Skip to content
View xtofuub's full-sized avatar
💭
meowing
💭
meowing
4 followers · 2 following

Highlights

  • Pro

Block or report xtofuub

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
xtofuub/README.md

xtofuub banner

Typing SVG

whoami

Hey, I'm Edwin - a Computer Engineering student who likes building things, breaking things, and understanding how stuff works under the hood.

  • 🔴 Security research - pentesting, red team concepts, adversary simulation
  • 🧠 Reverse engineering - malware analysis, decoding the unknown
  • 🛠️ Building tools - if something doesn't exist and I need it, I build it
  • 🌐 Web dev - full-stack stuff, PHP, JS, databases, deployments
  • 🎓 Computer Engineering - currently surviving academia

go BIG or go home.

current_focus

class Edwin:
    def __init__(self):
        self.currently_learning = [
            "Reverse Engineering",
            "Python (scripting + tooling)",
            "PowerShell (automation + post-exploitation)",
            "Linux internals",
            "PHP + web app security",
            "HTML / CSS (yes, also phishing pages)"
        ]
        self.currently_building = [
            "Security tools",
            "Web projects",
            "Random stuff that seems useful"
        ]
        self.vibe = "learn by breaking, build by doing"

tech_stack

Languages

Python PowerShell JavaScript PHP HTML5 CSS3

Security Tools

Kali Linux Burp Suite Metasploit Wireshark TryHackMe

Infrastructure & Other

Linux MySQL Supabase Vercel VirtualBox Google Cloud

featured_projects

Project Description Tech
RavenC2 PowerShell remote control tool via Telegram for authorized admin and automation experiments PowerShell
mailsploit Email spoofing demo platform analyzing SPF/DMARC, built for defensive testing Python
PysilonDecoder Analyzes and decodes Pysilon malware tokens, automates extraction and payload reconstruction Python
Hashtrace Chromium extension that highlights crypto hashes and checks VirusTotal reputation inline JavaScript
SMBitan Dark-themed web UI for browsing, searching, and previewing files on SMB/UNC shares JavaScript
Cyber-Resources Curated collection of cybersecurity, OSINT, malware analysis and threat-intel resources I actually use Docs

stats

GitHub Streak

TryHackMe Badge

contribution_grid

Snake animation

Pinned Loading

  1. mailsploit mailsploit Public

    Forked from Triotion/email-spoofing

    A security-focused platform for email that demonstrates advanced spoofing techniques while analyzing domain authentication protocols such as SPF and DMARC. Designed for defensive testing and securi…

    Python 2

  2. RavenC2 RavenC2 Public

    A PowerShell-based remote control tool for managing a Windows machine via Telegram, intended for learning, automation experiments, and authorized remote administration.

    PowerShell 1

  3. PysilonDecoder PysilonDecoder Public

    PysilonDecoder is a Python-based tool designed to analyze and decode Pysilon malware tokens. It automates token extraction, identifies encoding algorithms, and reconstructs the original payload for…

    Python

  4. Hashtrace Hashtrace Public

    Hashtrace is a lightweight Chromium extension for cybersecurity researchers. It highlights cryptographic hashes on web pages and fetches their VirusTotal reputation, all in a sleek, user-friendly …

    JavaScript

  5. Cyber-Resources Cyber-Resources Public

    A curated collection of cybersecurity, OSINT, malware analysis, reconnaissance, and threat-intel resources that I personally use for research, learning, and testing. (TOO LAZY TO UPDATE)

  6. SMBitan SMBitan Public

    SMBitan - A network file browser. Browse, search, and preview files on SMB/UNC shares with a dark-themed web UI.

    JavaScript 1