Hire the Best Penetration Testers
in Tunisia

More than 3,000 reviews on G2
Rating is 4.5 out of 5.
4.5/5
of Upwork by G2 peer reviewers
Mohamed Khalil G.

El Kef, Tunisia

$25/hr
5.0
1 jobs

Overview: With several years of hands-on experience in offensive security and secure software delivery, I help businesses find and fix critical vulnerabilities before attackers do — and build the automation pipelines that keep them protected over time. I've conducted penetration tests across web applications, APIs, and network infrastructure for clients ranging from early-stage startups to enterprise environments. My engagements consistently surface high-impact findings — including authentication bypasses, privilege escalation chains, and exposed sensitive data — backed by detailed CVSS-scored reports and working proof-of-concept exploits. Beyond manual testing, I design and implement security automation: AI-assisted regression pipelines, and full DevSecOps integration with SAST/DAST tooling in Jenkins and GitHub Actions CI/CD environments. I'm fluent in both the attacker's mindset and the developer's workflow, which means my remediation guidance is practical and code-ready — not just theoretical. If you need a security partner who delivers actionable results, communicates clearly, and stays involved through fix verification, let's talk. Services: Web Application Pentesting — OWASP Top 10, SQLi, XSS, authentication flaws, session management API Security Testing — REST & GraphQL, authorization bypass, insecure endpoint analysis Network Pentesting — External/internal testing, privilege escalation, segmentation audits Test Automation — Playwright suites, AI-assisted test generation, regression pipelines DevSecOps Integration — SAST/DAST, Kubernetes security, secure CI/CD with Jenkins & GitHub Actions What you get: Detailed technical report with CVSS scoring and executive summary Working proof-of-concept exploits for all critical and high findings Remediation guidance with code examples tailored to your stack Free retest to verify fixes were applied correctly Pipeline integration for continuous, ongoing security coverage

  • Penetration Testing
  • Information Security
  • Vulnerability Assessment
  • Web App Penetration Testing
  • Computing & Networking
  • System Administration
  • Automated Testing
  • Security Testing
  • Cloud Security
  • OWASP
  • Security Infrastructure
  • Web Application Audit
  • Web Application Security
  • Application Security
  • Red Team Assessment
  • Cybersecurity Monitoring
  • Certified Information Systems Security Professional
Hatem M.

Rades, Tunisia

$25/hr
5.0
6 jobs

Ethical penetration tester with an offensive mindset and results-driven approach: I help organizations uncover and fix critical vulnerabilities before they can be exploited, turning risk into a competitive advantage. I conduct comprehensive assessments of web and mobile applications, cloud and on-premise infrastructures, networks, and enterprise environments, combining well-established methodologies (OWASP, PTES, MITRE ATT&CK) with advanced offensive techniques and custom tools to deliver a realistic evaluation of security posture. My offensive skill set includes, at a strategic level: • Web application testing: identification and validation of SQL Injection (SQLi), Cross-Site Scripting (XSS), Broken Authentication, CSRF, and business logic flaws. • Server-side exploitation: Remote Code Execution (RCE), insecure deserialization, and privilege escalation. • Network/system attacks and post-exploitation: pivoting, lateral movement, pass-the-hash / credential harvesting, and persistence techniques. • Cloud and container security: misconfiguration analysis, IAM management, and container/orchestrator assessments. • Red Teaming & APT-like simulations: designing realistic attack scenarios to test detection, response, and organizational resilience. • OSINT and advanced reconnaissance: mapping attack surfaces to uncover hidden exposures. • Malware hunting & incident response: high-level static/dynamic analysis, detection, removal, containment, and remediation — including automation through custom Python tools. I deliver clear, prioritized, and mitigation-oriented reports (vulnerabilities ranked by business risk, non-destructive PoCs, actionable remediation plans, and preventive measures). I also provide purple teaming services to strengthen detection and response capabilities, hands-on training for development and SOC teams, and ongoing support for mature security programs. Available for freelance engagements, short-term projects, or long-term collaborations. If you’re looking for a professional who combines an offensive security mindset, methodological rigor, and business-oriented communication — let’s discuss how to assess and reduce the real risk to your organization. In addition to offensive security, I also bring strong expertise in Search Engine Optimization (SEO), developed over years of working on complex projects. I have managed technical SEO, link building, and content optimization strategies, delivering measurable and long-lasting results: several of the pages I optimized years ago are still ranking on the first page for highly competitive keywords.

  • Penetration Testing
  • Ethical Hacking
  • Information Security
  • Network Penetration Testing
  • Web App Penetration Testing
  • Red Team Assessment
  • Malware Removal
  • WordPress Malware Removal
  • WordPress Security
  • SEO Audit
  • SEO Localization
  • SEO Competitor Analysis
  • SEO Keyword Research
  • SEO Penalty Removal
Oussama K.

Tunis, Tunisia

$20/hr
4.8
70 jobs

I am a cybersecurity expert with over 4 years of experience specializing in penetration testing and vulnerability assessments. Currently working as a Senior Cybersecurity Analyst, I lead comprehensive internal and external penetration tests, ensuring the security and integrity of various systems. My expertise extends to reverse engineering and binary exploitation, with a proven track record of identifying and mitigating critical vulnerabilities. Notable achievements include securing infrastructure for major clients like Qatar Rail and earning top honors in cybersecurity competitions such as Hackzone and CSAW. I am proficient in Arabic, English, and French, allowing for clear communication with diverse clients. Skills and Services: ✅ Penetration testing (web/mobile applications, infrastructure) ✅ Vulnerability assessments ✅ Reverse engineering and binary exploitation ✅ Programming (C/C++, Python, Bash) ✅ Security compliance tests ✅ Source code auditing

  • Penetration Testing
  • Network Security
  • Vulnerability Assessment
  • Web App Penetration Testing
  • Python
  • Bash
  • Security Testing
  • Scriptwriting
  • Reverse Engineering
  • C++
  • C
  • API
  • Mobile App
  • Linux
Oussama B.

