for extracting IPs, emails, hashes, files, credit cards, SSNs, and more from text.
- Powershell-Backdoor-Generator — Reverse backdoor in PowerShell, obfuscated with Python; payloads for Flipper Zero and Hak5 Rubber Ducky.
- autodeauth — Automated Linux service that surveys local Wi-Fi networks and performs deauthentication attacks.
- CVE-2019-12185 — eLabFTW 1.8.5 Python3 exploit POC.
- CVE-2019-7214 — SmarterMail < Build 6985 remote code execution (Python3 rewrite).
- CVE-2020-11651 / CVE-2020-11652 — SaltStack auth bypass; injects users into
/etc/passwdand/etc/shadowon a vulnerable Salt master. - CVE-2018-19422 — Subrion file upload bypass to RCE (authenticated).