Contact Us

Raphael Mudge President

Raphael is the founder and president of SpecterOps, Inc. Raphael is also the Principal at Strategic Cyber LLC, the firm that develops the Cobalt Strike platform for Adversary Simulations and Red Team Operations. Previously, Raphael worked on red team automation through DARPA's Cyber Fast Track program. Today, Raphael occasionally speaks on security topics and provides volunteer red team support to many student cyber defense exercises. Raphael is a U.S. Air Force veteran.

David McGuire Chief Executive Officer

David specializes in building enterprise adversary-focused assessment teams, which have performed thousands of engagements for large private-sector organizations and major government agencies. David has extensive experience in conducting highly specialized, large-scale adversarial operations against a variety of targets. In addition, he has built several training courses focused on red team operations methodologies. In his previous life, David was a senior technical lead for the National Security Agency Red Team, providing mission direction through numerous large-scale operations.

Jason Frank Chief Operations Officer

Jason has extensive technical experience in the field of information security with a specialization in providing technical leadership across adversary-focused engagements while developing adversary operations programs, with extensive experience in leading both large-scale and highly specialized engagements. In addition, he has spent several years building training courses focused on red team operations methodologies. Jason was formerly the primary developer and instructor of the Adaptive Penetration Testing training course, provided at the Black Hat Security Conference.

David McGuire Chief Executive Officer

David specializes in building enterprise adversary-focused assessment teams, which have performed thousands of engagements for large private-sector organizations and major government agencies. David has extensive experience in conducting highly specialized, large-scale adversarial operations against a variety of targets. In addition, he has built several training courses focused on red team operations methodologies. In his previous life, David was a senior technical lead for the National Security Agency Red Team, providing mission direction through numerous large-scale operations.

Michael Wright Chief Information Officer

Mike has over 15 years of technical experience in the field of information security and technology specializing in advanced penetration testing, secure enterprise and infrastructure architecture, and engineering. He has supported major U.S. government agencies and Fortune 500 commercial clients as a subject matter expert in technically complex cloud and on-premise environments as well as led large-scale security assessments. Mike is an experienced developer in multiple static and dynamic languages and contributes to several open-source community projects.

Jeff Dimmock Service Director

Jeff has several years of offensive security experience, with a concentration in leading red team operations and penetration tests. He provides leadership across concurrent offensive security assessments and serves as a technical lead for multiple Fortune 500 commercial companies and U.S. government agency assessments. Jeff holds a master’s degree in Information Security Assurance and several information security certifications. He is an active blogger at bluescreenofjeff.com, where he writes about offensive tradecraft development and attack infrastructure.

Kelly Coffman Chief of Staff

Kelly is responsible for running Human Resources, Finance, and backend operations for SpecterOps. She began her career in the cyber security industry when she joined Mandiant (FireEye), where she served as their managed services coordinator and eventually the internal and external and logistical training coordinator. Before joining Specter, Kelly served as the operations coordinator with Veris Group's Adaptive Threat Division, where she was responsible for ensuring oversight, event logistics, management, and billing for $5+ million in services annually.

Will Schroeder Technical Architect

Will is an experienced operator and researcher in the field of information security with a focus on red teaming, Active Directory, and offensive development. He has spoken at a number of security conferences including ShmooCon, DerbyCon, Troopers, DEF CON, BlueHat Israel, and more. He co-founded the Veil-Framework, developed PowerUp/PowerView, is an active PowerSploit developer, co-founded the BloodHound analysis platform, and co-founded Empire/EmPyre. Will is a Microsoft PowerShell MVP, a veteran Black Hat trainer, and actively blogs at http://blog.harmj0y.net.

Matt Nelson Senior Consultant

Matt Nelson is an active red teamer and security researcher. He brings a passion for researching and pushing new offensive and defensive techniques into the security industry. He is the primary developer on the PowerSCCM toolkit, a co-developer on the Empire framework, and contributes to many other open source security projects. Matt has spoken at numerous security conferences, and has been recognized by Microsoft for his discovery of new offensive techniques and bypasses. He maintains his blog at http://enigma0x3.net.

