Mark Bergman is a seasoned security specialist and ethical hacker with 11+ years of hands-on experience translating technical vulnerabilities into business risk for enterprise clients. He founded multiple security consultancies and currently advises Outflank/Fortra, combining deep software-language expertise (from COBOL and JCL to Python and .NET) with practical penetration testing and audit methodologies like ISO 17799 and COBIT. Mark contributes to prominent open-source security projects—including Metasploit and RedELK—where his work on a Metasploit Haraka module and SIEM alerting improvements demonstrates a hacker mindset applied to defensive tooling. Comfortable briefing executive teams and running technical workshops, he bridges management-level risk analysis with detailed source- and network-level reviews. Based in Amsterdam, he is known for clear, actionable advice and a pragmatic, creative approach to complex security problems.
11 years of coding experience
Ing., ING IT Acadamy (informatica en organisatiekunde), Ing., ING IT Acadamy (informatica en organisatiekunde) at Windesheim
RE, IT Auditting, RE, IT Auditting at Erasmus University Rotterdam
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
Role in this project:
Security Engineer
Contributions:10 reviews, 31 commits, 36 PRs in 2 years 5 months
Contributions summary:Mark primarily contributed to security-focused aspects of the RedELK SIEM. They modified scripts, particularly `enrich.py` and `alarm.py`, to enhance domain fronting capabilities and refine alerting logic. The user also addressed issues in integration with third-party services like GreyNoise and made updates to prevent loop conditions in threat intelligence integrations. Their changes focused on field name updates and the overall improvement of the SIEM's alarm capabilities.
Contributions:11 commits, 1 PR, 28 comments in 20 days
Contributions summary:Mark primarily contributed to a Metasploit module designed to exploit a command injection vulnerability in the Haraka mail server. Their work involved crafting a malicious email to trigger the vulnerability, allowing for remote code execution. The contributions also included updating and refining the module, integrating a check function, and addressing code style concerns.
metasploitmetasploit-framework
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.