Hire the best Hackers
Check out Hackers with the skills you need for your next job.
- $60 hourly
- 5.0/5
- (66 jobs)
Transforming Information Security into a Competitive Advantage! I have the ability to translate complex compliance requirements into clear and concise language that resonates with the business. I'm a certified senior professional specializing in implementing and managing diverse security frameworks, including ISO 27000 family, SOC 2, PCI, GDPR, HIPAA, FedRAMP and CMMC. With a proven track record of guiding businesses to successful certification, I can help you achieve compliance while mitigating risks. Don't wait until it's too late! Contact me now and avoid drowning in compliance requirements. I'm well-versed in compliance platforms like Thoropass, Drata, StrikeGraph, and TrustCloud. Explore how I can assist you and inquire about my 10% referral discount.HackingCMMCRisk ManagementMicrosoft SQL ServerSecurity FrameworkNIST Cybersecurity FrameworkHIPAAGDPRNIST SP 800-53Data PrivacyInformation Security AuditComplianceGovernance, Risk Management & ComplianceISO 27001SOC 2 ReportInformation Security - $75 hourly
- 5.0/5
- (222 jobs)
✅ Top Rated Plus Expert ✅ 3000+ Hours ✅ Professional Penetration Tester Cybersecurity researcher acknowledged by U.S Department of Defense (among other notable companies like AT&T, Semrush, Smule etc) for disclosing a number of vulnerabilities on DoDs systems via Hackerone bug bounty platform. For deliverables, professional reports are created, that will outline every vulnerability found, proofs-of-concept, and solutions on how to fix the discovered vulnerabilities. Each report not only meets but exceeds requirements for compliance auditors. Core competency is performing black and gray box testing on live web applications/networks or lab environments. Familiar with all common attack vectors and mitigation techniques, as well as finding unknown to public exploits known as 0days in web applications. Even though most of the work is confidential sample vulnerability report can be provided. Service Description 1)Web Application Penetration Testing based on OWASP TOP 10 2)Network Penetration Testing 3)Security Hardening Pentesting tools: BurpSuite Professional, OpenVAS, Nmap, Metasploit, Mimikatz, Impacket python frameworkHackingWeb Application SecurityJavaScriptReverse EngineeringBlack Box TestingEthical HackingWeb App Penetration TestingNetwork Penetration TestingInternet SecuritySecurity TestingNetwork SecurityPenetration TestingVulnerability Assessment - $125 hourly
- 4.9/5
- (357 jobs)
Let me help you unlock business opportunities and growth (💲millions) and sell to the likes of Disney, Pfizer, Uber, Siemens, Google, PWC, and so on. In the B2B space, you need Security, Privacy, and Compliance to sell to Enterprises! You focus on the business, and I'll take care of security, privacy, and compliance. Sleep well overnight because you know you are in good hands with the 🥇 Upwork virtual CISO, Security, Privacy, and Compliance consultant (1M+ earnings, 20+ years of enterprise experience)! CEO selling to Morgan Stanley: 🥂"The certification is enabling us to strike a deal with a Fortune 100 client." CEO selling to Philips: 🍾 "We have achieved the ISO 27001:2022 certification in record time." CEO selling to Pepsi:🎉 "Attila supported the growth of our business into Fortune 100 accounts." COO selling to Fannie Mae:👏 "We achieved a successful SOC 2 Type II attestation with no exception." 💭Securing your business, passing security assessments by clients or prospects, and achieving a security certification 𝙨𝙝𝙤𝙪𝙡𝙙 𝙣𝙤𝙩 𝙗𝙚 𝙖 𝙘𝙪𝙢𝙗𝙚𝙧𝙨𝙤𝙢𝙚 𝙖𝙣𝙙 𝙥𝙖𝙞𝙣𝙛𝙪𝙡 𝙚𝙭𝙚𝙧𝙘𝙞𝙨𝙚. 👌 All you need to do is ping me on Upwork, bring your problem, and after a 15-minute scoping call, I will provide you with a detailed Scope of Work. Specialized in business-to-business clients, providing 💸money-back guaranteed💸 ISO 27001, SOC 2, GDPR, HIPAA, PCI-DSS, CMMC, and FedRAMP projects and affordable virtual CISO (vCISO) services. ----> If you don’t get certified, all my fees will be refunded! <---- We are a good match if you are: 😢Busy developing your product or business and don’t have time and resources to be consumed by compliance efforts and endless meetings, halting your production for months 🤔Already purchased a DIY compliance tool (Drata, Vanta, Thoropass/HeyLaika, Sprinto, Tugboat Logic, SecureFrame, Strike Graph, Audit Board, Trust Cloud, and so on) but 𝙙𝙤𝙣’𝙩 𝙠𝙣𝙤𝙬 𝙩𝙝𝙚 𝙣𝙚𝙭𝙩 𝙨𝙩𝙚𝙥 𝙤𝙧 𝙙𝙤𝙣’𝙩 𝙝𝙖𝙫𝙚 𝙩𝙞𝙢𝙚. 😢You quickly need quick security or privacy awareness training, cloud security posture assessment (AWS, GCP, Azure), endpoint security (MS 365 - Intune, Jumpcloud, Google Workspace), or penetration testing? 💪Want to decrease your sale cycle by being compliant and having all the answers for the security and privacy questionnaires? 💪Facing challenges with the security and privacy implications of AI products? 💪Want continuous access to a certified, creditable security, compliance, and privacy professional to manage your security framework? -> Continous virtual CISO (vCISO / fractional CISO) service with affordable weekly payments! 😟Need world-class, battle-proof security and privacy policies and you need it quickly? The kind of ones that have passed audits by KMPG, Deloitte, E&Y, Pepsi, Uber, Verizon, Philips, Facebook, and many others. 