Browse Penetration Testing job posts for project examples or post your job on Upwork for free!

Penetration Testing Job Cost Overview

Typical total cost of Upwork Penetration Testing projects based on completed and fixed-price jobs.

Upwork Penetration Testing Jobs Completed Quarterly

On average, 15 Penetration Testing projects are completed every quarter on Upwork.

15

Time to Complete Upwork Penetration Testing Jobs

Time needed to complete a Penetration Testing project on Upwork.

Average Penetration Testing Freelancer Feedback Score

Penetration Testing Upwork freelancers typically receive a client rating of 4.35.

4.35
Last updated: July 1, 2015
Clear all filters
  1. Razvan Muscalu

    Razvan Muscalu

    Information Technology and Security Expert

    Romania - Last active: 4 months ago - Tests: 8

    I enjoy investigating a multitude of subjects, for example when I was 14 I started to learn PHP, three weeks after I was programming an internal chat system for a casino in Holland. Afterwards, small web-related projects followed; when I was 16-17 I was hired as a company administrator in the fields of IT Security, Computers and Network administration/installation, CCTV surveillance, PBX administration and Access Control. At 18, I've started to research the field of reverse software engineering and subsequently developed web-crawlers/spiders as well as playing around with various programming languages. Soon after, I have found interest in the field of Ethical Hacking and developed applications regarding protocols such as POP3, SMTP, FTP and I have also conducted research on how the aforementioned protocols can be correlated in order to subdue RDP-enabled servers. To cut the story short, I have a diverse interest which spans a multitude of IT related fields.

    $13.00 /hr
    0 hours
    5.00
  2. Oleg Boytsev

    Oleg Boytsev

    Information Security Engineer/Malware Analyst/Reverse Engineer

    Belarus - Last active: 11 days ago - Tests: 1 - Portfolio: 1

    5 years of experience in IT Security field. Highly motivated to solve interesting tasks. Core Qualifications and abilities: High skills in *nix systems administration and information security; Computer network attack/defense; Deep experience in web application security testing (according to OWASP guideline); Strong background in malware analysis and reverse engineering; Responsive, organization skills and the ability to work with minimal supervision; Ability to learn and apply new technologies effectively. Technical skills: Standards/Practices: OWASP standards, ISO 17799 Operating Systems: Windows, Linux, FreeBSD; Networking: TCP/IP, LANs, VPNs, Firewalls; Software: Ollydbg, IDA Pro, GDB, Nmap, Metasploit framework, Burp Suite, Sqlmap, Wireshark, Tcpdump. Programming languages: x86 Assembly, Python Network & System Security: implementing different kinds of tools for network (ModSecurity) and system security Vulnerability Assessments: have a strong background in web application security testing, buffer overflows, format string vulnerabilities Malware Analysis: familiar with tools and techniques that allow to analyse and describe an evil sample according to the best practices. Unpacking, disassembling, binary Debugging/patching, dynamic (behavior) analysis. Reverse Engineering: familiar with Ollydbg, IDA Pro and GDB. System administration: LAMP, DNS, iptables, etc.., know how to solve a vast majority of issues.

    $35.00 /hr
    0 hours
    0.00
  3. Mariusz Z.

    Mariusz Z.

    Penetration Tester, Linux/UNIX Security Admin,Intrusion Analyst, CISSP

    Poland - Last active: 3 months ago - Tests: 9 - Portfolio: 1

    I'm Linux Security Administrator & Web Application Penetration Tester with 8 years of experience in the IT field. I'm CISSP (ID# 478556) and OWASP member. My expertise ranges from designing, building secure & robust systems to analysis of subtle software security flaws. I can help you with: - thoroughly security testing your web application (black-box and/or white-box tests) and helping in mitigating detected vulnerabilities - analyzing and assessing vulnerabilities in your application's underlying IT infrastructure - security hardening Linux/UNIX servers/clusters - recommending solutions and best practices on how to design and maintain secure AWS infrastructures - responding to security incident in Linux/UNIX environment, helping in recovery process (rootkit detection, malware removal, etc.)

