Penetration Testing Freelancers

Browse Penetration Testing job posts for project examples or post your job on Upwork for free!

Penetration Testing Job Cost Overview

Typical total cost of Upwork Penetration Testing projects based on completed and fixed-price jobs.

Upwork Penetration Testing Jobs Completed Quarterly

On average, 14 Penetration Testing projects are completed every quarter on Upwork.

14

Time to Complete Upwork Penetration Testing Jobs

Time needed to complete a Penetration Testing project on Upwork.

Average Penetration Testing Freelancer Feedback Score

Penetration Testing Upwork freelancers typically receive a client rating of 4.41.

4.41
Last updated: May 1, 2015
More options
Clear all filters
  1. Hakimuddin G.

    Hakimuddin G.

    Penetration Tester | Ethical Hacker | SQL Injection | XSS Tester

    Kuwait - Last active: 4 days ago - Tests: 9 - Portfolio: 18

    IT Security Consultant providing Consistent, Timely, and Cost-Effective IT Security Services. "h.gheewala@owasp.org" ### Professional Security Services ### # Web Application/SaaS Security Testing and Defense (sql injection, cross site scripting) # Penetration Testing & Ethical Hacking # Vulnerability Assessment & Network Auditing # Implementation and auditing of various security compliance(ISO 27001, NIST, PCI-DSS) # Protection of hacked websites and servers, cloud security. # Security Testing Mobile Apps, Chrome Apps, Salesforce AppExchange Business Apps , RESTful Applications and APIs # Security Awareness - On Demand Phishing for Organizations. ### Value Added Services ### # Debrief with the client at the conclusion of each engagement. # Research and provide recommendations for continuous improvement. # Knowledge sharing. ### Certifications ### CISM,CISSP,Certified Ethical Hacker, ISO27001, Security+ ### Hands on Experience ### Web applications :- Wordpress, Joomla, Drupal, Network :- Cisco, Linksys, Netgear, TP-Link, E-Commerce Security - OScommerce, prestashop, Magento Forums - MyBB, phpBB cPanel, WHMCS Linux, Windows, Ubuntu, CentOS etc. ### Tools ### Manual SQL Injection Testing, Business Logic vulnerability testing, Kali Linux, Burp Suite, Metasploit Pro

    $27.00 /hr
    1,493 hours
    4.99
  2. Robert C.

    Robert C.

    TIBCO Consultant & E-Commerce Architect

    United States - Last active: 3 days ago - Tests: 2 - Portfolio: 2

    Good Day and thank you for taking a moment to read my profile! I started working in IT about four years ago as a technical support representative for Simple Helix, a Magento specialist web hosting company. From there, I had the opportunity to spend a year as a Network Analyst for a local, carrier class, ISP before moving on to a position as a Linux Systems Engineer with a Magento development firm. In the present, I work as an Applications Engineer with a focus on the TIBCO stack, most notably AMX, BusinessWorks, EMS, and SilverFabric. I have a very strong background in Linux/Unix administration and have worked extensively with CentOS, Red Hat, and Debian. I've worked with networks from a physical perspective, as a NOC Technican, as well as logical perspective troubleshooting complex application issues. Over the past few months I've taken the opportunity to learn to code in Java and I've recently attended Red Hat training for JBoss EAP 6. I'm a CPTE (Certified Penetration Testing Engineer) and would happily pursue projects as an E-Commerce Architect, Systems Engineer, TIBCO Engineer, JBoss Administrator, entry-level Programmer, or entry-level Ethical Hacker. I am available for new jobs immediately outside of US business hours.

    $33.33 /hr
    416 hours
    4.86
  3. Zhu WenQi

    Zhu WenQi

    PHP Mysql Javascript Developer, Penetration Tester,Shanghai China

    China - Last active: 29 days ago - Tests: 9 - Portfolio: 4

    Over the last 7 years, I have developed a wide range of websites using HMTL, Ajax , PHP, and MySQL including sites for startup companies and small businesses. I have developed a CRM named Online Management System (OMS) for an insurance company. The main functions of the CRM are capture leads from multi campaigns, make PDF quotation according to different insurance options, track leads' sale progress, a basic report function. I also have developed a platform,both frontend and backend, which is named TAP (The Advocacy Platform). TAP is a gamified marketing platform which delivers research, user generated content, and most importantly transforms consumers into true authentic Brand Advocates. Advocacy campaigns via TAP have delivered key message recall of 40-50% at 1/10th of TV media cost. Fueled by a community of over 125,000 women in the top 20 cities in China, TAP has delivered 5 million brand 'missions' since January 2012 for key clients such as Reckitt Benckiser, P&G, Kimberley Clarke, J&J, GSK, and Fonterra. My core competency lies in complete end-end management of a new website development project, and I am seeking opportunities to build websites from the ground up for you or your business.