💪You want problems to be solved by the BEST Working with me, you will: ● Stop struggling with compliance requirements, security questionnaires, or useless document templates. ● Make the first steps on the journey to selling Enterprises ● Receive turnkey, Enterprise-grade security operation framework ensuring long-term effectiveness ● Work with an experienced senior team (architects, pen testers, endpoint engineers, developers, auditors, consultants) that regularly helps clients score Enterprise accounts. My stats are: ✅Saved tens of thousands $$$$$ for clients, advising them on the right security tools, solutions, and approach ✅#1 in Information Security and IT compliance categories (1M+ earned) ✅Supporting all time zones ✅Long-term engagements ✅Professional certifications (CISA, CISSP, ISO 27001 IA) About the Security Consultants team: QUALITY over QUANTITY is our ethos. Excellent quality, on time, always. We only take on projects when we can deliver outstanding results. The team consists of (only) senior experts in AWS, Azure, GCP DevOps, SecOps, Penetration testing, Google Workspace, MS 365 Intune, AppSec, auditing, and compliance. Professional Integrity: We are strongly committed to moral and ethical principles and values, such as honesty, honor, responsibility, trustworthiness, and objectivity. What we look for in a new client: ● Open-minded, relaxed attitude ● Values integrity & long-term relationships ● Willing to accept advice and guidance (security is a complex niche) Security questionnaire and vendor assessment tools: CyberGRX, Panorays, KY3P (S&P, PWC), RSM, CyberVadis, SIG, SIG Lite, CAIQ, VAS, HECVAT, OneTrust, Graphite Connect, Centrl, Whistic, Process Unity Security/Compliance frameworks: ISO 27001, SOC 2, FedRAMP, NIST 800-53, NIST 800-171, NIST CSF, TISAX, HIPAA, HITRUST CSF, GDPR, NERC, ISO 27017, ISO 27018, CMMC, CMMI, TX-RAMP, StateRAMP, AZ-RAMP, NY DFS 23 / NYCRR Part 500, PCI-DSS, FFIEC, C5, ENISA, Center of Information Security (CIS) CSAT, IRAP, PIPEDA, ISO 42001HackingGovernance, Risk & Compliance SoftwareCloud Security FrameworkNIST Cybersecurity FrameworkInformation Security ConsultationGDPRInsurance & Risk ManagementISO 27001SOC 2AI SecuritySOC 2 ReportInformation Security AuditCertified Information Systems Security ProfessionalInformation SecurityCybersecurity ManagementSecurity Policies & Procedures Documentation - $30 hourly
- 5.0/5
- (92 jobs)
I'm a Penetration Tester and Cyber Security Specialist who is a professional in evaluating the security posture of Web-Applications (Websites) and ensuring the security of personal clients' online identities, accounts, devices, and networks, I've possessed my current knowledge through 3+ years of self-study and research plus 2+ years of work in the industry, protecting clients on a personal level and running vulnerability assessments against business websites, always leaving positive impression and impact, I hold a great record of being able to expertly provide the following services: - Perform comprehensive security checkups on Emails and Phone numbers and pinpoint security holes which often lead victims to be hacked with zero interaction nor awareness from them. - Assist in Account Recovery (Ex. Instagram, Facebook) - Educate thoroughly on the findings and remediations for a vulnerable target, equipping clients with enough information to trust themselves as they continue to utilize the technologies as normal with no fear of being targetted by hackers. - Investigate and educate on online frauds/scams, especially crypto ones, why and how they work, and how to distinguish between legit and not legit easily. - Clean up networks and devices from viruses/malware and ensure optimal patching for security. - Report fraud websites that impersonate legit businesses for a takedown. IMPORTANT: When it comes to cybersecurity-related services, there is a number of scammers not to be underestimated, whether within or outside of Upwork, therefore stay vigilant and keep in mind the following, 1. If you were scammed online via crypto, there's no one out there with the right to give a guarantee that they will be able to recover it for you despite how well furnished the so-called hacker's portfolio appears to be, the chance remains very slim and you should only pursue this kind of service for the sake of leaving no stone unturned knowing the high probability of failure, and you should only select a freelancer with a reputable profile and reviews to back up their activity because scammer accounts are usually fresh with no reviews and no verified ID, feel free to consult me to evaluate that. 2. Same applies to the request of hacking an account, there are complicated caveats that explain why it DOES NOT work the way you think it does but to keep it short, if you want someone's account hacked, aside from it being illegal and unethical and isn't the type of "service" I provide, the chance for it to work is about 1% to begin with, again, I'm available for consultation, account recovery is a different subject with a higher probability for success as long as it's your own account that was lost/hacked.HackingMalware RemovalInformation SecurityVulnerability AssessmentSystem SecurityNetwork SecurityInformation Security ConsultationWebsite SecurityPenetration TestingNetwork Penetration TestingInternet SecurityEthical HackingSecurity TestingSecurity Assessment & Testing - $29 hourly
- 5.0/5
- (478 jobs)
Certifications that I hold: CEH ( Certified Ethical Hacker) 740 MCSA ( Installation, Storage and Compute with Windows Server 2016) To whom it may concern, In the last years I did more than 400 Penetration Tests and Security Assessments. Most of them on Web and Mobile ( Android and iOS ) applications with Finance Background implemented with various technologies and frameworks, server security testing and hardening. Sample reports can be provided who is interested. Prompt responses to your needs. You can consider me as and internal staff of your company , always helping you to do the best in security. --------------------------------------------------------------------- Phishing simulation for your company needs ___________________________________________________________ Professional Load and Stress Testing if you are interested for your application __________________________________________________________HackingSecurity EngineeringWeb Application SecurityInternet SecurityNIST SP 800-53Windows ServerOWASPEthical HackingManual TestingSecurity InfrastructureNetwork SecurityPenetration TestingApplication SecurityKali LinuxVulnerability AssessmentSecurity Assessment & Testing - $60 hourly
- 5.0/5
- (4 jobs)
