Gabe Marshall

Red Team Engineer
Houston, Texas
Experienced Red Team engineer with a passion for building, breaking, and fixing technology problems. Enjoys creating custom tools and payloads, finding creative ways to bypass security controls, and improving TTPs through detection engineering.

Key Expertise

Offensive Security

  • 5+ years of experience performing both end-to-end and assume breach Red Team engagements.

    • Strong background in offensive payload and tool development
    • Responsible for writing and maintaining Red Team knowledgebase articles and automation playbooks.
    • Experienced in developing and executing complex phishing campaigns in order to gain an initial foothold
  • Extensive experience in performing penetration tests of enterprise web applications, network infrastructure, and mobile applications.

    • Strong experience using Burp Suite to perform manual testing
    • Skilled in performing code-assisted security assessments of reviews
    • Experience writing burp plugins, metasploit modules, and automation tooling

Selected Work Experience

Senior Security Consultant

NCC Group

Mar 2019 - Current
  • Lead operator on many Red Team projects that successfully defeated security controls while evading detection.
  • Responsible for scoping and conducting a wide range of security assessments (Red Team, AppSec, Mobile, Cloud, etc).
  • Develops custom automation tools to help meet the needs of both clients and colleagues.

Principal Red Team Operator

Fidelity Investments

Mar 2013 - Mar 2019
  • Responsible for leading end-­to-­end zero scope engagements against company employees and assets.
  • Provided mentorship to members of the Penetration Testing. Over six years of experience conducting penetration tests against critical customer facing applications and network infrastructure.
  • Established and maintained key relationships with company stakeholders by introducing the company to Capture the Flag competitions.

Training & Education

Specter Ops Powershell


Specter Ops Red Team Operations


Offensive Security Certified Professional


Emergency Management (BS)

University of North Texas

Denton, TX

2001 - 2005


  • Cobalt Strike
  • Phishing
  • Custom Payloads
  • Burp Suite
  • Ansible
  • Terraform
  • Cloud Security


  • CTFs
  • Web Development
  • HackerOne
  • Legos
  • Musical Instruments