Skip to content
View mendsec's full-sized avatar
:shipit:
Going everywhere
:shipit:
Going everywhere

Highlights

  • Pro

Organizations

@portosoft

Block or report mendsec

Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
mendsec/README.md

Fábio Mendes · mendsec

Security Engineer · Offensive & Defensive

Building the tools that find gaps. Running the systems that close them.

X (Twitter) LinkedIn Email GitHub followers

RO · Brazil · UTC −04:00


What I do

I work across both sides of the security boundary. On the offensive side, I build tooling and run assessments — network enumeration, protocol analysis, red team infrastructure. On the defensive side, I design and operate hardened multi-tenant platforms in production.

That dual exposure isn't incidental. Understanding how systems fail under adversarial pressure is what makes me a better architect — and running real infrastructure is what keeps my threat model grounded.

I write primarily in Go and Python. I care about correctness, auditability, and operational reproducibility.


Work

catnet — Network Scanner (Go)

A concurrent network scanner built for real engagements. Refactored from the ground up in Go: zero external dependencies in the core engine, context-based cancellation, race-detector-clean, and a scriptable CLI consumer. Designed to be extended, not just used.

Concurrent scanning · Custom protocol handling · Clean architecture · CI with govulncheck


mhc-cloud-panel — Multi-tenant Cloud Panel (Python)

VPS provisioning and management platform built on the Proxmox VE API. Handles VM lifecycle, resource isolation, billing, and customer boundaries in a unified control plane. In production at MadeiraHackerSpace.

Proxmox VE · PostgreSQL · REST API · Multi-tenancy · Isolation boundaries


odoo-serviceops — Hardened ERP Infrastructure (Shell / Docker)

Infrastructure-as-code approach to running Odoo Community as a security-conscious service. Automated deployment, update pipelines, backup orchestration, and hardening applied end-to-end — treating ERP like the attack surface it is.

Docker · CI/CD · Ansible · Privilege separation · Reproducible deployments


Technical profile

Domain Detail
Offensive Network scanning, enumeration, red team infrastructure
Defensive Hardening, secure architecture, threat modelling, IaC auditing
Languages Go · Python · Shell · C · Lua · JavaScript
Infrastructure Linux · Proxmox VE · Docker · Ansible · GitHub Actions
Platforms PostgreSQL · Nginx · Redis · Odoo · Self-hosted services

Currently

  • Extending catnet with additional protocol coverage and evasion-aware scanning
  • Hardening isolation and privilege separation in multi-tenant environments
  • Improving observability and incident response posture for self-hosted platforms
  • Contributing to Proxmox tooling and security automation open-source

Active at MadeiraHackerSpace and Portosoft.

Last updated: June 2026

Pinned Loading

  1. catnet-io/app catnet-io/app Public

    CatNet App — cross-platform desktop application for network scanning and monitoring (Wails + React)

    TypeScript

  2. catnet-io/catnet catnet-io/catnet Public

    CatNet CLI — command-line interface for network scanning and monitoring

    Go

  3. catnet-io/engine catnet-io/engine Public

    CatNet engine — Go scanning engine, zero external dependencies, event-driven channel API

    Go

  4. MadeiraHackerSpace/mhc-cloud-panel MadeiraHackerSpace/mhc-cloud-panel Public

    Plataforma SaaS multi-tenant para revenda e gestão de VPS sobre Proxmox VE

    Python 1

  5. carreira-em-cyber carreira-em-cyber Public

    Forked from vitorluigi/carreira-em-cyber

    Repositório para disponibilização de conteúdo para auxiliar profissionais e estudantes de cyber que estão iniciando na área