Cyber Security Professional with demonstrated experience in Penetration Testing, Security Engineering and Security Consulting. BS in Cyber Operations, Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), CASA (Certified API Security Analyst), API Penetration Testing, SANS Technology Insitute. Core Competencies: 1. Network Penetration Testing 2. Web Application Penetration Testing 3. Social Engineering (Phishing, Vishing) 4. API Penetration Testing 5. Security Training 6. Defensive Solution Configurations/Reviews (Security Engineering) 7. Malware Analysis 8. Cyber Risk AnalysisHackingDatabaseEthical HackingSecurity EngineeringWeb App Penetration TestingNetwork Penetration TestingWeb TestingCryptographyPythonReverse EngineeringPenetration TestingVulnerability Assessment - $30 hourly
- 5.0/5
- (139 jobs)
Looking for a penetration test? We'll give you access to our next-generation penetration testing solution. By combining the power of manual and automated penetration tests, we deliver the real-time insights companies need to remediate risk quickly. Through our Pentest as a Service (PTaaS) platform our clients receive comprehensive assessments. Our methodology follows the National Institute of Standards and Technology Special Publication (NIST SP 800-115), along with the latest techniques, tactics and tools used by hackers to compromise systems and applications. Providing real-time findings and unlimited retests to ensure gaps are closed is our key differentiator. Please check my Upwork work history and client feedbacks. I look forward to hearing from you!HackingWebsite SecurityOWASPWeb Application SecurityInformation Security AuditCertified Information Systems Security ProfessionalInformation SecurityVulnerability AssessmentSecurity TestingNetwork SecurityPenetration Testing - $60 hourly
- 5.0/5
- (58 jobs)
Hi, my name is Martin and I've been a principal penetration tester since 2011. Over the years, I've worked on a range of projects across Europe, East Asia, the Middle East, and the UK, serving clients from start-ups to global high street names. My focus is on providing a wide range of penetration testing services, including infrastructure, web and mobile applications, APIs, and cloud security assessments. One of the things that sets me apart from other penetration testers is my approach to the work. I've spent years mastering my craft, staying up-to-date with the latest technologies and techniques, and honing my skills. When I take on a project, I bring all of this knowledge and experience to bear, quickly identifying and exploiting vulnerabilities to provide my clients with the information they need to improve their security posture. In addition to my technical expertise, I'm also an excellent communicator. I understand that many of my clients are not technical experts themselves, so I'm always happy to explain complex technical concepts in simple, easy-to-understand language. I work closely with my clients to understand their needs and provide tailored solutions that meet their specific requirements. When it comes to deliverables, I take great pride in producing detailed reports and other materials that provide clear, concise information about the results of my testing. I know that my clients rely on this information to make important decisions about their security, so I always ensure that my reports are accurate, thorough, and actionable. Overall, I'm proud of the work I do as a principal penetration tester, and I'm committed to helping my clients stay safe and secure in an increasingly complex digital landscape. If you need infrastructure testing, web and mobile application testing, or cloud security assessments, please don't hesitate to get in touch – I'd be happy to discuss how I can help. Experience and expertise within the following disciplines: • Web Application Penetration Testing • Mobile Applications Penetration Testing • API Penetration Testing (REST, SOAP, GraphQL) • Thick Client Application Penetration Testing • External Infrastructure Penetration Testing • Internal Infrastructure Penetration Testing • Server Build Reviews • Workstation Build Reviews • Mobile Device and MDM Testing • Network Device Security Reviews • IoT Security • Embedded Hardware • Simulated Phishing • Wireless Assessments • Red Team Assessments • AWS Configuration Reviews • Azure Configuration Reviews • Office365 Configuration ReviewsHackingWeb App Penetration TestingWebsite SecurityEthical HackingCertified Information Systems Security ProfessionalWordPressSecurity Assessment & TestingCloud SecuritySecurity TestingVulnerability AssessmentWeb Application SecuritySecurity AnalysisPenetration TestingSecurity InfrastructureInformation SecurityCybersecurity Management - $60 hourly
- 5.0/5
- (69 jobs)
I am a DevSecOps Practitioner, Application Security Analyst, and Cybersecurity Specialist. I have significant and well-diversified experience in multiple Cybersecurity domains, including: 1. Cloud Infrastructure: I help secure Cloud Infrastructure such as GCP AWS and Azure. 2.Penetration Testing and Vulnerability Assessment: I specialize in finding vulnerabilities in Web Applications, Mobile Applications, Networks, and Smart Contracts. 3. Bug Bounty Hunting: I find bugs for various companies on HackerOne - @l3s7r0z. I am constantly improving myself and getting better each day in the Cyber Security field. Lester Obbayi - @l3s7r0zHackingDocumentationMobile App TestingWeb Application FirewallTechnical DocumentationBlack Box TestingInternet SecuritySoftware TestingWeb App Penetration TestingReport WritingEthical HackingArticle WritingNetwork SecurityPenetration TestingInformation SecurityVulnerability Assessment - $25 hourly
- 5.0/5
- (134 jobs)