Lee Christensen Technical Architect

Lee is a senior red team operator, threat hunter, and capability engineer for SpecterOps. Lee has performed red team and hunt engagements against Fortune 500 companies for several years, and has trained on offensive/defensive tactics at events throughout the world. Lee enjoys building tools to support red team and hunt operations. Lee is the author of several offensive tools and techniques, including UnmanagedPowerShell (incorporated into the Metasploit, Empire, and Cobalt Strike toolsets), and KeeThief.

Robby Winchester Service Director

Robby is an experienced threat hunter and penetration tester. Over the course of Robby’s career, he has developed and supervised penetration testing, physical security, and breach assessments for several private-sector and government clients. Previously Robby worked for the U.S. Air Force Information Aggressors, providing full-scope network and physical red team operational assessments and further worked integrating information security operations with traditional military operations for the U.S. Air Force’s RED FLAG exercise.

Jared Atkinson Technical Director

Jared is a security researcher who specializes in Digital Forensics and Incident Response. Recently, he has been building and leading private sector Hunt Operations capabilities. In his previous life, Jared lead incident response missions for the U.S. Air Force Hunt Team, detecting and removing Advanced Persistent Threats on Air Force and DoD networks. Passionate about PowerShell and the open source community, Jared is the lead developer of PowerForensics, Uproot, and maintains a DFIR focused blog at http://www.invoke-ir.com.

Brian Reitz Senior Consultant


Brian is a threat hunter and operator for SpecterOps with several years of experience performing penetration tests, red team engagements, and adversary hunting. Brian has lead and provided expert assistance for dozens of technical security assessments for large private-sector clients and government agencies. He has performed multiple long-term adversary detection and continuous monitoring assessments, combining commercial and open source tools to provide extensive visibility into enterprise networks.

Andy Robbins Manager

Andy is an active red teamer and co-author of BloodHound, a tool designed to reveal the hidden and unintended permission relationships in Active Directory domains. He has performed numerous red team operations and penetration tests against banks, credit unions, health-care providers, defense companies, and other Fortune 500 companies across the world. He has presented at DEF CON, BSides Las Vegas, DerbyCon, ekoparty, and actively researches Active Directory security. He is also a veteran Black Hat trainer.

Matt Graeber Principal Consultant

Matt Graeber is a security researcher and reverse engineer who specializes in the advancement of attacker tradecraft and detection. He has a varied background in red team operations, vulnerability research, and malware reverse engineering. Matt has presented at many industry conferences including Black Hat, DEF CON, Microsoft BlueHat, DerbyCon, BSides, and various PowerShell conferences. Matt is recognized as a Microsoft MVP and is the author of various tools including PowerSploit, PowerShellArsenal, PSReflect, and CIMSweep. He maintains his blog at http://www.exploit-monday.com.

Rohan Vazarkar Senior Consultant

Rohan is an operator and developer for SpecterOps with extensive experience performing penetration tests and red team engagements. He has spoken at numerous security conferences including DEF CON, Black Hat, SANS Hackfest, and more. He also conducts research and releases tactics for leveraging security weaknesses in Windows based platforms. Rohan is the co-author of the BloodHound analysis platform and has contributed to other open source projects such as Empire and EyeWitness.

Chris Ross Senior Consultant

Chris Ross is a seasoned operator and developer for SpecterOps with experience performing penetration tests and red team engagements. He specializes in developing offensive tools in python, powershell, and C Sharp for both Windows and macOS. He is passionate about improving the security posture of organizations by training defenders with tradecraft utilized by real adversaries. Chris is also the creator of RemoteRecon, a compact post-exploitation framework, and one of the co-developers of Empire.

Joe Vest Service Director

Joe Vest has over 17 years' experience with a focus on red teaming, penetration testing, and application security. As a former technical lead for a DoD red team, he has extensive knowledge of threats and their tools and techniques. Joe is the co-author of the SANS Red Teaming and Threat Emulation course.

Richie Cyrus Manager

Richie Cyrus is a Senior Threat Hunter at SpecterOps where he specializes in detection of advanced adversaries with a focus in MacOS and Linux environments. Richie has a background in incident response, forensics and security operations spanning across Fortune 500 companies and the public sector. He currently maintains a DFIR focused blog at https://securityneversleeps.net.

