Talent badge filter
Skills filter
Select talent location
Select talent time zones
$25/hr
100%
Job Success
$200K+ earned
Available now
Offers consultations
Start of list.
End of list.
⚡ TOP RATED Freelancer | ⚡ 14+ Years Experience in Web Security and WordPress
Hello! I am Harwinder Kumar, a seasoned professional specializing in comprehensive Web Security and WordPress. I offer services in Malware Removal, Virus Removal, Ethical Hacking, Internet Security, Websites Migration, WordPress Development, SSL Installation, Linux Server Administration, Domain & DNS Management, WordPress Speed Optimization and Zen Cart / Drupal / MODX / Moodle / Joomla CMS Upgrades.
Achievements:
✅ Cleaned 5000+ websites successfully from malware with security enhancement.
✅ Conducted 1,000+ seamless website migrations.
✅ Completed more than 500 SSL installations.
✅ Optimized speed of 200+ WordPress websites.
Services Offered:
1. Malware and Virus Removal (Cleaning Hacked Websites and Servers):
✔ Guaranteed 100% cleanup of websites, including databases from malicious code.
✔ Remediation of WP-VCD malware, backdoors, malicious javascript and conditional redirects.
✔ Specialized solutions for japanese keyword hack, SEO spam / pharma hack, credit card stealers and ecommerce malware.
✔ Google blacklist removal (This site may be hacked, The site ahead contains malware), google deceptive warning fix.
✔ McAfee SiteAdvisor, norton blacklist or any VirusTotal based blacklist fix.
2. Website Security Maintenance: Strategic security enhancements and guidance for future-proofing your digital assets.
3. Website Transfer and Migration: Expert transfer of websites to new hosts or domains for any PHP-based CMS or custom-coded websites, including seamless email migration
4. WordPress Development and Troubleshooting: Comprehensive development and issue resolution, including critical and fatal error fixes.
5. SSL Installation and HTTPS Migration: Seamless migration from HTTP to HTTPS with secure padlock implementation.
6. HTTP Security Headers Fix: Implementation of essential security headers to protect your web application from common vulnerabilities and threats.
7. Linux Server Administration: Efficient server management promoting optimal performance and security.
8. WordPress Speed Optimization: Proven methods to enhance website performance following Google PageSpeed and GTmetrix standards.
9. Domain & Advanced DNS Management:
✔ Expert management of domain settings and DNS configurations to ensure seamless website accessibility and performance.
✔ Configuration and troubleshooting of DKIM, SPF, and DMARC records to enhance email security and deliverability.
10. CMS Upgrades: Upgrading Zen Cart, Drupal, MODX, Moodle and Joomla to their latest stable versions.
If you're looking for a trusted partner to secure, optimize and enhance your digital operations, I am here to deliver superior solutions tailored to your needs. Let's collaborate to ensure your website is both secure and performing at its peak!
Harwinder K.
has worked
.
United Arab Emirates
$15/hr
100%
Job Success
$1K+ earned
Available now
Start of list.
End of list.
𝐈𝐧 𝐚𝐧 𝐞𝐫𝐚 𝐰𝐡𝐞𝐫𝐞 𝐜𝐲𝐛𝐞𝐫 𝐭𝐡𝐫𝐞𝐚𝐭𝐬 𝐞𝐯𝐨𝐥𝐯𝐞 𝐝𝐚𝐢𝐥𝐲, 𝐩𝐫𝐨𝐭𝐞𝐜𝐭𝐢𝐧𝐠 𝐝𝐢𝐠𝐢𝐭𝐚𝐥 𝐚𝐬𝐬𝐞𝐭𝐬 𝐫𝐞𝐪𝐮𝐢𝐫𝐞𝐬 𝐦𝐨𝐫𝐞 𝐭𝐡𝐚𝐧 𝐛𝐚𝐬𝐢𝐜 𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐦𝐞𝐚𝐬𝐮𝐫𝐞𝐬, 𝐢𝐭 𝐝𝐞𝐦𝐚𝐧𝐝𝐬 𝐬𝐭𝐫𝐚𝐭𝐞𝐠𝐲, 𝐩𝐫𝐞𝐜𝐢𝐬𝐢𝐨𝐧, 𝐚𝐧𝐝 𝐜𝐨𝐧𝐭𝐢𝐧𝐮𝐨𝐮𝐬 𝐯𝐢𝐠𝐢𝐥𝐚𝐧𝐜𝐞.. I help organizations strengthen their security posture by identifying vulnerabilities, mitigating risks, and implementing layered defense strategies across web applications, networks, and infrastructure.
