David Tomaschik is a Senior Security Engineer and Tech Lead with 14 years of experience designing and executing large-scale offensive security programs at Google, where he leads red team engagements, vulnerability research, reverse engineering, and team training. Based in San Jose, he combines hands-on exploit development and custom tooling with operational experience from site reliability and systems administration roles, enabling a pragmatic, systems-level approach to security. An active security researcher and hardware maker, he contributes to notable open-source projects such as the Sliver adversary emulation framework, improving C2 reliability and feature breadth for red-teaming. Colleagues value his ability to translate complex technical findings into actionable business risk mitigation while mentoring engineers across disciplines. He brings a rare blend of deep technical craft, operational resilience, and creative research applied to real-world threat emulation.
14 years of coding experience
5 years of employment as a software developer
B.S., Computer Science, B.S., Computer Science at Georgia State University
Contributions:25 commits, 16 PRs, 22 comments in 1 month
Contributions summary:David primarily contributed to the Sliver framework by implementing new features and improving existing ones, with a focus on red-teaming and C2 capabilities. Their work included adding functionality to limit implant execution based on file existence, domain joined status, and other criteria. They also fixed bugs related to random name generation, session management, and improved the reliability of the codebase.
Contributions:211 commits, 15 PRs, 160 pushes in 4 years 8 months
personal-knowledge-baseknowledge-baseknowledge
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
David Tomaschik - Senior Security Engineer Tech Lead at Google