✅ As a CREST/Offensive Security (OSCP) Certified Penetration Tester and Cyber Security Consultant, I have deep knowledge of Security Assessment Methodology to identify vulnerabilities in Network, API, Web, and Mobile Applications. ✅ I have conducted Penetration Test, Vulnerability Assessment and delivered professional reports to companies in the world complying with: ► CREST standards ► Offensive Security (OSCP) standards ► OWASP Top 10 Vulnerability ► OWASP API Security Top 10 Vulnerability ► OWASP Mobile Security Top 10 Vulnerability ► Application Security Verification Standard 4.0 (ASVS 4.0) ► CWE Top 25 Most Dangerous Software Errors ► ISO 27001 Penetration Testing ► Payment Card Industry Data Security Standard (PCI DSS) ► General Data Protection Regulation (GDPR) ► Common Vulnerability Scoring System (CVSS) ► Open Source Security Testing Methodology Manual (OSSTMM) ✅ I have some cybersecurity certifications including: ► CREST Registered Penetration Tester (CRT) ► CREST Practitioner Security Analyst (CPSA) ► Offensive Security Certified Professional (OSCP) ✅ The deliverable will be a professional Penetration Testing/Vulnerability Assessment report which includes: ► Executive Summary ► Assessment Methodology ► Type of Tests ► Risk Level Classifications ► Result Summary ► Table of Findings ► Detailed Findings. Each finding listed within the report will contain CVSS score, Issue Description, Proof of Concept, Remediation, and Reference sections. ► Tool List (Acunetix, Nessus, BurpSuite Professional, Nmap, Netsparker, Metasploit Framework, OpenVAS, Mimikatz, SQLmap, Nikto, Zaproxy, Gobuster, etc.) ✅ Please contact me if you have any question. ✅ Thank you and have a good day!HackingSecurity AnalysisSoftware TestingWhite Box TestingWeb App Penetration TestingOWASPBlack Box TestingNetwork Penetration TestingInformation SecurityWebsite SecuritySystem SecurityPenetration TestingSecurity TestingVulnerability Assessment - $60 hourly
- 4.9/5
- (126 jobs)
In the last years I did more than 100 Penetration-Tests and Security Assessments. Most of them on Web and Mobile applications with Finance Background implemented with various technologies and frameworks. (J2EE, ASP, PHP). Based on my daily work I am experienced with all common attack vectors and mitigation techniques. Since 2009 I am CISSP (Certified Information Systems Security Professional) and since 2017 I am CEH (Certified Ethical Hacker) certified. Please check also my UPWORK work history and client feedbacks. I am offering professional Black and Grey-box Penetration tests for Web and Mobile Applications. Sorry, I am not able to locate your girlfriend, recover your lost FACEBOOK, GMAIL, YAHOO etc. account or find your lost phone. Please do not invite me to such jobs. Before I start offensive tests, I may ask you for evidence that you are the site owner or to show me that you have admin access.HackingApp DevelopmentInternet SecurityCertified Information Systems Security ProfessionalSecurity AnalysisWireless SecurityJavaInformation SecurityNetwork SecurityPenetration Testing - $150 hourly
- 5.0/5
- (164 jobs)
I am the CEO & founder of BetterCyber Consulting, a cybersecurity consulting, technology, and managed services company helping startups and micro, small, and mid-sized companies create secure operating environments to increase business opportunities. I am also part of Upwork's Expert-Vetted Talent program. My priority is to create cost-effective, business-focused, and risk-driven cybersecurity solutions to help my clients secure their information assets against cyber threats. Before leaving corporate America, I held several cybersecurity positions, from operations to strategy and architecture, in Fortune 100 companies, such as PayPal Holdings, Inc. and Marathon Petroleum Corporation. I hold a bachelor's degree in Telecommunications Engineering from the Airforce University in Argentina, a master's degree in Information Security Engineering from the SANS Technology Institute, and many cybersecurity certifications, including CISSP (Certified Information Systems Security Professional) and GSE (GIAC Security Expert).HackingWordPress Malware RemovalMalware RemovalCMMCRisk AssessmentCloud SecurityInternet SecurityInformation Security AuditInformation Security AwarenessSecurity EngineeringSecurity AnalysisEmail SecurityPenetration TestingInformation SecuritySecurity Policies & Procedures DocumentationCybersecurity Management - $99 hourly
- 4.8/5
- (42 jobs)
I'm an experienced Windows, iOS and Android Reverse Engineer. I have a lot of experience in reversing applications, games, programs and systems. With +10 years of hands-on experience in Reverse Engineer and Malware Analysis, I am also a cybersecurity expert with experience in cybersecurity research and development at a world-class R&D laboratory in the field of Cyber Operations. In this work, I gained experience in network traffic analysis, malware analysis and cryptography. My main skills: * Extract Data, Code, Algorithms, Signatures and Network Addresses from Android Apps, iOS App and Windows App * Deep expertise in Smali bytecode * Decompile Apk File and convert to full source code * Application Modification for Add, Remoave, Modify Functionalities * Bypass SSL pinning. Interception, Modification and Analysis of Network Traffic * Creation of Private API for a Applications or Programs * Decompilation, Debugging, Analysis and Modification of Native Android Libraries * Know arm and x86 assembler * Expertise in analyzing sophisticated malware using tools like IDA Pro, Ghidra, and x64dbg. * Have Experience in Reverse Unity, Cocos, Kony Android Apks * Debuggers, Disassemblers with Windows x86 and x64. * Creating Scripts/Plugins for Deobfuscation * Reversing iOS, Android Apps and Developing Tools to Automate * Server solutions (including serverless solutions) * interaction with BLE devices (BLE 4, BLE 5 Coded Phy) * Mobile apps Reverse Engineering (decompilation, creation of mods, API extraction, decryption) * Android APK patching and Binary Patching, Binary Decompilation * Root Detection and Emulator Detection Bypass * Network Traffic Analysis and Malware Analysis * Deobfuscation and Unpacking Applications * Web-Scraping/Crawling and Automation Expert * Browser Automation & Testing with Leverage Selenium, Multilogin, and Puppeteer * Data Analysis & Manipulation * Advanced Web Scraping Techniques external APIs, uncovering hidden functionalities and potential enhancements through reverse engineering.HackingC++CCryptographyPythonEthical HackingEmbedded CEncryptionSecurity EngineeringAssembly LanguageWeb Application SecurityPenetration TestingAndroid App DevelopmentJavaAndroidReverse Engineering - $40 hourly
