Himalayas logo
Miloslav PalikMP
Open to opportunities

Miloslav Palik

@miloslavpalik

Red Team operator and penetration tester specializing in offensive and defensive security.

Serbia
Message

What I'm looking for

I seek roles where I can lead offensive security engagements, mentor teams, improve detection and response, and drive measurable security posture improvements in collaborative, mature security programs.

I am a Red Team operator and penetration tester focused on offensive and defensive cybersecurity, delivering thorough adversary emulation and vulnerability discovery.

I design and execute tailored adversary emulation campaigns, penetration tests, and social engineering exercises aligned with frameworks like MITRE ATT&CK and the Cyber Kill Chain, producing clear, actionable insights for executives.

My hands-on experience spans deep exploit development, web and cloud pentesting, Active Directory assessments, digital forensics, malware analysis, and SIEM/SOAR rule development to improve detection and response.

I mentor teams, build playbooks and KPIs, contribute to vulnerability management and incident response, and continuously elevate organizational security posture through practical testing and operational guidance.

Experience

Work history, roles, and key accomplishments

HackerOne logoHA
Current

Freelance Security Researcher

HackerOne

Mar 2025 - Present (8 months)

Conduct freelance security research and bug bounty hunting, identifying and responsibly disclosing critical vulnerabilities (SSTI, RCE, SQLi, SSRF) and contributing to improved security posture for clients. Perform advanced exploit development and reverse engineering, bypassing defenses and documenting findings.

Bug BountyExploit DevelopmentReverse EngineeringBurp suiteRCE
PE

Penetration Tester

PentestWizzard

Sep 2023 - Dec 2024 (1 year 3 months)

Performed authorized simulated attacks across networks, web, mobile, APIs and physical controls, producing actionable vulnerability reports and collaborating with teams to validate fixes and improve defenses. Supported red teaming and developed custom testing tools and scripts.

Penetration TestingAPIsMobile SecurityBurp suiteReport WritingExploit Development
SE

Independent Bug Bounty Hunter

Self-Employed

Oct 2022 - Sep 2023 (11 months)

Hunted vulnerabilities across public programs (HackerOne, Bugcrowd), finding XSS, IDOR, open redirects and misconfigurations through manual testing and tooling, and contributing to program security through responsible disclosure.

Bug BountyReconBurp suiteParameter TamperingGoogle Dorks
SE

Web Developer & Penetration Tester

Self-Employed

Jul 2021 - Sep 2022 (1 year 2 months)

Delivered web development and security services including e-commerce and catalog sites, implemented fixes for XSS/IDOR and other vulnerabilities, and conducted SDLC-aligned vulnerability management and incident reporting. Improved site SEO and UX for clients.

Web DevelopmentPenetration TestingXSSIDORVulnerability ManagementSEOSDLCBurp suite

Education

Degrees, certifications, and relevant coursework

EP

ETŠ "Mihajlo Pupin"

High School Diploma, Information Technology

2017 - 2021

Completed secondary education in Information Technology with a focus on practical IT skills and fundamentals from 2017 to 2021.

Tech stack

Software and tools used professionally

Google Tag Manager logo

Google Tag Manager

Bugcrowd logo

Bugcrowd

HackerOne logo

HackerOne

GitHub logo

GitHub

Kubernetes logo

Kubernetes

Cloudflare logo

Cloudflare

.NET logo

.NET

Google Analytics logo

Google Analytics

JavaScript logo

JavaScript

Python logo

Python

HTML5 logo

HTML5

Java logo

Java

CSS 3 logo

CSS 3

PHP logo

PHP

Kotlin logo

Kotlin

ASP.NET logo

ASP.NET

C++ logo

C++

PowerShell logo

PowerShell

Rust logo

Rust

Wireshark logo

Wireshark

Ubuntu logo

Ubuntu

Linux logo

Linux

Windows logo

Windows

Kali Linux logo

Kali Linux

Qualys logo

Qualys

CrowdStrike logo

CrowdStrike

Cisco ASA logo

Cisco ASA

WordPress logo

WordPress

Docker logo

Docker

Amazon Web Services (AWS) logo

Amazon Web Services (AWS)

1Password logo

1Password

SQL logo

SQL

Burp Suite logo

Burp Suite

Nmap logo

Nmap

Metasploit logo

Metasploit

Nx logo

Nx

OWASP ZAP logo

OWASP ZAP

Bash

Availability

Open to opportunities

Location

Serbia

Authorized to work in

Serbia

Website

n8-x.com

Portfolio

app.hackthebox.com/profile/1351625

Social media

Miloslav Palik's TwitterMiloslav Palik's LinkedInMiloslav Palik's GitHub

Job categories

Red Team SpecialistPenetration TesterSenior Offensive Security SpecialistCybersecurity AnalystVulnerability ResearcherExploit DeveloperIncident Response AnalystSecurity ConsultantAdversary Emulation LeadRed Team Management

Skills

Red Team OperationsPenetration TestingApplication SecurityCloud SecurityExploit DevelopmentReverse EngineeringMalware AnalysisSIEM SOAR Rule DevelopmentDigital ForensicsBash ScriptingProgramming (JavaKotlinJavaScriptGoCC#C++AssemblyRubyBurp suiteNmapGobusterMetasploitSQL InjectionXSSSSRFCredential Access TechniquesBloodHoundHashcatQualysWiresharkOSINTThreat AssessmentVulnerability ManagementBASHBugcrowdCisco ASACrowdstrikeEnhanceGitHubHackerOneJavaKali LinuxLinuxPHPSQLSnykWindows

Interested in hiring Miloslav?

You can contact Miloslav and 90k+ other talented remote workers on Himalayas.

Message Miloslav

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Miloslav Palik - Freelance Security Researcher - HackerOne | Himalayas