With hands-on experience in cybersecurity operations and offensive security practices, I specialize in proactively detecting weaknesses before they can be exploited. My expertise spans vulnerability assessments, penetration testing, web application security, network hardening, threat monitoring, and incident response. I work closely with businesses to secure their systems without disrupting performance or scalability.
𝐂𝐨𝐫𝐞 𝐄𝐱𝐩𝐞𝐫𝐭𝐢𝐬𝐞:
- Web Application Security (OWASP Top 10 mitigation, API security, authentication hardening)
- Network Security (firewalls, IDS/IPS, segmentation, secure configurations)
- Vulnerability Assessment & Penetration Testing (VAPT)
- Risk Analysis & Security Audits
- Log Monitoring & Threat Detection
- Endpoint Security & Access Control
- Security Policy Development & Best Practices Implementation
I approach cybersecurity with both an attacker’s mindset and a defender’s discipline thinking critically about how systems can be breached while building resilient protections to prevent it. My process includes detailed reporting, clear remediation guidance, and practical recommendations aligned with business goals.
Beyond technical execution, I prioritize communication and documentation so stakeholders clearly understand risks, impact levels, and mitigation strategies. Security is not just about reacting to threats it’s about building a sustainable security framework that grows with your organization.
If you’re looking for a proactive, detail-oriented cybersecurity professional committed to protecting your infrastructure, data, and reputation, let’s work together to build a safer digital environment. 🔒
$40/hr
83%
Job Success
$5K+ earned
Start of list.
End of list.
I’m a penetration tester and red team specialist with several years of hands-on offensive security experience across web/mobile applications, APIs, internal/external networks and cloud environments. I hold advanced certifications including OSCE3 (OSWE/OSEP/OSED), OSCP, CWEE, CRTE and I focus on finding real vulnerabilities with clear impact, not just generating a checklist report.
I follow a standardized methodology, build a threat model around your specific application or environment, then extend the assessment with a creative testing style to uncover issues that are commonly missed. I use a mix of offensive security tooling and custom automation to maximize coverage and efficiency and I deliver a clear, developer-friendly report with severity, reproduction steps, impact and practical remediation guidance. I also include a free retest after fixes are deployed to confirm everything is properly resolved.
Services I provide include web, mobile and API penetration testing, network and infrastructure security assessments, cloud security reviews (AWS/Azure/GCP), source code review and red team style adversarial testing.
Mihai I.
has worked
.
$22/hr
Available now
Start of list.
End of list.
Most security reports end up in a drawer. Mine don't — because your developers can actually read them, understand what's broken, and fix it.
I'm a penetration tester and OSCP-certified ethical hacker. I've been hunting real vulnerabilities since 2018, first through bug bounty programs on HackerOne and Bugcrowd, and later testing web apps, APIs, mobile apps, and networks across the financial and healthcare sectors. What I care about is the same thing your future attacker cares about: the flaw a scanner skips right past.
That's the difference between what I do and an automated tool. Scanners are great at noise. I'm here for the findings that actually matter — the ones an attacker could chain together into a breach — and I show you exactly how, step by step.
Here's what working with me looks like:
🔍 Penetration Testing
Manual, hands-on testing of web apps, APIs, mobile apps, servers, and internal/external networks. I use Burp Suite Pro, Nessus, and custom scripts I've built over years of engagements — but the real work is manual exploitation, not clicking "scan."
📑 Reports You Can Act On
Every finding comes with clear reproduction steps, full request/response data, annotated proof-of-concept screenshots, CVSS ratings, and a plain-English explanation of what it means for your business. No 200-page scanner dumps.
🛠️ Remediation Guidance
Practical fixes explained so both your engineers and your decision-makers can follow them. You'll know what to fix, why, and in what order.
🔁 Free Retest
After you've patched, I re-test at no extra cost to confirm the fixes hold and no new paths opened up.
🌐 Asset Discovery & OSINT
I map your real attack surface — subdomains, exposed services, public-facing assets — and surface what attackers may already know about you, from leaked credentials to exposed data.
🤝 Straight-Talking Consulting
First time commissioning a pentest? I'll help you scope it properly, pick the right approach (black-box, grey-box, or white-box), and walk you through the whole process.
If you're protecting customer data, prepping for a compliance or vendor security review, or you just want to know where you actually stand before someone less friendly finds out — send me a message with a bit about your project. I'll tell you honestly whether and how I can help.
Hassan S.
has worked
.
$50/hr
$7K+ earned
Offers consultations
Start of list.
End of list.
