Software Engineer & Security Researcher

Building secure,
scalable systems

Specialized in full-stack development and offensive security research. Creating robust applications while breaking them to make them stronger.

View Selected Work →

Expertise

Backend Engineering

Java • Spring Boot • Hibernate/JPA • PostgreSQL • REST APIs • MySQL • Redis

Frontend & DevOps

Vanilla JavaScript • Docker • Nginx • Linux/Bash • Git

Security Research

Nmap • Burp Suite • Wireshark • Metasploit • SQL Injection • XSS

Infrastructure

Network Analysis • TCP/IP • Linux Privilege Escalation • System Hardening

Selected Work

SaaS Appointment Platform

Freelance Lead 2024

Architected a custom booking engine replacing manual scheduling workflows for a multi-tenant environment.

Spring Boot • PostgreSQL • Docker • Nginx
  • Designed 3NF relational schema for multi-tenant data isolation and complex role management
  • Built zero-dependency frontend using Vanilla JS for maximum performance
  • Containerized with Docker, deployed to Railway with Nginx reverse proxy for SSL termination
01

Outfit Inventory System

Academic 2023

Complex inventory management system focusing on data integrity and advanced backend validation.

Spring MVC • Hibernate • REST
  • Implemented advanced Many-to-Many entity mapping with Hibernate
  • Optimized SQL queries for high-volume data retrieval
02

JKU Racing Portal

Admin & Dev Ongoing

Developing public-facing site with high-performance animations and managing internal IT infrastructure.

JavaScript • GSAP • CMS
  • Managing internal IT infrastructure for engineering teams
  • Developing high-performance animations for enhanced user experience
03

Network Infrastructure Audit

Security Research

Comprehensive security assessment of network infrastructure revealing critical vulnerabilities.

Nmap • Wireshark • TCP/IP
  • Systematic enumeration of attack surfaces via Nmap NSE
  • Exploited weak protocols (Telnet) and misconfigured SMB/FTP
  • Analyzed PCAP traffic to reveal proprietary protocols
04

Web Application Penetration Testing

Security Research

Offensive security testing uncovering authentication bypasses and injection vulnerabilities.

Burp Suite • SQLi • XSS
  • Executed manual SQL injections to bypass authentication
  • Intercepted and manipulated HTTP requests via Proxy
  • Brute-forced hidden API endpoints using custom wordlists
05

System & Database Hardening

Security Research

Security audit of database systems and Linux environments for privilege escalation vectors.

Redis • MySQL • Linux Privesc
  • Analyzed Redis memory dumps for cleartext credential leakage
  • Audited MySQL permissions for privilege escalation vectors
  • Identified Linux SUID/SGID vulnerabilities
06

Education

B.Sc. Informatik
Johannes Kepler Universität (Linz)
Ongoing
High School Diploma
Gymnasium "Veljko Petrović"
GPA 1.0

Languages

English
C2 (Proficient)
German
B2 (Intermediate)
Serbian
Native