Himalayas logo
MB
Open to opportunities

Mohamed Barrous

@mohamedbarrous

OSCE3-certified cybersecurity consultant specializing in offensive security and penetration testing.

Morocco
Message

What I'm looking for

I seek offensive-security roles where I can conduct high-impact penetration tests, develop exploits, mentor teams, and deliver actionable remediation—remote or open to relocation.

I am an OSCE3-certified cybersecurity consultant with 3.5 years of hands-on experience in offensive security, specializing in web application testing, infrastructure penetration testing, and secure code review. I have identified complex vulnerabilities including authentication bypass, logic flaws, SSRF, RCE, and Active Directory attack vectors, and I deliver clear technical reports and remediation plans for clients across finance, telecom, and government sectors.

I have worked as a bug bounty hunter on a red team platform and as a mid-level consultant leading infrastructure tests and secure code reviews, contributing to tooling and process improvements while collaborating across teams. I am fluent in English, French, and Arabic, and I am open to relocation or remote onboarding for high-impact engagements.

Experience

Work history, roles, and key accomplishments

Synack logoSY
Current

Bug Bounty Hunter

Synack

Jun 2024 - Present (1 year 4 months)

Conducted targeted assessments of web, infrastructure, and endpoint environments, identifying high-impact vulnerabilities (authentication bypass, logic flaws, RCE) and delivering actionable remediation guidance to enterprise clients.

Burp suiteRCETechnical ReportingExploit Development

Education

Degrees, certifications, and relevant coursework

Mohamed hasn't added their education

Don't worry, there are 90k+ talented remote workers on Himalayas

Browse remote talent

Tech stack

Software and tools used professionally

Gmail logo

Gmail

JavaScript logo

JavaScript

PHP logo

PHP

PowerShell logo

PowerShell

Linux logo

Linux

Windows logo

Windows

ZAP logo

ZAP

Zap logo

Zap

Burp Suite logo

Burp Suite

Nmap logo

Nmap

OWASP ZAP logo

OWASP ZAP

Bash

Availability

Open to opportunities

Location

Morocco

Authorized to work in

Morocco

Job categories

Cybersecurity ConsultantPenetration TesterSenior Offensive Security SpecialistVulnerability ResearcherSecurity ConsultantExploit DeveloperApplication Security EngineerRed Team SpecialistSecurity ResearcherSenior Cybersecurity ConsultantInformation Security ConsultantFreelance Cybersecurity ConsultantCybersecurity ExpertCyber Risk ConsultantCloud Security Consultant

Skills

Application SecurityOWASP Top 10Authentication BypassSSRFRCEIDORPenetration TestingLinux SecurityCode ReviewPythonPHPJavaScriptActive DirectoryAD CS Certificate AbuseKerberosLateral MovementExploit DevelopmentVulnerability ResearchBurp suiteOWASP ZAPNmapCobalt StrikeMimikatzCertificationRubeusBASHPowerShellTechnical ReportingClient CommunicationGmailLinuxWindowsZAP

Interested in hiring Mohamed?

You can contact Mohamed and 90k+ other talented remote workers on Himalayas.

Message Mohamed

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Mohamed Barrous - Bug Bounty Hunter - Synack | Himalayas