- 5.0/5
- (39 jobs)
✅ Amongst the Top 1000 hackers worldwide Web Pentesting | Mobile App Pentesting | API Pentesting | Vulnerability Assessment | Python & Bash Automation I work with companies to make their digital assets secure and provide solutions to enhance their security parameters. I create cybersecurity content on hackingloops.com explaining the practicalities and how-tos of the vulnerability and exploitation Part-time bug bounty hunter at Bugcrowd & Intigriti. Feel free to contact me for your queries and security-related issues.HackingCode ReviewPythonSecurity AnalysisWebsite SecurityMobile App TestingSecurity EngineeringCloud SecurityNetwork SecurityPenetration TestingSecurity Assessment & TestingCybersecurity ManagementMalware RemovalInformation SecurityVulnerability AssessmentInformation Security Consultation - $40 hourly
- 5.0/5
- (291 jobs)
I'm an OSCP (Offensive Security Certified Professional), OSWE (Offensive Security Web Expert), CREST CRT, and CEH (Certified Ethical Hacker) certified penetration tester. I can conduct vulnerability assessments and penetration testing for your web applications, mobile applications, and cloud infrastructures. I can also audit the code of your PHP / Python / JS (NodeJS) applications and fix code-level vulnerabilities. My day to day work includes: -- Research on bleeding edge technologies -- PHP/Python/JavaScript development -- Code auditing -- Database management -- APIs development & integration -- AWS services (EC2, SES, SNS, SQS, Route53, S3, Lambda, API gateway) -- Penetration testing -- Data scraping -- and a lot moreHackingNetwork SecuritySecurity TestingNetwork Penetration TestingPHPJavaScriptLaravelPenetration TestingInformation SecurityCloud SecurityWeb App Penetration TestingWeb Application SecurityWebsite SecurityInformation Security AuditLinux System AdministrationAmazon Web Services - $35 hourly
- 4.9/5
- (95 jobs)
I am ISO27001 certified cyber security expert with over 10 years of experience in desktop application development and cyber security. I love taking up challenges that may seem impossible to many, for all types of systems. My main expertise is bypassing defence (antiviruses/firewalls/EDR), removing false positive detections on virustotal, Malware development, web application hacking, penetration testing, API hacking, breaking application security, decompiling, reversing, scam/hacking/blackmail incident research, malware research, Desktop Application Development in C/C++/C# .NET/Python System Security Audits / Malware Cleaning/ System Hardening / System Forensics, bypassing AVs, evasion, injection through latest techniques Technical report writing / Technical Consultation and Analysis (Related to Cyber security)HackingVirus RemovalWritingPenetration TestingSecurity Assessment & TestingSecurity AnalysisDesktop ApplicationArticle WritingInformation SecuritySystem SecuritySecurity TestingEncryptionApplication SecurityEthical HackingWindows App DevelopmentC#C++ - $30 hourly
- 4.8/5
- (24 jobs)
I am a professional cybersecurity consultant with more than 13+ years of experience. I have completed OSWE, OSCP, and CEH certifications. I could professionally help in the following cybersecurity domains: - Web Application/API Penetration Testing (DAST) - Mobile Application Penetration Testing - Network Penetration Testing - Wireless Network Penetration Testing - Cloud Penetration Testing - OT/SCADA Penetration Testing - Thin Client Penetration Testing - Desktop Apps Penetration Testing - Source Code Review (SAST) - Red Teaming - Social Engineering - Security Architecture Review - Configuration Assessment - GRC (Governance, Risk Assessment and Compliance) - Cyber Capability Education & Training - PEN-200 OSCP ReadinessHackingPythonJavaScriptInformation SecurityPHPPenetration TestingEthical HackingCybersecurity ManagementLinuxInformation Security AwarenessInformation Security GovernanceSecurity AnalysisInformation Security AuditMetasploitInformation Security ConsultationNetwork Security - $75 hourly
- 5.0/5
- (7 jobs)
I have Experience in Penetration Testing(Network, Web Application, Desktop, Mobile, IVR and webservice), performed lots of Security Implementations related to Security Solutions such as SIEM, Two Factor Authentication, Firewalls,...etc. in Egypt and Large banks in Qatar. . I have experience in PCI Audits , did lot's of gap assessments and pre-audits on many banks and payment gateway. Also I wrote multiple articles in big security magazines like Hakin9 in Europe and Security Kaizen in Middle East, I'm currently having two 0day vulnerability and listed in multiple hall of fames including Microsoft. I have multiple certifications like OSCP, OSEP, OSWE And OSCE Job Experience: • Running PCI-DSS Gap Assessments, Pre-Audits, Final Audits in big payment gateways and large ISP's in Egypt • Performing Internal / External Network Penetration testing for large bank, ISP & other clients. • Performing Internal / External Application Penetration Testing “Web / Desktop” for large customers in Egypt and Qatar. • Performing advanced Penetration testing including Mobile,Web service, IOT and IVR PT in Egypt. • Supervising big Vulnerability Assessment projects in Egypt most required by PCI-DSS clients. • Performing large SIEM Solution implementations for ISPs, Banks, government sector & others in Egypt, Qatar • Implementing biggest Two Factor Authentication Solution implementation in the middle east. • Vulnerability Management Solutions for large customers in Egypt •End Point Protection implementation in large banks in Egypt • McAfee Next Generation FW deployments for large clients in Qatar. • McAfee Network Security Manager IPS deployments for large clients in Qatar. •Deploying Anti Fraud solutions at one of the biggest banks in Middle east. •Deploying Mobile Device Management solutions (Mobile Iron)at one of the biggest banks in Middle east. •One of the consultants responsible for securing the 4G Network(IMS Core,HSS,...etc.) at one of the biggest Mobile operators in Egypt. •Leading a team of 3 Engineers to perform mentioned activities previously.HackingWeb App Penetration TestingPCINetwork Penetration TestingPythonCode ReviewComputer NetworkInformation SecurityPenetration TestingVulnerability Assessment - $30 hourly
