About me

About me

OffSec Certified Professional (OSCP) badge OffSec Wireless Professional (OSWP) badge OffSec Expirienced Pentester (OSEP) badge Kali Linux Certified Professional (KLCP) badge

whoami

Hi! I’m Maksim Radaev, also known as vflame6. I’m a penetration tester specializing in offensive security operations, with a particular focus on network infrastructure, Active Directory environments, and web application security.

I conduct comprehensive security assessments from start to finish - from initial scoping and reconnaissance through exploitation and post-exploitation, to delivering detailed reports and presenting actionable findings to clients. My approach combines technical expertise with clear communication to help organizations understand and remediate their security weaknesses.

Beyond client work, I’m passionate about developing open-source security tools, sharing knowledge through my blog and Telegram channel, and continuously expanding my skills in red teaming and adversary simulation.

All information contained in this blog is provided for educational and research purposes only. The author is not responsible for any illegal use of any information published on the pages of this blog.

Professional Services

I offer comprehensive offensive security services tailored to your organization’s needs:

  • External Network Penetration Testing: Assessment of your internet-facing infrastructure to identify vulnerabilities before attackers do.
  • Internal Network Assessments: Deep dive into your internal network security posture.
  • Web Application Security Testing: Thorough security assessment of web applications following OWASP methodology.
  • Mobile Application Testing: Security evaluation of iOS and Android applications.
  • Social Engineering: Assessing your organization’s human security layer.
  • Red Team Operations: Advanced adversary simulation exercises designed to test your organization’s detection and response capabilities.

Looking for professional penetration testing or red team services? Contact me via LinkedIn or Telegram.

Projects

Open Source Development

I develop and maintain security tools that automate common pentesting tasks:

  • leaker: Passive leak enumeration tool that discovers and validates credential leaks from public sources. Inspired by subfinder, it automates the discovery of compromised credentials during external assessments.
  • sharefinder: SMB shares enumeration and access analysis tool designed for Active Directory environments. Built to handle network-scale scanning with minimal noise.

More tools and projects are available on my GitHub profile.

Blog and Telegram Channel

I regularly publish technical articles on this blog covering things I find interesting in the offensive security field. You can browse all my posts in the Archives or by Categories.

I share shorter updates, quick tips, and Russian-language content on my Telegram channel, where I discuss ongoing research and industry developments.

GITHUBGITHUB TELEGRAM CHANNELTELEGRAM CHANNEL X (TWITTER)X (TWITTER)

HACKTHEBOXHACKTHEBOX TRYHACKMETRYHACKME ROOT MEROOT ME STANDOFF365STANDOFF365

Contact me

I’m always open to discussing security projects, collaborating on research, or simply connecting with fellow security professionals.

LINKEDINLINKEDIN TELEGRAMTELEGRAM DISCORDDISCORD

Support My Work

If you find my research, tools, or content helpful, consider supporting my work. Your support helps me dedicate more time to creating quality content and developing open-source security tools.

Support options available here →

Thank you for visiting my blog. Let’s make the security community stronger together!