    $19.00 /hr
    123 hours
    4.79
  4. Mikhail Urbanovich

    Mikhail Urbanovich

    QA, Performance testing

    Belarus - Last active: 2 days ago - Tests: 1

    Expert in Performance testing using LoadRunner, JMeter, Visual Studio, SilkPerformer. Good understanding of software performance issues. Experience working in Windows and UNIX Environment. Analyze the CPU Utilization, Memory usage, Garbage Collection and DB connections to verify the performance of the applications. Good knowledge in developing of performance test model. Huge experience in functional testing of standalone, web-based and mobile apps. Testing of localization and internationalization. Deep knowledge in penetration testing of bank’s environment and complex server-side applications. Ability to take part in multiple complex technical projects and coordinate with technical and non-technical teams. Develop of test documentation(Test cases, Acceptance sheets, Quality reports). Superior analytical and technical skills. Excellent communication skills.

    $27.78 /hr
    0 hours
    0.00
  5. Maxim Tsoy

    Maxim Tsoy

    Experienced Python Developer and Security Researcher

    Russia - Last active: 5 months ago - Tests: 7 - Portfolio: 2

    1. Python development: Rich experience in distributed Python applications and web applications development using Django, Pyramid, and Celery. Released several mobile Python applications (kivy). 2. Security Assessment: I have a huge experience in vulnerability research and security assessment (currently this is my main occupation). Reached the top in many hacking contests, including DEF CON CTF. I usually specialize in web application security, however, I am experienced in network, database, cryptography and other security areas. Disclosed security advisories for many vendors including: - Cisco - Citrix - Yandex (Entered Bug Bounty Hall of Fame) - SAP - Qiwi 3. Game Development: Have an experience in game design and development using Game Maker Studio.

    $22.22 /hr
    249 hours
    0.00
  6. Dragan D.

    Dragan D.

    Drupal Developer,Security Researcher,PHP Developer

    Serbia - Last active: 5 months ago - Tests: 7 - Portfolio: 1

    During the years of productive work I performed work for customers from USA, Canada, Netherlands, Russia, Australia. Both sides enjoyed cooperation. Over the last 7 years, I have developed a wide range of websites using HMTL, PHP, MySQL. I also have some experience in the following areas: Ajax, OOP and software design and testing.

    $16.67 /hr
    0 hours
    0.00
  7. Aleksandre Vardanidze

    Aleksandre Vardanidze

    --admin systems|database|network|security

    Georgia - Last active: 2 months ago - Tests: 2

    --Admin systems Extensive experience with the configuration, hardening, and maintenance of various Linux distributions, including: * Red Hat Enterprise Linux, Fedora, CentOS * Debian, Ubuntu * OpenSuse Able to set up vital Linux infrastructure components including load balancers, DNS servers, proxy, web/application servers, and mail servers. Familiar with os-level security policies as well as server-level security layers like SELinux. --Admin database Skilled in MySQL database administration for standalone servers as well as replicated and clustered environments. I have also worked with postgsql --Admin Network I've been working as a network administrator for 5 years. For now I'm working in a governmental agency as a network administrator and network security specialist. Have experience with almost every cisco and hp network devices, also I design governmental network and our agency network design. I'm certified ccna,ccnp and ccna sec. had trainings in ccnp sec, ccdp, gsec, CEH,ENSA and Microsoft products (server 2003/8, exchange server and etc) Monitoring and diagnosing faults of VPN connections with other organization, Data Exchange Agency IPS/IDS system and sensor setup, operation. Security concept, design, documentation and implementation. --Admin other Here is the incomplete list of technologies and solutions I have used over my 5 years of experience. -Zabbix, Zenoss, Nagios, Munin and Cacti for monitoring purpose  -Configuration management - Puppet, SpaceWalk, Katello  -Web servers - Apache, Ngnix, Lighttpd  -Load Balancing with Haproxy and Barracuda Load Balancer  -Virtualization - Vmware ESXi --Computer Skills, Trainings and Certification Windows; Windows Server (2003/2008/2012); MS Office; Linux; MacOS ; Network Monitoring Tools; Certified Ethical Hacking ( CEH ) - Self-study Course Security Certified Network Specialist - Self-study Course EC-Council Network Security Administrator - Self-study Course Metasploit Framework Expert - Self-study Course CompTIA Security - Self-study Course HISTORY * SpeedLine - Aug 2010 to May 2012 - Linux Engineer, System Administrator * DATA EXCHANGE AGANCY - Jun 2012 to May 2014 -CERT SPECIALIST * Unipay - Jun 2014 to Present -Linux Enginner, Network Administrator

    $20.00 /hr
    0 hours
    0.00
  8. Tushar K.

