Penetration Testing Freelancers

Browse Penetration Testing job posts for project examples or post your job on Upwork for free!

Penetration Testing Job Cost Overview

Typical total cost of Upwork Penetration Testing projects based on completed and fixed-price jobs.

Upwork Penetration Testing Jobs Completed Quarterly

On average, 14 Penetration Testing projects are completed every quarter on Upwork.

14

Time to Complete Upwork Penetration Testing Jobs

Time needed to complete a Penetration Testing project on Upwork.

Average Penetration Testing Freelancer Feedback Score

Penetration Testing Upwork freelancers typically receive a client rating of 4.41.

4.41
Last updated: May 1, 2015
More options
Clear all filters
  1. Robert C.

    Robert C.

    TIBCO Consultant & E-Commerce Architect

    United States - Last active: 2 days ago - Tests: 2 - Portfolio: 2

    Good Day and thank you for taking a moment to read my profile! I started working in IT about four years ago as a technical support representative for Simple Helix, a Magento specialist web hosting company. From there, I had the opportunity to spend a year as a Network Analyst for a local, carrier class, ISP before moving on to a position as a Linux Systems Engineer with a Magento development firm. In the present, I work as an Applications Engineer with a focus on the TIBCO stack, most notably AMX, BusinessWorks, EMS, and SilverFabric. I have a very strong background in Linux/Unix administration and have worked extensively with CentOS, Red Hat, and Debian. I've worked with networks from a physical perspective, as a NOC Technican, as well as logical perspective troubleshooting complex application issues. Over the past few months I've taken the opportunity to learn to code in Java and I've recently attended Red Hat training for JBoss EAP 6. I'm a CPTE (Certified Penetration Testing Engineer) and would happily pursue projects as an E-Commerce Architect, Systems Engineer, TIBCO Engineer, JBoss Administrator, entry-level Programmer, or entry-level Ethical Hacker. I am available for new jobs immediately outside of US business hours.

    $33.33 /hr
    416 hours
    4.86
  2. Hakimuddin G.

    Hakimuddin G.

    Penetration Tester | Ethical Hacker | SQL Injection | XSS Tester

    Kuwait - Last active: 3 days ago - Tests: 9 - Portfolio: 18

    IT Security Consultant providing Consistent, Timely, and Cost-Effective IT Security Services. "h.gheewala@owasp.org" ### Professional Security Services ### # Web Application/SaaS Security Testing and Defense (sql injection, cross site scripting) # Penetration Testing & Ethical Hacking # Vulnerability Assessment & Network Auditing # Implementation and auditing of various security compliance(ISO 27001, NIST, PCI-DSS) # Protection of hacked websites and servers, cloud security. # Security Testing Mobile Apps, Chrome Apps, Salesforce AppExchange Business Apps , RESTful Applications and APIs # Security Awareness - On Demand Phishing for Organizations. ### Value Added Services ### # Debrief with the client at the conclusion of each engagement. # Research and provide recommendations for continuous improvement. # Knowledge sharing. ### Certifications ### CISM,CISSP,Certified Ethical Hacker, ISO27001, Security+ ### Hands on Experience ### Web applications :- Wordpress, Joomla, Drupal, Network :- Cisco, Linksys, Netgear, TP-Link, E-Commerce Security - OScommerce, prestashop, Magento Forums - MyBB, phpBB cPanel, WHMCS Linux, Windows, Ubuntu, CentOS etc. ### Tools ### Manual SQL Injection Testing, Business Logic vulnerability testing, Kali Linux, Burp Suite, Metasploit Pro