Derek Rushing Senior Systems Engineer

Derek Rushing is a developer at heart with experience in multiple coding languages. His over 15 years experience in information technology and security began with an early focus on forensics and later shifted to penetration testing and red teaming. Derek leverages this experience to design and build tools specifically for the information security community.

Linda Tran Finance Manager

Linda oversees and manages the financial and accounting activities at SpecterOps. She has over ten years of finance, accounting, and administrative experience gained from working in diverse industries. Prior to joining SpecterOps, Linda was with the Post Award Administration and Accounting office at Loyola Marymount University where she and her team were the central administrative unit responsible for providing financial and accounting support to the esteemed faculty and staff with external grant and contract funding. Before LMU, she was a part of the Finance team at Mandiant (and later, FireEye) where she supported the Professional Services team in ensuring timely invoicing to maintain a steady cash flow, adherence to contractual expenditure guidelines, and accurate account analyses.

Andrew Chiles Technical Director

Andrew Chiles has over 10 years' experience in information technology with 6 years' experience in Offense Cyber Operations (Red Teaming and Threat Emulation). He is a former member of a NSA Certified DoD Red Team and regularly publishes research and security related articles for the security community at http://threatexpress.com

Brandon Scullion Senior Consultant

Brandon Scullion is a Senior Analyst at SpecterOps. He has several years of experience operating in various Security roles at a Fortune 500 company. There, he worked with both internal and external teams to accomplish complex goals. Brandon has contributed to building a Security Operations Center as Senior Threat Analyst utilizing the MITRE ATT&CK Framework, attack automation, and adversary simulation techniques to hunt for threats in the environment. When he is not spending time with his wife and family, he loves to learn, automate tasks with PowerShell, and develop tools in his home lab.

Julian Catrambone Consultant

Since graduating Penn State University, Julian has focused on offensive security consulting. Over the course of his career Julian has been able to actively participate in several Red Team operations, Physical Security Assessments, Web Application Assessments, and Comprehensive Network Assessments. He maintains a blog at https://blog.inspired-sec.com.

Calvin Hedler Consultant

Calvin is a red team operator with SpecterOps, and has several years of experience with red team operations and penetration testing. With SpecterOps, Calvin delivers training courses, performs red team engagements, and assists with tool development, specializing in Aggressor Script. He has also spoken on penetration testing and red teaming at several conferences, including BSides Detroit, GrrCON, and A2Y.asm. Before joining SpecterOps, Calvin performed penetration testing and red team engagements for smaller organizations across the United States.

Carlo Alcantara Consultant

Carlo Alcantara is an experienced red teamer and penetration tester. With a background originally in audit and compliance, he now prefers a more technical role and has years of experience performing technical assessments across numerous industries including government, finance, and healthcare. When not actively engaged in an assessment, Carlo provides training for SpecterOps’ Adversary Tactics: Red Team Operations course.

Dwight Hohnstein Consultant

Dwight is a red team operator with a focus on network, host and web application security. Throughout his career Dwight has actively developed, blogged and maintained unique techniques and toolsets to accomplish challenging assessment objectives. His penchant for automation has led to a deep knowledge across a variety of topics, allowing him to reveal vulnerabilities and assets that would otherwise go unnoticed. He has contributed to projects such as GhostPack, Cobalt Strike and Kali Linux, and actively maintains a Github repository at https://github.com/djhohnstein

Cody Thomas Senior Consultant

Cody Thomas is a red team operator and developer focusing on macOS and *nix devices. He created the initial Mac and Linux ATT&CK matrices while he was working on the Adversary Emulation team at MITRE. Cody has spoken at a few conferences and works on his open source framework for macOS Red Teaming called Apfell. He maintains his blog at its-a-feature.github.io.

Justin Bui Consultant

Justin Bui is an Operator at SpecterOps and has experience performing penetration tests, red team engagements and web application assessments. He is passionate about all things security and helping organizations improve their security posture. Justin enjoys writing code and developing offensive tools. Justin maintains a blog at https://grumpy-sec.blogspot.com/.