Cybersecurity professional specializing in Red Teaming, Network Security, and Adversary Emulation. Skilled in bypassing EDR solutions, executing stealthy attacks, and assessing enterprise security postures. Led 12+ Active Directory-focused CTF events with 120+ participants, automated offensive security workflows, and evaluated vendor security solutions. Focused on TTP research, OPSEC evasion, and improving threat detection.
I have worked on building test environments using Atomic Red Team and AWS Lambda, running attack campaigns, and securing APIs, web applications, and AI models.
As the founder of Assumed Breach, I provide services such as penetration testing, red team operations, phishing simulations, and incident response.
I am certified in PNPT, CRTO, and Security+, bringing expertise in offensive security.
Associated with
Assumed Breach
$12.9/hr
96%
Job Success
$8K+ earned
Available now
Offers consultations
Start of list.
End of list.
Website recover | Malware removal | Bug Hunter | web security
Are you notice WordPress malware issues, website redirect spam or a hacked website? I'm here to help you for recover, secure, and optimize your Websites. "Website Hacked? I provide 24-hour emergency WordPress Malware Removal and Google Blacklist Removal. With 7.5+ years of experience and 1,600+ hacked sites recovered, I fix redirects and SEO spam today." Malware remove and advanced server hardening to protect your business reputation and SEO rankings.
***EMERGENCY MALWARE REMOVAL SERVICES***
- Complete Virus/malware Cleanup: Manual removal of backdoors, trojans, and malicious scripts.
- Blacklist Removal: Clearing Google, McAfee, and Norton "Unsafe" warnings.
- Fix Malicious Redirects: Stopping hackers from stealing your traffic.
- SEO Spam Cleanup: Removing Japanese/Pharmacy spam and harmful backlinks.
- Database & File Restoration: Recovering corrupted core files and database.
***WordPress Malware Removal & Security Services***
✅ WordPress Malware Detection & Removal
✅ Website Hack Cleanup
✅ Malicious Script & Backdoor Removal
✅ SEO Spam / Japanese Keyword Hack Removal
✅ Hidden Redirect & Pharma Hack Fix
✅Suspicious File & Database Malware Cleanup
✅ Blacklist Removal (Google Safe Browsing)
✅Website Defacement Recovery
✅ Fix “This site may be hacked” Warning
✅ Remove Spam Pages & Hidden Links
***WordPress Security Hardening***
✔️ Complete WordPress Security Audit / Malware remover
✔️Fix Vulnerable Plugins & Themes
✔️ Secure wp-config.php & .htaccess
✔️Disable XML-RPC / Unnecessary Access
✔️Login Security & Brute Force Protection
✔️ File Permission Hardening
✔️Database Security Optimization
✔️WordPress Firewall Setup
✔️Install & Configure Security Plugins
***Website Recovery and Protection***
☑️ Restore Clean Website from Backup
☑️Malware Reinfection Prevention
☑️ Hosting Security Check (cPanel / Server)
☑️ Website Speed Optimization After Cleanup
☑️ Continuous Malware Monitoring
☑️ Security Report & Recommendations
***Additional Security Services***
☑️ WordPress Vulnerability Assessment
☑️ Website Penetration Testing
☑️Server Malware Cleanup (cPanel, VPS)
☑️Website Migration to Secure Hosting
☑️ SSL & HTTPS Security Setup
*** PENTESTING & VULNERABILITY ASSESSMENT***
Web Application Security Vulnerability Testing Includes
-Broken Access Control
-Injection (SQL, Command, OS, LDAP)
-Cross-Site Scripting (XSS)
-Cross-Site Request Forgery (CSRF)
-Server-Side Request Forgery (SSRF)
-Remote Code Execution (RCE)
-Local File Inclusion (LFI)
-Remote File Inclusion (RFI)
-Directory Traversal
-File Upload Vulnerabilities
-Authentication & Session Management Issues
-Security Misconfiguration
-Sensitive Data Exposure
-Cryptographic Failures
-Insecure Direct Object Reference (IDOR)
-Broken Authentication
-Open Redirect
-XML External Entity (XXE)
-Vulnerable & Outdated Components
-Business Logic Vulnerabilities
-API Security Vulnerabilities
-Privilege Escalation
-Information Disclosure
-Security Logging & Monitoring Failures
***WHY WORK WITH ME?***
☑️ Lot's of Projects Completed with a proven success record.
☑️ Fast Response – Immediate action for urgent hacked website issues.
☑️Complete Malware Cleanup – Remove malware, backdoors, and malicious scripts.
☑️ Post-Cleanup Security Report – Detailed report of infection source and fixes applied.