    $27.00 /hr
    1,493 hours
    4.99
  3. Corey M. Bobb

    Corey M. Bobb

    Network / Security Engineer - CISSP, CCNA-SEC, CCNA

    United States - Last active: 8 days ago - Tests: 6 - Portfolio: 1

    As a Network / Systems Engineer for the past 24 years, I can help troubleshoot most network issues on WAN / LAN with almost any network device vendor, administer Windows and Linux server environments from one small business office to large enterprises with multiple locations. As a security specialist in standards like PCI-DSS, HIPAA, NIST, ISO-27001(2), I can also help recommend and provide guidance to secure all aspects of data and network integrity, by providing assessments and audits of current environments. I also have excellent trouble isolation and resolution skills from a long history of working in the field, especially system and network engineering and administration. I look forward to helping you by using these skill sets to overcome any server or network task you should post. www.cmbnetworks.net Skills CISSP, PCI-DSS Compliance, HIPAA, PII Linux Server Engineering and Administration Windows Server Engineering and Administration Cisco Router, Switches and Firewalls Firewalls - Cisco, Juniper, SonicWall, Fortigate Engineered LAMP (+Java) for high volume e-commerce platform Engineered LAMP systems for 1500 node Linux / Windows network System Tuning for system performance and data optimization Apache Optimization, Website Security, Mod-Security, PHP VMWare / VSphere engineered production supplemental servers, Production, Development and QA Systems using complex Visualization (Citrix & VMWare) System administration and system tasks, scripts and management. MySQL / MSSQL DBA PMP

    $83.33 /hr
    597 hours
    4.95
  4. Zhu WenQi

    Zhu WenQi

    PHP Mysql Javascript Developer, Penetration Tester,Shanghai China

    China - Last active: 28 days ago - Tests: 9 - Portfolio: 4

    Over the last 7 years, I have developed a wide range of websites using HMTL, Ajax , PHP, and MySQL including sites for startup companies and small businesses. I have developed a CRM named Online Management System (OMS) for an insurance company. The main functions of the CRM are capture leads from multi campaigns, make PDF quotation according to different insurance options, track leads' sale progress, a basic report function. I also have developed a platform,both frontend and backend, which is named TAP (The Advocacy Platform). TAP is a gamified marketing platform which delivers research, user generated content, and most importantly transforms consumers into true authentic Brand Advocates. Advocacy campaigns via TAP have delivered key message recall of 40-50% at 1/10th of TV media cost. Fueled by a community of over 125,000 women in the top 20 cities in China, TAP has delivered 5 million brand 'missions' since January 2012 for key clients such as Reckitt Benckiser, P&G, Kimberley Clarke, J&J, GSK, and Fonterra. My core competency lies in complete end-end management of a new website development project, and I am seeking opportunities to build websites from the ground up for you or your business.

    $25.56 /hr
    64 hours
    5.00
  5. Sudhanshu R.

    Sudhanshu R.

    Security Consultant & System Admin (CEH|ECSA|CCNA|RHCE|MCSE|CISP|CISP)