- 5.0/5
- (21 jobs)
With hands-on experience in penetration testing, I specialize in network, systems, mobile applications, APIs, and web application security. My focus is on identifying and mitigating vulnerabilities to ensure robust and secure systems. Beyond my professional work, I actively explore malware analysis and digital forensics, staying updated on the latest techniques used by APT groups. I’m also passionate about CTF events, where I’ve earned top positions in national and international competitions. Competing in CTFs has refined my abilities and reinforced my determination to stay ahead in the rapidly evolving cybersecurity field. If you’re looking for expert advice on securing your systems or want a thorough security assessment based on the best industry practices, I’m here to help. Let’s work together to make the internet a safer place!HackingMalware RemovalWeb App Penetration TestingInformation SecurityWiresharkNessusMetasploitNetwork SecurityPenetration TestingKali LinuxPythonInternet SecurityNetwork Penetration TestingLinuxVulnerability AssessmentDigital Forensics - $30 hourly
- 4.7/5
- (22 jobs)
I am a crypto scam recovery expert with over 8 years of experience in the field. I am specialized in cyber crime investigation, cyber defense, penetration testing, and vulnerability assessment, Crypto scam recovery, Blackmailer Identification, Hack Investigation and Digital Forensic. I have began my career as a cyber crime investigator, where I worked on complex cases involving computer fraud, hacking, and identity theft. I was able to use my technical skills and attention to detail to uncover evidence and bring perpetrators to justice and quickly became known for my ability to navigate the digital landscape and track down the source of cyber attacks. After years of experience in cyber crime investigation, I was also responsible for conducting penetration testing to identify and address vulnerabilities in networks and systems, as well as conducting vulnerability assessments to identify potential weaknesses. I have a deep understanding of the latest security technologies and methods, and is always seeking new ways to stay ahead of the ever-evolving threat landscape. #Bitcoin recovery services #Crypto Wallet Recovery #Investigate Cryptocurrency Scams #Wallet Transaction Analysis #Stolen Funds Tracing And Recovery #Crypto Investment Farms Investigation #Crypto Asset Security & ProtectionHackingCryptocurrency TradingWeb App Penetration TestingCrypto WalletCryptocurrencyData RecoveryEthical HackingSocial Engineering AssessmentCrypto Exchange PlatformTech & ITVulnerability AssessmentSystem SecurityDigital ForensicsMalware Removal - $160 hourly
- 5.0/5
- (39 jobs)
I help organizations build and manage a strong cybersecurity program. I have established resilient cybersecurity in Fortune 100 companies —Warner Bros., EA Sports, Pfizer, State Farm Insurance, and Goldman Sachs and can do the same for your business.HackingCloud SecurityNetwork SecurityCybersecurity MonitoringSOC 2HIPAAPCICertified Information Systems Security ProfessionalISO 27001Security InfrastructureCompliance ConsultationWeb Application SecurityInformation Security AuditVulnerability AssessmentPenetration TestingSecurity Policies & Procedures Documentation - $25 hourly
- 4.6/5
- (44 jobs)
I am Cyber Security Engineer and DevSecOps, have more than 5 years of experience. I can do Penetration testing (Applications), IoT penetration testing and cloud penetration testing, system admin. All of my support / I can help you with the following: ✅ Web application security ✅ API security ✅ Network Infra security ✅ Cloud Infra security ✅ Information security auditing Compliance ✅ OWASP top 10 Vulnerabilities findings ✅ HIPPA ✅ ISO 27001 etc. compliance Automated / Manual Vulnerability Assessment and Penetration Testing. (VA&PT) ✅ Security Best Practice - Web apps / Website - Server configuration - Cloud Infrastructure ✅ Network and Cloud Security * Prevent DDoS * Configure web firewall * Configure network firewall * Amazone Web Services (AWS) * Cloudflare integration. * Linux server issue (Redhat, CentOS etc.) * Proxy server configuration ✅ Source code vulnerability check. - Snyk - Sonarqube enterprise - Synopsys Coverity / Seeker. ✅ CMS security/recovery expert. - Wordpress - Magento - Joomla - Wordpress malware remove - Wordpress virus removal ✅ Recover hacked system ✅ Secure any Website/ web application ✅ Digital Forensic / Log analysis ✅ Forensic Android/IOS/Windows/Linux/MAC OS. ✅ Forensic Web server and Web application. ✅ IoT Security / Penetration Testing. ✅ Ransomware remove from the system. ✅ Conduct cyber security training. ✅ Remove any malware / Virus from your system. ✅ Mobile Device Management (MDM). ✅ SIEM Integration. ✅ IT Consultancy. ✅ Information Security Audit. Any task related to cyber security, system engineering & Cloud infrastructure.HackingInformation Security ConsultationInformation Security AwarenessSecurity AnalysisInformation Security AuditWebsite SecurityEthical HackingWeb App Penetration TestingCloud SecurityMetasploitCybersecurity ManagementSecurity Assessment & TestingPenetration TestingInformation SecurityApplication SecurityVulnerability Assessment - $50 hourly
- 4.9/5
- (36 jobs)