☑️Platform Expertise – WordPress, Joomla, Shopify, Magento, and Drupal.
☑️ Google Blacklist & SEO Spam Removal
☑️Security Hardening to prevent reinfection.
☑️Reliable Communication & Professional Support
Don't wait while your SEO and traffic drop. Send me a message or click "Invite" now, and let’s get your site secured immediately.
malware removal | malware remover | wordpress security | wordpress malware removal | malware | remove malware | virus removal | hacked wordpress | clean malware | wordpress hacked | website security | blacklist removal | hacked website | remove virus | malware cleanup | hacked recover | wordpress virus | malware remove | clean malware | computer repair | wordpress | cybersecurity | fix google ads | disapproved ads | pentest | network | penetration testing | wordpress fix | redirect | blacklist | ssl installation | hack recover | removal malware | computer help | antivirus | server security | fix wordpress | wordpress help | wordpress recovery | virus | secure wordpress | website malware | hosting | ssl | recover wordpress | fix website hacked | fix hacked website | website recovery | fix hacked wordpress | clean malware virus | penetration tester | wordpress backup | wordpress restore | website development | website maintenance | secure website | Penetration Tester | restore website hacked| clean up | vulnerability | fix bug | critical error | ssl certificate | site security | website cleanup | fix hacked site | virus cleanup
Rashedul I.
has worked
.
$30/hr
100%
Job Success
Available now
Start of list.
End of list.
I'm Ajmira, Lead Security Engineer at SaltedHash Tech LLC, acting as your dedicated Cyber Investigator, Enterprise Penetration Tester, and Compliance Expert. My role is to secure your infrastructure against complex vulnerabilities, solve high-stakes digital mysteries, and ensure your business is strictly audit-ready.
My Expertise:
🌐 Enterprise Vulnerability Assessment (VA)
🔒 Deep Manual Penetration Testing (PT)
🛡 ISO 27001 & ISMS Implementation
📈 Compliance Gap Analysis & Audit Readiness
🌐 Web Application & Cloud Infrastructure Hardening
🔍 NIST-Compliant Device Forensics
🌐 OSINT & Dark Web Threat Intelligence
🕵️♂️ Advanced Digital Investigations & Fraud Reporting
🔐 Incident Response & Malware Analysis
💾 Secure Data Sanitization
Why Choose Me?
🔐 Enterprise-Grade Authority & Strict NDAs
🔍 NIST & ISO Aligned Execution
📈 Board-Ready Reports with Validated PoCs
🕑 Rapid Response for Critical Incidents
💡 Clear Technical Communication
🔍 Swift Turnaround
📈 Actionable Insights
🕑 24/7/365 Days Availability
Your digital safety and corporate compliance are my top concerns. Let's work together to protect your enterprise and secure your data. Just click "Contact" to start the path to a defensible digital future.
Regards,
Ajmira Sharmin
$10/hr
100%
Job Success
$1K+ earned
Available now
Offers consultations
Start of list.
End of list.
Top-Rated QA Automation Specialist | Manual & Automation Testing Expert | Playwright • Cypress • Selenium
Delivering stable, scalable, and production-ready software is not just about finding bugs—it’s about building a quality system that prevents them in the first place.
I help SaaS and web application teams ensure their products are reliable, high-performing, and release-ready through structured manual and automation QA frameworks using Playwright and Cypress. My focus is always on strengthening the product from a user and business perspective—not just executing test cases.
With strong experience in QA across SaaS, web, and API-driven applications, I specialize in building end-to-end quality assurance processes that improve coverage, reduce production issues, and increase confidence in every release.
What I Can Do for You:
• End-to-End QA Strategy & Execution
Functional, regression, exploratory, smoke, and UAT testing aligned with business requirements and user flows.
• Automation Testing Frameworks
Design and maintain scalable automation using Playwright, Cypress, and Selenium, ensuring long-term maintainability and reliability.
• Web & Cross-Browser Testing
Validate UI/UX consistency, responsiveness, and functionality across devices, browsers, and screen sizes.
• API Testing & Validation
REST API testing using Postman and Swagger, including response validation, edge cases, and integration testing.
• Test Planning & Documentation
Creation of structured test cases, test plans, QA reports, and clear defect documentation for development teams.
• Bug Detection & Reporting
Detailed, reproducible bug reports with steps, logs, severity classification, and root cause insights.
• CI/CD Integration Support
Improve release pipelines by integrating automated tests into CI/CD workflows to reduce regression risk and improve deployment speed.
