David Tomaschik

Senior Security Engineer Tech Lead at Google

San Jose, California, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

👤
Senior
🎓
Top School
David Tomaschik is a Senior Security Engineer and Tech Lead with 14 years of experience designing and executing large-scale offensive security programs at Google, where he leads red team engagements, vulnerability research, reverse engineering, and team training. Based in San Jose, he combines hands-on exploit development and custom tooling with operational experience from site reliability and systems administration roles, enabling a pragmatic, systems-level approach to security. An active security researcher and hardware maker, he contributes to notable open-source projects such as the Sliver adversary emulation framework, improving C2 reliability and feature breadth for red-teaming. Colleagues value his ability to translate complex technical findings into actionable business risk mitigation while mentoring engineers across disciplines. He brings a rare blend of deep technical craft, operational resilience, and creative research applied to real-world threat emulation.
code14 years of coding experience
job5 years of employment as a software developer
bookB.S., Computer Science, B.S., Computer Science at Georgia State University
languagesGerman, English
stackoverflow-logo

Stackoverflow

Stats
600reputation
46kreached
7answers
1question
github-logo-circle

Github Skills (22)

security-txt10
security10
go10
golang10
emulation10
security-scan10
http9
dns9
paramiko6
hash6
ssh6
dictionary6
compiler-construction6
python6
gcloud6

Programming languages (16)

JavaCSSC++CCMakeGoHTMLTypeScript

Github contributions (5)

github-logo-circle
BishopFox/sliver

Oct 2020 - Nov 2020

Adversary Emulation Framework
Role in this project:
userBack-end Developer & Security Engineer
Contributions:25 commits, 16 PRs, 22 comments in 1 month
Contributions summary:David primarily contributed to the Sliver framework by implementing new features and improving existing ones, with a focus on red-teaming and C2 capabilities. Their work included adding functionality to limit implant execution based on file existence, domain joined status, and other criteria. They also fixed bugs related to random name generation, session management, and improved the reliability of the codebase.
dns-servercommand-and-controladversarial-attackssecurity-toolsdns
Matir/kb

Jun 2018 - Jan 2023

Personal knowledge base.
Contributions:211 commits, 15 PRs, 160 pushes in 4 years 8 months
personal-knowledge-baseknowledge-baseknowledge
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
David Tomaschik - Senior Security Engineer Tech Lead at Google