HI!! I am Virtual CISO, Cyber Security, Cyber defense, Ethical Hacker, expert I am prompt engineer working to create and maintain AI-generated content in Spanish. I love finding creative and innovative ways to ensure the perfect prompts are provided for our users I am a computer security scientist with an intensive hacking background. I do have a Msc in computer engineering I am working for severals Internationals Enterprises where I do intensive researches in Penetration Testing, Vulnerability managements, Technological Risk, Security Architecture and Forensic I am Professional with over 20 years experience in the area of information and communications technology, including 15 years of experience in networks and security infrastructure Analytical skills to solve problems, ability to work with new technologies, adaptable to any situation, pro-activity and motivation to individual and team achievements Self-management capacity of the learning process to successfully assume the continued improvement of my functions My passion is to help SMBs gain a fighting chance in an increasingly hostile information security threat environment by providing part-time vCISO services. Whether PCI , GDPR, NIST, ISO27000 and any other Security Standards gap analysis, information security risk assessments, audit remediation, strategic planning, interim CISO services, or anything else information security related, I offer you my vCISO Services, Information security ISO27001 consultancy and Policies Documentations With the following responsibilities and functions; Recommend modifications to application development, database design, networking, or infrastructure architecture with the goal of complying with internal information security policies and standards. Monitoring emerging products, technologies or best practices that will improve security for the organization and its stakeholders. Perform security audits, identify security gaps, and develop and implement risk mitigation solutions. Design and develops the organizations overall information security architecture to protect its information assets. Perform work and recomedations in relation to network, data, application and or cloud security and liaises with other areas of IT in the dissemination of this information to counter threats and internal and external vulnerabilities. Perform advanced research and identifying information security products, services, and trends, testing security configurations, and developing configuration architectures. Stong experience in Information security and Network Security: • Design Network security architecture • Design Cloud Security architecture ( AWS and Azure) • IT Vulnerability Assessment • API Security Evaluation • Cloud Security Assessment • Active Directory Security • Network and Web Application/Mobile Penetration Testing • Threat Hunting, • Red Team Program Development/Red Team Attack Simulations • Open Source Intelligence (OSINT) Gathering • IT Risk Management • Incidents Response management • Technical Writing; Information Security Policies,: ISO2700, NIST, HISPAA, PCI • Working experience of supporting Cyber Security tools such as, McAfee SIEM, Ms-SENTINEL, CISCO IPS, Citrix NetScaler, TrendMicro endpoint. Checkpoint Firewall, Bluecoat, AWS WAF, AWS Shield and AWS Firewall Manager, antivirus, CYNET security endpoint • Kali Linux Toolkit, Qualys, Nessus • MS-365 security, Defender for Cloud Strong experiece in IT Support and admin • Technical Supports Windows Server • Active Directory management • Technical Supports Azure Cloud • Technical Supports Intunes • Technical Supports Windows 10 and 11 • Technical SupportsMS- 365 • Technical writing IT Procedures,HackingMobile App TestingAmazon EC2BlockchainISO 27001Cloud SecurityVulnerability AssessmentOffice 365Information SecurityMicrosoft AzureCybersecurity ManagementPenetration TestingNessusWordPressEthical HackingNetwork Security - $15 hourly
- 5.0/5
- (127 jobs)
Web Penetration Testing(OWASP Top 10 methodology) | Network Penetration testing | OWASP API Security | Mobile Vulnerability Assessment(iOS and Android) | Source Code Reviews(.Net, Java, PHP) | Vulnerability Assessment and Penetration Testing | SIEM team (Cloud(AWS and Azure) Security, File Integrity Monitoring and Event Monitoring, Endpoint Security and Encryption, Data Loss Prevention, Network Access Control, Threat Monitoring (Email Traffic and Malware Analysis), Privileged Access and Identity Management) Have 7+ years of experience in both black box and white box testing penetration testing. Perform VAPT (Vulnerability Assessment and Penetration Testing) services for web applications, networks, mobile; source code reviews; malware analysis; server hardening; and security analysis etc. Conduct penetration testing in a systematic approach. Follow the standard methodology of the industry like OWASP Testing Guide v4(OTGv4); SANS top 25; NIST SP 800-115; PCI DSS to perform penetration testing so that client can concentrate on their professions without worrying about security threats. Web Application Testing: Do web application penetration testing with the latest methodology like OWASP Top-10, SANS Top-25. Perform both manual and automated penetration testing for vulnerabilities like Injection flaws(such as SQL, NoSQL, OS, and LDAP injection etc),Broken Authentication, Sensitive Data Exposure,XML External Entities (XXE), Broken Access Control,Security Misconfiguration, Cross-site scripting(XSS), Insecure Deserialization, Using Components with Known Vulnerabilities,Insufficient Logging & Monitoring. Also, perform source code reviews for many technologies like Java, NET, PHP etc. Approach for Manual Web-Application Penetration Testing: Conduct manual testing with following controls: * Configuration and Deployment Management Testing * Identity Management Testing * Authentication Testing * Authorization Testing * Session Management Testing * Input Validation Testing * Testing for Error Handling * Testing for weak Cryptography * Business Logic Testing * Client Side Testing Tools that use for Automated Web Penetration Testing: Acunetix, Burp-Suite, Netsparker, Nexpose, Nikto, IBM AppScan, HP fortify, W3af etc. Network penetration testing: Provide both external and internal network Penetration Testing so that your Network Infrastructure is secured from the real world attacks. Do both manual and automated network penetration testing. Approach for Manual Network Penetration Testing: Manually check for IDS/IPS, Server, Networks switch, Network Router, VPN, Firewalls, Anti-virus, Password etc. Tools that use for automated network penetration testing: OpenVas, Wireshark, Nessus, Metasploit, Armitage, Scapy