    $25.56 /hr
    64 hours
    5.00
  4. Corey M. Bobb

    Corey M. Bobb

    Network / Security Engineer - CISSP, CCNA-SEC, CCNA

    United States - Last active: 9 days ago - Tests: 6 - Portfolio: 1

    As a Network / Systems Engineer for the past 24 years, I can help troubleshoot most network issues on WAN / LAN with almost any network device vendor, administer Windows and Linux server environments from one small business office to large enterprises with multiple locations. As a security specialist in standards like PCI-DSS, HIPAA, NIST, ISO-27001(2), I can also help recommend and provide guidance to secure all aspects of data and network integrity, by providing assessments and audits of current environments. I also have excellent trouble isolation and resolution skills from a long history of working in the field, especially system and network engineering and administration. I look forward to helping you by using these skill sets to overcome any server or network task you should post. www.cmbnetworks.net Skills CISSP, PCI-DSS Compliance, HIPAA, PII Linux Server Engineering and Administration Windows Server Engineering and Administration Cisco Router, Switches and Firewalls Firewalls - Cisco, Juniper, SonicWall, Fortigate Engineered LAMP (+Java) for high volume e-commerce platform Engineered LAMP systems for 1500 node Linux / Windows network System Tuning for system performance and data optimization Apache Optimization, Website Security, Mod-Security, PHP VMWare / VSphere engineered production supplemental servers, Production, Development and QA Systems using complex Visualization (Citrix & VMWare) System administration and system tasks, scripts and management. MySQL / MSSQL DBA PMP

    $83.33 /hr
    597 hours
    4.95
  5. Oleg S.

    Oleg S.

    Senior Automation QA / Selenium / ISTQB / Load / Performance

    Ukraine - Last active: 22 hours ago - Tests: 2 - Portfolio: 9

    I have about 7 years of QA experience. I started as a tester and now I am Senior QA. I have a big experience in automation testing using different solutions and practises(Selenium Webdriver, MS CodedUI, Telerik WebAii, CI, BDD etc). Also I've performed the development process streamlining, requirements creation, managing of human resource, test documentation development, etc. I passed successfully ISTQB Foundation level exams and received ISTQB certificate.

    $22.21 /hr
    10,200 hours
    5.00
  6. Sudhanshu R.

    Sudhanshu R.

    Security Consultant & System Admin (CEH|ECSA|CCNA|RHCE|MCSE|CISP|CISP)

    India - Last active: 22 hours ago - Tests: 11 - Portfolio: 4

    Information Security Consultant and System Admin with good Networking Skills 5 Years of experience in IT Industry and Expertise in Web security ,Linux Admin , Windows Admin, Network Security , Web Application Security , Vulnerability Assessment and Penetration Testing. I specialize in Black Box/White Box Penetration Testing,Computer Forensics,Auditing, Ethical hacking, Cloud Computing , Migration , Server installation , Server security hardening , DDOS attack , Malware removal , Ethical Hacking . # Hands-On Experience :- Vulnerability Assessment and Penetration Testing :- - OWASP 2013 top 10 Vulnerability Assessment and Mitigation - Web Application/Network/Mobile Penetration Testing - Wordpress/Joomla Security and Malware Analysis/Removal - Vulnerability Assessment of Network Devices/Databases/Web - Server/Application Server - Asp.net , PHP Security Guidelines , Scripting Attack module IDS/IPS :- - WIPS (Airtight spectragaurd enterprise , Wireless IPS ) - NIPS ( McAfee Network IPS ) - Proventia ( IBM GX4004 ) - Snort and OSSEC IDS ( Installation and monitoring Openstack ) Firewalls and Security :- - Checkpoint(R70.20/65,Fotigate600c&200B/Cyberoam/ Sonicwall/Gajshield/Kario Winroute/Riverbed - Identity Management: Security Protocols (RADIUS and TACACS+), Cisco Secure - Cisco LMS, Solarwinds, OPmanager Linux Server :- - Rackspace RackConnect, AWS SecurityGroups, dedicated firewall devices. - Rkhunter, Chkrootkits, SSHD, TCP Wrapper, fail2ban - Mitigate Mass mailing issue , DDOS scripting removal , IP Blacklisting - Experienced with setting up PCI Compliant servers. Scanning tools include dedicated - Nessus server and third-party scanner like Trustwave and ControlScan - Setup and manage firewall rules with iptables, ufw, configserver firewall (csf), DNS:- Manage DNS cluster on Cpanel DNSOnly versions. Manage zones hosted and integrated with Cpanel servers. - Manage Bind DNS service on dedicated and Cpanel servers (WHM and DNSOnly versions). Manage zones hosted at Softlayer and integrated with Cpanel servers Hosting Control Panels:- Manage multiple cPanel servers for shared hosting clients and services - Previous experiences include Plesk, zpanel, directadmin, and Webmin control panels Operating Systems:- Servers: RHEL, CentOS, Debian, Ubuntu, openSUSE, solaris Windows Server :- - Server Administration: Windows Server Administration (Server 2003/2008/2012) - Web Server Administration: Web Server Administration (IIS6/IIS7/IIS7.5/IIS8). - Database Server Administration: MS SQL Server (2005/2008/2012), MySQL database Administration. - DNS and Mail Server Administration:DNS and MS Exchange/SmarterMail/. - Visualization & Cloud :Hyper-V server administration, Managing Microsoft Private Cloud - Web Hosting Panel: WHM/cPanel, Website Panel, Plesk panel administration. - Monitoring, troubleshooting network and OS. - Backup & Restore - Server Firewall/Security, email tracing for spoofed mails. Certification :- ECSA v 8 (EC-council Certified Security Analyst) CEH v 7 (EC- Council Certified Ethical Hacker) RHCE (Red Hat Certified Security Engineer ) CISP (ISO 27001:2005 ) ISMS Implementation CCSA(Checkpoint certified security administration) – Checkpoint ID:- CP0000065597 CCNP (Cisco Certified Network Professional) - (Routing & Switching)-Route(642-902)-certified CCNA (Cisco Certified Network Associate) Cisco ID-CSCO11759679 MCSE (Microsoft Certified System Engineer)