How I Work:
• Focus on root cause analysis, not just surface-level issue reporting
• Build maintainable, scalable, and reusable test coverage
• Ensure clear communication between QA, development, and product teams
• Align testing with real user behavior and business impact
• Prioritize release stability and long-term product quality
What You Can Expect:
• Fewer production bugs and faster issue resolution
• Strong, predictable release cycles
• Improved product stability and user experience
• Clear visibility into software quality at every stage
• A structured QA system that scales with your product
I don’t just test software—I help build confidence in every release by ensuring your product is stable, scalable, and user-ready.
Let’s connect and strengthen the quality of your product.
Keywords:
Manual Testing, Automation Testing, QA Engineer, Playwright, Cypress, Selenium, API Testing, Postman, Swagger, Regression Testing, Functional Testing, Exploratory Testing, UAT Testing, Test Automation Framework, CI/CD Testing, Web Testing, Cross Browser Testing, UI/UX Testing, Bug Reporting, Software Testing, SaaS QA, Web Application Testing
Muhammad U.
has worked
.
$30/hr
100%
Job Success
$200K+ earned
Available now
Start of list.
End of list.
WE ALWAYS CONSIDER OUR CLIENTS AS OUR PARTNER
Upwork Stats: More than $100K Revenue, 100% Completion ratio, 100% Job Success Ratio, and more than 100s of satisfied customers.
Shaligram Infotech is a Microsoft Gold Partner for Dynamics CRM / Dynamics 365 CE. We provide solutions for all kinds of Software development, Web development, and Mobile app development using different technologies
Microsoft MCSD certified developers. We specialize in Dynamics 365 CRM for Sales, Field Services, Marketing, and Customer services. We have a grade of skills on .Net, Azure, Power BI,and other latest Microsoft technologies. We have an equally competent team specializing in Full Stack Development on MEAN & Microsoft Stack.
Expert In Azure Services, Azure ADFS, Azure Blob Storage, Azure Performance Testing, Amazon EC2 & S3 Setup.
✅ Our expertise includes:
◆ Software Development & Maintenance services
◆ ERP Software development and maintenance
◆ Web & Mobile Apps Development
◆ Microsoft Dynamics CRM, NAV, Business Central, AX, ERP, etc
◆ ASP.NET website development & performance optimization
◆ API Integration Social media (Facebook, LinkedIn, Twitter), Google APIs, Google Maps
◆ The Second Payments Services Directive (PSD2), Strong Customer Authentication (SCA), 3-D Secure (3DS) Expert
◆ MEAN and MERN Stack
◆Testing-QA
I am hopeful that I can provide you with the best solution at a reasonable time and price.
Looking forward to working with you.
Best Reagrds,
Ramesh.M
Associated with
Shaligram Infotech
$300K+
earned
$35/hr
100%
Job Success
$30K+ earned
Available now
Start of list.
End of list.
Hi Guys ,I am an OSCP+ and CRTO certified Professional Penetration Tester specializing in Web Application, API, Cloud (AWS & Azure) Mobile Application, and Infrastructure Security Testing.
Over the last years, I have completed more than 300 penetration tests and security assessments for clients across finance, SaaS, healthcare, e-commerce, and enterprise environments from US, UK, Germany, Canada, and beyond
✅Certifications
► Certified Ethical Hacker
► OSCP
► Certified Red Team Operator CRTO
► AWS Certified Security -Specilaity
► Microsoft Certified: Azure Security Engineer Associate
► Microsoft Cyber Security Architect Expert
✅ What I can do:
🔎 Web Application Penetration Testing (OWASP Top 10, business logic flaws, auth bypass)
📱 Mobile App Pentesting (iOS & Android using Frida, MobSF, Drozer, Burp Suite)
🌐 Network Penetration Testing (Internal & External, VPN/Firewall bypass, lateral movement)
☁️ Cloud Security Testing (AWS IAM misconfigs, S3 exposure, Azure AD weaknesses)
🧠 Active Directory Attacks & Hardening
🧩 Source Code Review (.NET, PHP)
📊 Professional Reports with CVSS scoring, PoC screenshots, business impact, and fixes
🎓 SOC 2, ISO 27001, PCI DSS and Compliance-Oriented Penetration Test Reports
📄 What You’ll Get:
A detailed, easy-to-understand Penetration Testing or Vulnerability Assessment Report including:
✔️ Executive Summary
✔️ Risk Ratings (CVSS)
✔️ Each Vulnerability Explained (Problem + Proof + Impact + Remediation)
✔️ Support for fixing issues if needed
Message me anytime I am quick to respond and always happy to discuss your security needs.
Ahmed R.
has worked
.