etc. Mobile Application Penetration Testing: Perform mobile applications application penetration testing with the latest OWASP methodology(MSTG). Performed both manual and automated penetration testing for vulnerabilities like Weak Server Side Controls, Insecure Data Storage, Insufficient Transport Layer Protection, Unintended Data Leakage, Poor Authorization and Authentication, Broken Cryptography, Client Side Injection, Security Decisions Via Untrusted Inputs, Improper Session Handling, Lack of Binary Protections. Tools: Burp-Suite, HP fortify, Dex2Jar, Apktool, framework-res.apk, iNalyzer. Source Code Reviews: Perform source code reviews for both front and back-end languages. Perform source code reviews standard methodology like OWASP top 10. Do manual and automated source code reviews for various web based security vulnerabilities like SQL injection, Cross site scripting (XSS), CSRF, RFI,LFI, Authentication bypass etc. Tools: CheckMarx, IBM Appscan source for analysis, Microfocus HP Fortify. Security Analysis and Server Hardening: Regularly check and maintain your systems, servers to ensure that they comply with the standards. Do hardening application checks the item automatically on a daily basis and monitors all critical networks and server components. We support various frameworks like CIS benchmarking for Desktops & Web Browsers, Mobile Devices, Network Devices, Servers – Operating Systems, Virtualization Platforms & Cloud etc. Social Engineering: Have experience in social engineering vectors: Vishing, Phishing, Smishing, Impersonation. Used the following social engineering cycle to conduct social engineering: Gather Information: Here Information gathered from company websites, social media and other publications. Plan Attack: Next step is outline how intends to execute the attack Acquire Tools: After planning, next include computer programs that an attacker will use when launching the attack. Attack: Exploit the weaknesses in the target system. Use acquired knowledge: Information gathered during the social engineering tactics is used in attacks such as password guessing. Tools: SET(Kali-Linux); GetGoPhishHackingWeb TestingInformation Security AuditWeb Application SecurityWebsite SecurityNetwork Penetration TestingSoftware QASecurity AnalysisInternet SecurityInformation SecurityPenetration TestingVulnerability AssessmentNetwork Security - $35 hourly
- 5.0/5
- (30 jobs)
I am an Information Security consultant with 11+ year experience in: -Information Security -Cybersecurity -Security government and management -ISO 27001 implementation and auditing -Securing Software Development Life Cycle -Ethical hacking and Penetration Testing -Security audits I hold these certifications: CISSP (Certified Security Systems Security Professional), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), CEH Practical (Certified Ethical Hacker), CSWAE (Certified Secure Web Application Engineer ), CPTE (Certified Penetration Testing Engineer), PMP, ISO 27001 Lead Auditor, ISO 22301 Lead Implementer, COBIT 5 Foundation, ITIL v3 Foundation, TOGAF 9 Foundation.HackingTechnical WritingISO 27001IT Compliance AuditWeb Application SecuritySecurity ManagementEthical HackingNetwork Penetration TestingWeb App Penetration TestingInformation SecurityInformation Security ConsultationSecurity TestingApplication SecurityPenetration Testing - $75 hourly
- 5.0/5
- (5 jobs)
Hey! I am a Cyber Security Analyst with an extensive knowledge in conducting critical penetration tests to hunt down every vulnerability that malicious individuals could compromise in client websites. My expertise has been utilized by reputable organizations such as The Frasers Group, England Rugby, and England Netball. Leveraging my unique insights into cybercriminal workings, I keep pace with the latest attack trends deployed by active cybercrime organizations. This proactive approach ensures your website, or that of your clients', remains unreachable, with every probable threat reported and nullified swiftly. Let's work together to safeguard your digital frontiers from ever-evolving cyber threats.HackingNetwork Penetration TestingPenetration TestingPythonC#NIST Cybersecurity FrameworkCyber Threat IntelligenceTechnical Project ManagementSystem SecurityTech & ITCybersecurity Management - $80 hourly
- 4.9/5
- (28 jobs)
✅ Penetration Tester and Cyber security consultant acknowledged by leading companies in the tech field for reporting several high, and critical vulnerabilities in their systems and websites. After I go through multiple pentestinig techniques manually and automatically, at the end of the engagement, professional reports are provided, that will outline every vulnerability found, proofs-of-concept, and solutions on how to fix the discovered vulnerabilities. Let's get in touch and get your website and system secured 🛡️ 🏆 Cyber security consultation 🏆 Cyber security training 🏆 Network Penetration Testing 🏆 Active Directory Penetration Testing 🏆 Web penetration testing 🏆 Vulnerabilities Assessment 🏆 Cyber security training labs Development 🏆 CTF Labs development 🏆 Synack Red Teamer 🏆 Acknowledged by tech lead companies, Yahoo, Nokia, ZTE, Swisscom, Synology, ElearnSecurity, Payoneer, Sophos, Xiaomi. 🏆 I was number 16 on Turkey and Egypt on HackTheBox. 🏆 Work on Weekends 🏆 5 Years ExperienceHackingDigital ForensicsMetasploitPenetration TestingEthical HackingKali LinuxSecurity TestingVulnerability AssessmentNessusWeb App Penetration TestingNetwork Penetration TestingNetwork SecurityDockerOWASPWeb Application SecurityLinux Want to browse more freelancers?
Sign up
How it works
1. Post a job
Tell us what you need. Provide as many details as possible, but don’t worry about getting it perfect.
2. Talent comes to you
Get qualified proposals within 24 hours, and meet the candidates you’re excited about. Hire as soon as you’re ready.
3. Collaborate easily
Use Upwork to chat or video call, share files, and track project progress right from the app.
4. Payment simplified
Receive invoices and make payments through Upwork. Only pay for work you authorize.