    $25.00 /hr
    89 hours
    5.00
  7. Ammar Brohi

    Ammar Brohi

    Web Developer & Penetration Tester

    Pakistan - Last active: 22 days ago - Tests: 1 - Portfolio: 8

    Why hire me? Simple. I do more than just make your work look good. I help to craft and explore your information into a polished message, refining complex ideas down to an easy-to-follow format that your audience can understand and respond to. I then combine that message with clean and compelling visuals which further help to convey your message. My objective is simple. Build opportunities to put my extensive experience and powerful skill-set to work for your company. I have a passion for good design, in any medium, as a means to enhanced communication. This passion, coupled with dedicated professionalism, means that I consistently deliver projects which meet my clients' needs and exceed their expectations. Some highlights include: • Over 4 years of traditional Graphic Design experience. • Over 2 years of Multimedia experience - designing, programming, and producing Flash, Video, and DVD presentations, applications, and animations which have garnered multiple awards over the years • Over 4 years of Web Design and Development experience - with a preference for hand-coded HTML and CSS • Over 2 years of Web Application Security experience. OWASP Member • Certified Vulnerability Assessor, Certified Penetration Testing Engineer. Specialties Include: Web Application Security, Front End and Back End Web Developing, Video Production, Logo Designing, Desktop Applications, Mobile Apps.

    $20.00 /hr
    0 hours
    4.93
  8. Colette Chamberland

    Colette Chamberland Agency Contractor

    Website/Server Security Expert - Wordpress - Joomla - ASP/PHP

    United States - Last active: 22 hours ago - Tests: 9 - Portfolio: 5

    I am a professional website security expert and web developer. I have over 19+ years of experience in IT and over 10+ years of experience in the specialty of IT Security. I am a member of OWASP (http://www.owasp.org) Website/Server Security Services: Website/Server Malware/Virus/ backdoor Removal Hacked Website Restoration/Repair Penetration Testing Vulnerability Assessment Web Server/Site hardening For multiple platforms (such as): Azure, Windows/IIS LAMP VPS/Cloud For ANY of the following: Wordpress, Joomla, Drupal osCommerce, PrestaShop, Magento mediaWiki vBulletin, myBB, phpBB and many more. I can also work with custom built systems (PHP, Classic ASP,JavaScript, ASP.NET, plain HTML, CakePHP, etc.) and have extensive experience with MySQL, SQL Server, Access & Oracle databases. Also experienced using WHMCS, cPanel, SSH, Putty. Some of the tools I utilize for Penetration Testing and Vulnerability assessments include Kali, Burpe Suite, WPScan, JoomScan, OWASP Zed, NetSparker, Nessus, Metasploit, w3af. In addition to these tools, I also do manual testing for things such as Sql injection, Cross Site Scripting vulnerabilities, remote file uploads, etc. ( See the following link: https://www.owasp.org/index.php/Top_10_2013-Top_10) I am also a regular volunteer contributor on badwarebusters.org, a forum geared towards webmasters that have discovered malware on their website and need some assistance. https://www.badwarebusters.org/dashboard/cchamberland I also take on small development/maintenance jobs and work when I have additional time (my main focus is security). I can do: Wordpress customization/Custom Plugins Website hosting migrations Joomla upgrades/migrations Custom Classic ASP/ASP.NET MVC Custom PHP development LAMP Administration VPS/Azure configuration/set-ups & administration I also have extensive experience in optimizing high traffic wordpress sites, utilizing tools such as varnish,memcache, cloudflare, maxcdn, load balancing and troubleshooting performance issues with xDebug. I have worked with all major hosting providers and their setups, such as goDaddy, siteground, bluehost, dreamhost, rackspace, network solutions, azure, etc.

