Russel Van Tuyl is a seasoned offensive security leader and operator with over a decade of hands-on experience conducting adversary simulations, red team operations, and complex penetration tests. As Vice President of Services at SpecterOps he blends management of service delivery with deep technical execution—frequently crafting malicious documents, exploiting OWASP-class vulnerabilities, and establishing resilient command-and-control at scale. He is an active developer and maintainer of low-level security tooling (notably Windows shellcode runners and contributions to the Merlin C2 framework) demonstrating expertise in Python, Go, and systems-level techniques. Russel holds a B.S. in Information Technology, is pursuing an MSISE through SANS, and is a GIAC Security Expert (GSE), combining formal credentials with practical threat emulation experience. Based in Mary Esther, Florida, he brings a rare mix of program leadership, offensive tradecraft, and open-source research that informs enterprise defensive posture and purple-team engagements.
11 years of coding experience
8 years of employment as a software developer
Bachelor's, Information Technology, Information System Security, Bachelor's, Information Technology, Information System Security at University of Phoenix
Master’s Degree, Master of Science in Information Security Engineering (MSISE), Master’s Degree, Master of Science in Information Security Engineering (MSISE) at SANS Technology Institute
A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques.
Role in this project:
Back-end Security Engineer
Contributions:15 commits, 13 pushes, 1 branch in 1 year 7 months
Contributions summary:Russel implemented a series of Windows shellcode runners and injection techniques, indicating a focus on low-level system interaction and security research. The commits involve creating different programs to inject shellcode into processes using various methods like CreateProcess, CreateRemoteThread, and NtQueueApcThreadEx. The user also developed utilities to encrypt and decrypt shellcode, as well as utilities to convert shellcode to different formats.
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
Role in this project:
Back-end Developer & Security Engineer
Contributions:20 releases, 8 reviews, 608 commits in 6 years 1 month
Contributions summary:Russel's contributions primarily centered around implementing and securing the backend functionality of the Merlin C2 framework. Their work involved creating a function to instantiate a listener, adding command-line flags to start the listener, and modifying the execution order. Additionally, the user implemented OPAQUE registration and authentication, added a JA3 signature and created a custom file download operation to secure transfers between the agent and server. These changes indicate a focus on network security and core infrastructure development within the project.
golangagentpost-exploitationsecurityhttp2
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Russel Van Tuyl - Vice President Of Services at SpecterOps