    India - Last active: 18 hours ago - Tests: 11 - Portfolio: 4

    Information Security Consultant and System Admin with good Networking Skills 5 Years of experience in IT Industry and Expertise in Web security ,Linux Admin , Windows Admin, Network Security , Web Application Security , Vulnerability Assessment and Penetration Testing. I specialize in Black Box/White Box Penetration Testing,Computer Forensics,Auditing, Ethical hacking, Cloud Computing , Migration , Server installation , Server security hardening , DDOS attack , Malware removal , Ethical Hacking . # Hands-On Experience :- Vulnerability Assessment and Penetration Testing :- - OWASP 2013 top 10 Vulnerability Assessment and Mitigation - Web Application/Network/Mobile Penetration Testing - Wordpress/Joomla Security and Malware Analysis/Removal - Vulnerability Assessment of Network Devices/Databases/Web - Server/Application Server - Asp.net , PHP Security Guidelines , Scripting Attack module IDS/IPS :- - WIPS (Airtight spectragaurd enterprise , Wireless IPS ) - NIPS ( McAfee Network IPS ) - Proventia ( IBM GX4004 ) - Snort and OSSEC IDS ( Installation and monitoring Openstack ) Firewalls and Security :- - Checkpoint(R70.20/65,Fotigate600c&200B/Cyberoam/ Sonicwall/Gajshield/Kario Winroute/Riverbed - Identity Management: Security Protocols (RADIUS and TACACS+), Cisco Secure - Cisco LMS, Solarwinds, OPmanager Linux Server :- - Rackspace RackConnect, AWS SecurityGroups, dedicated firewall devices. - Rkhunter, Chkrootkits, SSHD, TCP Wrapper, fail2ban - Mitigate Mass mailing issue , DDOS scripting removal , IP Blacklisting - Experienced with setting up PCI Compliant servers. Scanning tools include dedicated - Nessus server and third-party scanner like Trustwave and ControlScan - Setup and manage firewall rules with iptables, ufw, configserver firewall (csf), DNS:- Manage DNS cluster on Cpanel DNSOnly versions. Manage zones hosted and integrated with Cpanel servers. - Manage Bind DNS service on dedicated and Cpanel servers (WHM and DNSOnly versions). Manage zones hosted at Softlayer and integrated with Cpanel servers Hosting Control Panels:- Manage multiple cPanel servers for shared hosting clients and services - Previous experiences include Plesk, zpanel, directadmin, and Webmin control panels Operating Systems:- Servers: RHEL, CentOS, Debian, Ubuntu, openSUSE, solaris Windows Server :- - Server Administration: Windows Server Administration (Server 2003/2008/2012) - Web Server Administration: Web Server Administration (IIS6/IIS7/IIS7.5/IIS8). - Database Server Administration: MS SQL Server (2005/2008/2012), MySQL database Administration. - DNS and Mail Server Administration:DNS and MS Exchange/SmarterMail/. - Visualization & Cloud :Hyper-V server administration, Managing Microsoft Private Cloud - Web Hosting Panel: WHM/cPanel, Website Panel, Plesk panel administration. - Monitoring, troubleshooting network and OS. - Backup & Restore - Server Firewall/Security, email tracing for spoofed mails. Certification :- ECSA v 8 (EC-council Certified Security Analyst) CEH v 7 (EC- Council Certified Ethical Hacker) RHCE (Red Hat Certified Security Engineer ) CISP (ISO 27001:2005 ) ISMS Implementation CCSA(Checkpoint certified security administration) – Checkpoint ID:- CP0000065597 CCNP (Cisco Certified Network Professional) - (Routing & Switching)-Route(642-902)-certified CCNA (Cisco Certified Network Associate) Cisco ID-CSCO11759679 MCSE (Microsoft Certified System Engineer)

    $25.00 /hr
    88 hours
    5.00
  6. Colette Chamberland

    Colette Chamberland Agency Contractor

    Website/Server Security Expert - Wordpress - Joomla - ASP/PHP

    United States - Last active: 18 hours ago - Tests: 9 - Portfolio: 5

    I am a professional website security expert and web developer. I have over 19+ years of experience in IT and over 10+ years of experience in the specialty of IT Security. I am a member of OWASP (http://www.owasp.org) Website/Server Security Services: Website/Server Malware/Virus/ backdoor Removal Hacked Website Restoration/Repair Penetration Testing Vulnerability Assessment Web Server/Site hardening For multiple platforms (such as): Azure, Windows/IIS LAMP VPS/Cloud For ANY of the following: Wordpress, Joomla, Drupal osCommerce, PrestaShop, Magento mediaWiki vBulletin, myBB, phpBB and many more. I can also work with custom built systems (PHP, Classic ASP,JavaScript, ASP.NET, plain HTML, CakePHP, etc.) and have extensive experience with MySQL, SQL Server, Access & Oracle databases. Also experienced using WHMCS, cPanel, SSH, Putty. Some of the tools I utilize for Penetration Testing and Vulnerability assessments include Kali, Burpe Suite, WPScan, JoomScan, OWASP Zed, NetSparker, Nessus, Metasploit, w3af. In addition to these tools, I also do manual testing for things such as Sql injection, Cross Site Scripting vulnerabilities, remote file uploads, etc. ( See the following link: https://www.owasp.org/index.php/Top_10_2013-Top_10) I am also a regular volunteer contributor on badwarebusters.org, a forum geared towards webmasters that have discovered malware on their website and need some assistance. https://www.badwarebusters.org/dashboard/cchamberland I also take on small development/maintenance jobs and work when I have additional time (my main focus is security). I can do: Wordpress customization/Custom Plugins Website hosting migrations Joomla upgrades/migrations Custom Classic ASP/ASP.NET MVC Custom PHP development LAMP Administration VPS/Azure configuration/set-ups & administration I also have extensive experience in optimizing high traffic wordpress sites, utilizing tools such as varnish,memcache, cloudflare, maxcdn, load balancing and troubleshooting performance issues with xDebug. I have worked with all major hosting providers and their setups, such as goDaddy, siteground, bluehost, dreamhost, rackspace, network solutions, azure, etc.