Sousse, Tunisia

$30/hr
5.0
56 jobs

As a engineer, solution-oriented and problem-solving professional with 5 years of experience in building and maintaining web applications and server architecture, I possess a unique combination of technical expertise and strong communication and collaboration skills. My experience has taught me the importance of technical documentation, which I have become highly proficient in. I am always eager to learn more and take on new challenges, and I am particularly interested in staying up-to-date with the latest web frameworks and content management systems. I am confident in my ability to develop and implement effective solutions, and I am excited to continue building on my skills and experience in the field

  • Penetration Testing
  • Security Assessment & Testing
  • Vulnerability Assessment
  • Database Security
  • Security Testing
  • Kali Linux
  • Website Security
  • MySQL
  • Python
  • Back-End Development
  • MongoDB
  • Automation
  • Full-Stack Development
  • Node.js
  • Web Scraping
  • Web Development
  • Angular
  • Data Extraction
  • Ecommerce
  • React
  • Shopify
  • Liquid
Saber B.

Tunis, Tunisia

$25/hr
5.0
3 jobs

With over 3 years of experience, I specialize in web security, penetration testing, and security hardening. I’ve successfully completed 50+ missions for 30+ clients, focusing on vulnerability assessments, penetration testing and security counceling. I’m committed to fortifying systems and educating teams on best practices to ensure strong, resilient infrastructures. Let’s work together to secure your digital assets.

  • Penetration Testing
  • Security Assessment & Testing
  • Ethical Hacking
  • Vulnerability Assessment
  • Web App Penetration Testing
  • Security Testing
  • Security Operation Center
  • Cybersecurity Management
  • Cybersecurity Tool
  • NIST Cybersecurity Framework
  • Web Server
  • Web Application Firewall
  • Web Application Audit
  • Website Security
  • Web Application Security
Baha B.

Gabes, Tunisia

$10/hr
5.0
5 jobs

Hello! I'm a full-stack web developer with 4+ years of experience building robust, scalable, and secure web applications. I specialize in both front-end and back-end development, with a particular focus on back-end systems and Python-based solutions. My technical stack includes: Languages & Frameworks: Python (Flask, Django), PHP (Laravel, CodeIgniter, Symfony), JavaScript (Vanilla JS, jQuery), and modern frameworks like React, Angular, and Vue.js. Database Expertise: MySQL, PostgreSQL, and MongoDB – with experience in designing efficient schemas, writing optimized queries, and integrating data-driven systems. Server-Side & API Development: RESTful APIs, authentication systems, custom business logic, and deployment-ready applications using Python and Node.js. Backtesting & Automation: Experience in using Python for data analysis, automation scripts, and algorithmic trading/backtesting projects. I've worked on projects ranging from custom business applications and internal dashboards to fully responsive, database-driven websites. I emphasize writing clean, maintainable code and follow industry best practices to ensure long-term project success. As a freelancer, I prioritize clear communication, timely delivery, and a collaborative approach to ensure your project goals are met effectively. Whether you need a Python-powered backend, a custom CMS, or help improving your application's performance, I’m ready to help. Let’s build something great together — feel free to reach out!

  • JavaScript
  • React
  • Node.js
  • Angular
  • CSS 3
  • HTML5
  • Landing Page
  • Bootstrap
  • Web Development
  • Web Design
  • PHP
  • MySQL
  • NodeJS Framework
  • MongoDB
  • Python

How it works

Post a job for free Post a job

Tell us what you need. Create your own job post or generate one with AI then filter talent matches.

Hire top talent fast

Consult, interview, and hire quickly, so you can meet the freelancers you're excited about.

Collaborate easily

Use Upwork to chat or video call, share files, and track project progress right from the app.

Payment simplified

Manage payments in one place with flexible billing options. Only pay for approved work, hourly or by milestone.

Don't just take our word for it

How do I hire a Penetration Tester in Tunisia on Upwork?

You can hire a Penetration Tester in Tunisia on Upwork in four simple steps:

  • Create a job post tailored to your Penetration Tester project scope. We'll walk you through the process step by step.
  • Browse top Penetration Tester talent on Upwork and invite them to your project.
  • Once the proposals start flowing in, create a shortlist of top Penetration Tester profiles and interview.
  • Hire the right Penetration Tester for your project from Upwork, the world's largest work marketplace.

At Upwork, we believe talent staffing should be easy.

How much does it cost to hire a Penetration Tester?

Rates charged by Penetration Testers on Upwork can vary with a number of factors including experience, location, and market conditions. See hourly rates for in-demand skills on Upwork.

Why hire a Penetration Tester in Tunisia on Upwork?

As the world's work marketplace, we connect highly-skilled freelance Penetration Testers and businesses and help them build trusted, long-term relationships so they can achieve more together. Let us help you build the dream Penetration Tester team you need to succeed.

Can I hire a Penetration Tester in Tunisia within 24 hours on Upwork?

Depending on availability and the quality of your job post, it's entirely possible to sign up for Upwork and receive Penetration Tester proposals within 24 hours of posting a job description.