Skip to content
View StillSoul's full-sized avatar
:electron:
Atomic
:electron:
Atomic
19 followers · 28 following

Block or report StillSoul

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
StillSoul/README.md

Hello, I'm 0xSt1llS0ul

Penetration Tester | Security Researcher | Tool Developer

I focus on Web & Network Penetration Testing, security task automation, and WAF Evasion. I am currently expanding my skills in Reverse Engineering and Malware Development. I build tools to simplify complex attack vectors and improve audit efficiency.

Technical Stack

  • OS: Linux, Windows (AD & Pentest targets)
  • Languages: Python, Bash, MySQL, Go
  • Networking: Wireshark, Tcpdump, Aircrack-ng, Kismet
  • Web & Proxies: Burp Suite, OWASP ZAP, Nikto, Dirb/Gobuster
  • Frameworks & Tools: Metasploit, Nmap, SQLMap, Ghidra, Hydra, John the Ripper, BloodHound
  • Version Control: Git, GitHub
  • Containers: Docker

Areas of Interest

  • Web Security: Vulnerability assessment, WAF bypass techniques, API Security
  • Network Security: Infrastructure auditing, protocol analysis
  • Cloud Security: AWS, CloudFlare WAF analysis
  • Tool Development: Writing custom scripts and exploit automation
  • Reverse Engineering: Analyzing binaries and malware (Learning phase)
  • Malware Development: Creating and analyzing payloads and exploits
  • Code Review: Security-focused source code analysis

Learning Path Currently deepening knowledge in:

  • DevOps & Infrastructure: CI/CD pipelines, infrastructure as code
  • Reverse Engineering: Binary analysis techniques
  • Cloud Technologies: AWS services and security
  • Databases & Search: Redis, ElasticSearch for pentesting scenarios
  • QA & Testing: Security testing methodologies
  • Container Security: Docker security best practices
  • Malware Development: Anti-Virus Evasion techniques, creating sophisticated implants

Popular repositories Loading

  1. meta-extract-tbot meta-extract-tbot Public

    A bot for extracting metadata from files and photos. ExifTool is used.

    Python

  2. rsa-even-n-ctf rsa-even-n-ctf Public

    Even N RSA Attack (picoCTF)

    Python

  3. py-rest-api py-rest-api Public

    Simple testing REST API code written in python.

    Python

  4. CVE-2025-55182 CVE-2025-55182 Public

    A critical-severity vulnerability in React Server Components (CVE-2025-55182) affects React 19 and frameworks that use it, including Next.js (CVE-2025-66478)

    Python

  5. StillSoul StillSoul Public