    Associated with: Scurit, LLC, IDPlex

    $60.00 /hr
    731 hours
    4.98
  7. Aty P.

    Aty P. Agency Contractor

    Linux Server Admin, Security Expert, PHP MySQL, Wordpress Expert

    India - Last active: 2 days ago - Tests: 5 - Portfolio: 41

    Hi, My name is Aty. Over the last 7 years since 2007, I have led mufti-functional teams to execute on mission-critical engagements. I did job with large design firms in my starting career for 2-3 years. I then assembled a crack commando unit of the best people I encountered. We take on assignments, right-size the solution to the problem, and then use the team approach: an architect to ensure you have a platform suitable to your needs, razor sharp analysts to document the deliverable, creative designers for graphics, and masters of code. We then put very cheap SEO and maintenance folks to ensure your rankings remain at the top, and your site runs blazing fast. Each of these people bill at different rates, so you get maximum bang for your buck. When you hire anyone at Quinji, you hire the team resources. You will not suffer if someone is not available. We have the breadth of skills and depth of resources to ensure your project is on time and on budget. I am native US English speaker and this feedback is given to me by more than 20 different clients which they found a plus point while making conversation when they are outsourcing their work for better communication and understanding. Always available on Skype for voice or text during my working hours. I completed 2600+ hours on odesk with 4.96 star feedback out of 5 up to June 2014. Hope it will boost some confidence inside my capabilities to complete your assignments successfully. Looking forward to hear from you. ********************************************* My Technical Skills are as below: ------------------------------------------------ Security Expert -> SQLi/XSS, Trojan Removal, Malware and Malicious Code Removal, Security Configuring on servers, CSF, mod_security, DDos Attack, Phishing attack, Iframe, eval and base64 signature detection, VPS and Dedicated server Management, Monitoring, cloaking, pharma hacks, shell detection, spam blocking. Penetration testing, Nessus, Nmap, Metasploit, Maldet, Blackhole Exploits detection removal and others.. -------------------------------------- Developer -> PHP/MySQL, Core CMS -> Joomla, Drupal, WordPress, CakePHP, CodeIgnitor -------------------------------------- Social Framework -> SocialEngine, Dolphin, JomSocial, Community Builder. -------------------------------------- Ecommerce ->OScommerce, Magento, Cscart, ZenCart, BigCommerce, CBSubs, Virtuemart, Woocommerce -------------------------------------- Framework -> Cakephp, Codeignitor, Zend, Symfony. Yii -------------------------------------- Java Script Framework -> JQuery, JQuery UI, Mootools -------------------------------------- SEO/SEM -> OnPage SEO optimization so Search engines crawl all the required content automatically, Article Writing and Submission, Social Bookmarking, Link Building, Press Release, Directory Submission, Social Media, Traffic Generation, Youtube, Facebook, Twitter, Digg and so on with all Ethical Methods. Latest strategy according to Panda 4.4 algo follwed while doing SEO -------------------------------------- Desktop or Laptop Fixes -> I used Remote Desktop or Team Viewer to take access to client machines to fix their machines from spywares, Malwares, viruses or Trojans installed on their machines. ******************************** Hope once we start we will be in long term business relationship.

    Groups: AWeber, BoonEx...

