Skip to content
View Tomatotech90's full-sized avatar
:octocat:
Working from home
:octocat:
Working from home
22 followers · 11 following

Achievements

Achievement: Pull SharkAchievement: Quickdraw

Achievements

Achievement: Pull SharkAchievement: Quickdraw

Block or report Tomatotech90

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Tomatotech90/README.md

Tomatotech90 security researcher · threat hunter · krakenio.tech

I build tools and contribute to projects focused on threat hunting, ransomware and malware analysis, and network and system security. My work includes static analysis tooling, vulnerability assessment scripts, phishing infrastructure teardowns, and network data analysis to support defensive intelligence.

HTB IBM X-Force LinkedIn KrakenIO

// focus
→ malware & PE static analysis          → phishing infrastructure analysis
→ ransomware group tracking             → honeypot & deception systems
→ IOC development & threat hunting      → vulnerability assessment tooling

// stack

python bash c c++  ·  javascript typescript c# java php  ·  docker linux aws flask mysql mongodb

// writing — krakenio.tech

research

title tags
phishing Anatomy of a Sophisticated Phishing Campaign: usps.otognluguws.top DNS infrastructure · domain impersonation
infra Malicious IP Associated with 60+ Subdomains: 47.251.33.8 Alibaba Cloud · subdomain abuse
platform The Dual-Edged Sword of Cloudflare Workers serverless phishing · architecture analysis
OSINT The Risk of Day in the Life deepfake fraud · social engineering
squatting USPS Squatting Campaign — vxhbs.cfd domain squatting · smishing
domain abuse Fake USPS Scam Using Brazilian Government Domain gov domain hijack · phishing
fraud Likes and Cards: Instagram's Algorithm and Carding platform abuse · financial fraud
phishing Six Pivotal Phishing Scams: IP & Hosting Analysis infrastructure mapping · USPS/Walmart
domain abuse Fake USPS Scam Using Argentina's Domain domain squatting
multi-brand Phishing via Turkish School Domain — eBay & USPS domain hijack · brand impersonation

articles

title tags
ransomware Deciphering Medusa's Trend on Schools and Healthcare 21+ institutions · TTPs
CVE Understanding CVE-2024-6387: regreSSHion OpenSSH · glibc · unauthenticated RCE
espionage Lazarus Group's Sapphire Sleet Targets IT Job Seekers DPRK · fake assessments
incident MGM Hack: OPSEC Failures Amidst Advanced Cyber Threats Scattered Spider · social engineering
supply chain XZ Utils: Navigating Software Supply Chain Security open source · backdoor
ransomware The Saga of LockBit takedown · ecosystem vacuum
ransomware LockBit & the Evolve Bank Data Breach RaaS · financial sector
incident CrowdStrike Crisis: Lessons in Resilience vendor risk · global outage
incident Legal & Economic Fallout from CrowdStrike Outage legal impact · business continuity
incident Faulty CrowdStrike Update Causes Global Outage incident breakdown
DNS Comprehensive Guide to TLD Hijacking and Domain Security DNS · brand protection
hacktivism Unpacking SiegedSec's Recent Campaigns #OpIsrael · NATO
fraud North Korean I.T. Workers Exploiting U.S. Job Markets DPRK · insider threat
policy Cybersecurity in the Era of Remote Work remote work · attack surface
incident London Drugs Systemic Shutdown Across Western Canada retail · ransomware
healthcare Critical Care: Cybersecurity with Legacy Equipment OT · patient safety
policy Non-Disclosure of Ransomware Attacks in Corporate Environments transparency · risk
policy Assessing SMB Cybersecurity in the Middle East regional analysis · gaps
policy Deep Dive into the Right to Repair consumer rights · legislation
privacy The Smoke and Mirrors of Data Deletion data privacy · digital fingerprinting
CDK Cyberattacks on CDK Global automotive · supply chain
OS Windows 11 Challenges for Legacy Devices compatibility · enterprise risk

// find me ^_^

htb   app.hackthebox.com/profile/1028599  —  Ketchupsauce80 #1028599
ibm   exchange.xforce.ibmcloud.com/activity/map
in    linkedin.com/in/jonathan-m-858b361a7

GitHub Stats    Top Languages

Pinned Loading

  1. Tool-kit Tool-kit Public

    scripts for CTF's and basic pentestic

    Shell 4 2

  2. Aya_Huma Aya_Huma Public

    The script is a security testing tool that provides various options to analyze a target website or IP address

    Python 2 1

  3. DropperChisel DropperChisel Public

    easy chisel dropper

    Shell

  4. Network_Monitor Network_Monitor Public

    his script can be utilized in several network monitoring and troubleshooting scenarios

    Python