Kelly Villanueva Consultant

Kelly is a consultant at SpecterOps with several years of experience improving the security posture of Fortune 500 companies through adversary simulation and detection activities. Since graduating from the University of Miami, Kelly has informally continued her studies in behavioral science and economics, and she enjoys applying her abstract ideas to red team operations. Kelly stays involved in the security community by presenting at conferences, lecturing at universities and maintaining her blog at evilsomething.com.

Leo Pitt Consultant

Leo has several years of technical experience in the field of information security and technology. His career began conducting security assessments of information systems for various U.S. government organizations. He later transitioned to offensive security consulting as a member of a DoD Red Team, in which he participated in penetration tests, red team engagements, and physical security assessments. He maintains his blog at https://medium.com/@D00MFist.

Luke Paine Consultant

Luke is an adversary detection analyst for SpecterOps. He has several years of experience in threat hunting and penetration testing for both enterprises and government agencies. Luke has used many industry tools to accomplish threat hunting missions in networks ranging from 300 to 100,000 endpoints. His hobbies include malware analysis, PowerShell development, web development, and front-end design.

Russel Van Tuyl Manager

Russel is a well-rounded information security consultant and offensive security practitioner. He has over 15 years of IT experience with 7 years as an offensive security consultant performing tasks such as penetration testing, web application assessments, social engineering, and wireless assessments. He has spoken at several security conferences to include Knoxville TN chapters of OWASP and BSides along with BlackHat Arsenal. Tools and open source projects developed by Russel can be found on his GitHub page at https://github.com/Ne0nd0g or on his blog at https://medium.com/@Ne0nd0g. Additionally, he enjoys knowledge sharing and teaching and has presented at several colleges and high schools.

Maggy Elliott Program Manager

Maggy Elliott is responsible for running our Project Management Team. She has several years experience in Project Management and managing large teams. Maggy has worked with some of the most well known organizations across various industries throughout the United States, India, and the United Kingdom. Maggy holds a masters degree in Public Administration as well as 2 bachelor degrees in Psychology and Sociology.

Chris Maddalena Manager

Chris is a red team operator at SpecterOps with several years of experience specializing in offensive security and tool development. He has spoken at various security and development conferences including DerbyCon, SecTor, CodeMash, Converge, and more. Chris enjoys developing automation and creating new tools, which are released as open source projects on GitHub (https://github.com/chrismaddalena/). He also actively blogs on topics ranging from open source intelligence gathering and tool development to custom hardware projects at https://chrismaddalena.com/.

Shannon Lucas Consultant

Shannon Lucas is an active operator for SpecterOps with experience performing penetration tests, red team engagements, and application assessments. He specializes in mobile application security and enjoys developing apps and offensive tools in Java, Swift, and C Sharp. Shannon created the Empire mobile GUI applications for Android and iOS and maintains a blog at https://pickles.xyz.

Steven Flores Senior Consultant

Steven is an experienced red team operator and former Marine. Over the years Steven has performed engagements against organizations of varying sizes in industries that include financial, healthcare, legal, and government. Steven enjoys learning new tradecraft and developing tools used during red team engagements. In addition to offensive operations Steven also has previous experience performing incident response and digital forensics.

Rob Lint Senior Systems Administrator

Rob has over 15 years of system administration and support with deep roots in the information security industry. Previously to SpecterOps, Rob was with ICEBRG, Essential Security Software and Webroot Software. Rob holds multiple industry certificates including CompTIA CySA+. Additionally, Rob has lead multiple acquisitions and build-outs from a technology perspective and specializes in making the nuts and bolts of technology work for the organization.

Ryan Cobb Consultant

Ryan Cobb is an operator and red teamer at SpecterOps, who specializes in building offensive security toolsets. Ryan has contributed to several open source security projects, such as Empire and Invoke-Obfuscation, and is the author of PSAmsi, SharpSploit, and Covenant. Ryan has presented at several security conferences, including: DerbyCon, BSides Austin, and BSides DFW. Ryan maintains a blog at cobbr.io where he shares research and development projects.

Joshua Prager Consultant

Josh Prager has over 9 years' experience focusing on DoD red team infrastructure, cyber threat emulation and threat hunting. As a former threat hunter for Accenture's Adversary Research and Reconnaissance Team he developed various cyber threat emulation and threat hunting programs within the Federal industry.

Ready To Get Started?