    Associated with: Scurit, LLC, IDPlex

    $60.00 /hr
    739 hours
    4.98
  9. Aty P.

    Aty P. Agency Contractor

    Linux Server Admin, Security Expert, PHP MySQL, Wordpress Expert

    India - Last active: 3 days ago - Tests: 5 - Portfolio: 41

    Hi, My name is Aty. Over the last 7 years since 2007, I have led mufti-functional teams to execute on mission-critical engagements. I did job with large design firms in my starting career for 2-3 years. I then assembled a crack commando unit of the best people I encountered. We take on assignments, right-size the solution to the problem, and then use the team approach: an architect to ensure you have a platform suitable to your needs, razor sharp analysts to document the deliverable, creative designers for graphics, and masters of code. We then put very cheap SEO and maintenance folks to ensure your rankings remain at the top, and your site runs blazing fast. Each of these people bill at different rates, so you get maximum bang for your buck. When you hire anyone at Quinji, you hire the team resources. You will not suffer if someone is not available. We have the breadth of skills and depth of resources to ensure your project is on time and on budget. I am native US English speaker and this feedback is given to me by more than 20 different clients which they found a plus point while making conversation when they are outsourcing their work for better communication and understanding. Always available on Skype for voice or text during my working hours. I completed 2600+ hours on odesk with 4.96 star feedback out of 5 up to June 2014. Hope it will boost some confidence inside my capabilities to complete your assignments successfully. Looking forward to hear from you. ********************************************* My Technical Skills are as below: ------------------------------------------------ Security Expert -> SQLi/XSS, Trojan Removal, Malware and Malicious Code Removal, Security Configuring on servers, CSF, mod_security, DDos Attack, Phishing attack, Iframe, eval and base64 signature detection, VPS and Dedicated server Management, Monitoring, cloaking, pharma hacks, shell detection, spam blocking. Penetration testing, Nessus, Nmap, Metasploit, Maldet, Blackhole Exploits detection removal and others.. -------------------------------------- Developer -> PHP/MySQL, Core CMS -> Joomla, Drupal, WordPress, CakePHP, CodeIgnitor -------------------------------------- Social Framework -> SocialEngine, Dolphin, JomSocial, Community Builder. -------------------------------------- Ecommerce ->OScommerce, Magento, Cscart, ZenCart, BigCommerce, CBSubs, Virtuemart, Woocommerce -------------------------------------- Framework -> Cakephp, Codeignitor, Zend, Symfony. Yii -------------------------------------- Java Script Framework -> JQuery, JQuery UI, Mootools -------------------------------------- SEO/SEM -> OnPage SEO optimization so Search engines crawl all the required content automatically, Article Writing and Submission, Social Bookmarking, Link Building, Press Release, Directory Submission, Social Media, Traffic Generation, Youtube, Facebook, Twitter, Digg and so on with all Ethical Methods. Latest strategy according to Panda 4.4 algo follwed while doing SEO -------------------------------------- Desktop or Laptop Fixes -> I used Remote Desktop or Team Viewer to take access to client machines to fix their machines from spywares, Malwares, viruses or Trojans installed on their machines. ******************************** Hope once we start we will be in long term business relationship.

    Groups: AWeber, BoonEx...

    Associated with: Quinji

    $30.00 /hr
    2,826 hours
    4.96
  10. Mihai-George Cornateanu

    Mihai-George Cornateanu

    Senior Linux System Engineer

    United Kingdom - Last active: 3 months ago - Tests: 12 - Portfolio: 1

    Linux System Administrator. LAMP Administrator. Security expert - Senior Ethical Hacker. PCI Compliance expert. ✔ Apache ✔ PHP ✔ MySQL ✔ DNS ✔ FTP ✔ Samba ✔ Postfix / Qmail / Sendmail ✔ DomainKey / DKIM / SPF ✔ Courier / Dovecot (IMAP/POP) ✔ SpamAssassin / ClamAV Amavis ✔ Kernel Hardening & Securing ✔ IPTables ✔ Wordpress, Joomla, PHPBB, Drupal ✔ Bash scripting

    $30.00 /hr
    186 hours
    4.85