Gabe Marshall

Gabe Marshall

Email:

Experienced Red Teamer with a passion to continuously learn how to better build, break, and fix technology.

Skills

Red Teaming

Skilled Red Teamer that enjoys creating custom tools & payloads, finding creative ways to bypass security controls, and assisting with the creation of new detection capabilities.

  • Strong experience using Cobalt Strike
    • Writing custom aggressor scripts
    • Testing payloads & customizing malleable profiles
  • Experienced with configuring and using Sysmon, auditd, and Graylog for payload analysis
  • Strong experience developing custom phishing payloads and pretexts

Penetration Testing

Extensive experience in performing penetration tests of enterprise web applications, network infrastructure, and mobile applications.

  • Strong experience using Burp Suite to perform manual testing
  • Experienced writing multiple burp plugins and metasploit modules
Experience

Fidelity InvestmentsPrincipal Red Teamer ­ Durham, NC ­ March 2013­-present

  • Responsible for leading end-­to-­end zero scope engagements against company employees and assets.
  • Provides mentorship to members of the Penetration Testing. Over five years of experience in conducting penetration tests against critical customer facing applications and network infrastructure
  • Establishes and maintains relationships with company stakeholders ­ assisting in the resolution of vulnerabilities and the overall improvement of critical security controls

University of North Texas Manager of IT Security Compliance & Disaster Recovery Planning - Denton, TX - 2006-2013

  • Responsible for maintaining overall PCI and HIPAA compliance across the entire UNT System. Solved several major security compliance issues that requireded project leadership and management, as well as buy-in from multiple external departments
  • Acted as Team Lead for Disaster Recovery Planning for all IT in the UNT System
  • Developed numerous data-driven websites built on Sharepoint web services

University of North Texas Helpdesk Consultant - Denton, TX - 2005-2006

  • Supported UNT computing systems including: Remedy Action Request System, Student Email, Eaglenet (Wireless Network), PeopleSoft, Blackboard Vista and various other systems


Education

University of North Texas - Denton, TX

Major: Emergency Management
Minor: Business

Certifications

Offensive Security Certified Professional (OSCP)

Offensive Security - Dec 2014

Hobbies
Capture the Flag competitions, performing security research, and application development.


Misc
Bug Bounties

HackerOne
Basecamp Security Acknowledgement

References
Available upon request