    Associated with: Quinji

    $30.00 /hr
    2,826 hours
    4.96
  8. Mihai-George Cornateanu

    Mihai-George Cornateanu

    Senior Linux System Engineer

    United Kingdom - Last active: 3 months ago - Tests: 12 - Portfolio: 1

    Linux System Administrator. LAMP Administrator. Security expert - Senior Ethical Hacker. PCI Compliance expert. ✔ Apache ✔ PHP ✔ MySQL ✔ DNS ✔ FTP ✔ Samba ✔ Postfix / Qmail / Sendmail ✔ DomainKey / DKIM / SPF ✔ Courier / Dovecot (IMAP/POP) ✔ SpamAssassin / ClamAV Amavis ✔ Kernel Hardening & Securing ✔ IPTables ✔ Wordpress, Joomla, PHPBB, Drupal ✔ Bash scripting

    $30.00 /hr
    186 hours
    4.85
  9. Gabriel Alvarez

    Gabriel Alvarez

    Expert in PHP, JQuery, AJAX. Pentester in my free time

    Germany - Last active: 07/18/2014 - Tests: 1 - Portfolio: 5

    I came from the field of particle physics, where at some point I realized I like much more to program than the physics itself. Indeed, as a physicist, I always loved the challenges, always trying to find the best and fastest solution for every problem. For more than 10 years I have programmed in plenty of languages (PHP,C++,Java,etc..), collaborating in some projects with hundreds of thousands of code lines, and starting from scratch several other projects which ended up having several thousands lines of code. Why should you hire me? If you are looking for a programmer that will give you the best and the fastest solution possible, then you are looking at the right profile. Why my solution will be better than others??, you may ask... Well, as I already said, I love the challenges, they are my hobby and my life, so don't doubt for a second that I will put my soul in your problem. At the same time, I expect professionalism and respect from your side. By the way, at the time of charging for my work, I only charge the time I'm actually typing down; I never charge the time I'm researching and thinking about your problem (I usually get most of the best solutions during the sleep ;) In conclusion, if you already hired a team of programmers charging 9$/h and couldn't complete the job (maybe due to lack of interest or preparation), you could always contact me, and once I commit myself to your project, you can be 100% sure that the job will be finished on time. Looking forward to work with you, Gabriel UPDATE: Recently I have been involved in a lot of penetration testing projects (and I had lot of fun doing them!). I will be more than glad to check out the security of your system.

    $28.00 /hr
    560 hours
    4.98
  10. George E.

    George E.

    Senior web developer

    United States - Last active: 10/25/2013 - Tests: 8 - Portfolio: 5

    Over the last 15 years, I have developed a wide range of websites using HMTL, CSS, PHP, and MySQL including sites for startup companies and small corporations. My core competency lies in complete end-end management of a new website development projects, and I am seeking opportunities to build websites from the ground up for you or your business. I am overly competent in database management and have superior knowledge of internet security from experiences from both ends of the spectrum, I have been a hacker in the past and now use this knowledge to better my penetration testing skills.I have many tools that I use to offer clients that guaranteed the most in depth penetration test of their websites. I charge $125.00 for the test, along with a very in-depth compliance report that will explain all vulnerabilities found to you the client. When you hire me for just programming, not only can you rest assured that you will automatically get a secured script and you will not have to worry about sql, xss and csrf vulnerabilities from any part of the scripts that I write. Security is my main focus when writing a script! I have skills in jquery animation, animations with new technology such as adobe edge currently in prototype stage (which will most likely deprecate flash), I have worked on almost every type of website there is from database driven cms, to static html, from real estate websites to javascript driven penny auctions, I have created gaming websites such as knightcrusaders.com, and I also offer server tuning for those who have dedicated servers and find that their websites are just moving to slow, I can optimize queries, tune mysql and php. Again I do have have over 15 years of experience so if there is something I have not listed feel free to ask and I will let you know if I have the ability to do it! I have taken several of the odesk test in order to ensure the client that I do know what I am talking about, I am in top 20% in a few categories which is by far not an easy accomplishment.

    $55.56 /hr
    38 hours
    4.78