    Tushar K.

    Development and Testing

    India - Last active: 3 days ago - Tests: 2 - Portfolio: 9

    5+ years of extensive experience in Manual and Automated testing of Client/Server, N-tier Distributed Architecture, Web-based, Mobile and Desktop Applications with focus on System Analysis, Verification and Validation. As a Quality Assurance and Principal Quality Control Consultant, over the years I have tested a wide range of web based, client-server, windows-based and multimedia applications, mobile applications. - Expertise in Manual and Automation Testing on Web based and Software applications. - Efficient in Smoke Testing, Black-box-testing, Regression-testing, Functional-testing, Usability-testing, Database-testing, User acceptance-testing,Load Testing,Security Testing, Cross-browser Testing - Checking compliance with requirements, finding defects, logging and tracking them, performing validations of fixes and regressions, logging enhancements, creating documents/tools to improve the testing processes - Expertise in all stages in testing SDLC (i.e,Scheduling, Test design which includes test case design, test execution, testreporting by using test summary report then analysis of the found defects). - Expert in Security Testing of web applications to test Web Security Vulnerabilities. - Well dressed with the MySQL to do back-end testing of web applications. Hands on experience of Test Planning with effective skills of Test Case development along with Scenario Matrix. - Tools: QTP, Selenium(Open sources), Mantis So, you will have all necessary information to make your application the most stable, functional and user-friendly.

    $11.11 /hr
    457 hours
    4.94
  9. Zhu WenQi

    Zhu WenQi

    PHP Mysql Javascript Developer, Penetration Tester,Shanghai China

    China - Last active: 1 month ago - Tests: 9 - Portfolio: 4

    Over the last 7 years, I have developed a wide range of websites using HMTL, Ajax , PHP, and MySQL including sites for startup companies and small businesses. I have developed a CRM named Online Management System (OMS) for an insurance company. The main functions of the CRM are capture leads from multi campaigns, make PDF quotation according to different insurance options, track leads' sale progress, a basic report function. I also have developed a platform,both frontend and backend, which is named TAP (The Advocacy Platform). TAP is a gamified marketing platform which delivers research, user generated content, and most importantly transforms consumers into true authentic Brand Advocates. Advocacy campaigns via TAP have delivered key message recall of 40-50% at 1/10th of TV media cost. Fueled by a community of over 125,000 women in the top 20 cities in China, TAP has delivered 5 million brand 'missions' since January 2012 for key clients such as Reckitt Benckiser, P&G, Kimberley Clarke, J&J, GSK, and Fonterra. My core competency lies in complete end-end management of a new website development project, and I am seeking opportunities to build websites from the ground up for you or your business.

    $25.56 /hr
    64 hours
    5.00
  10. Zia Rehman

    Zia Rehman

    Expert Software QA & Test Engineer

    Pakistan - Last active: 7 days ago - Tests: 5 - Portfolio: 3

    **Functional Testing, Cross-Browser Testing, Usability Testing, Accessibility Testing, Regression Testing**** Over the last 3 years, I have experienced in Software testing using Automated tools like QTP,Cenzic(Application Security) and Manual pen Test. I also have experience with bug tracking tools e.g ReadMine, Mantis, Pivotal Tracker, Fogbugz. My core competency lies in complete and end-to-end testing of software projects and products, and I am seeking opportunities for Software testing for your software projects and products. I also have experience in the following areas: PHP, JavaScript, Ajax, OOP, and software design and development. This will definitaly help me to test the software more than just black box testing. Testing and Bug Tracking Tools: 1- QTP 2- ReadMine 3- Fogbugz 4- Mantis 5- Pivotal Tracker I am using following process for software testing. 1- Estimation of the project 2- Write Test Scenarios 3- Write Test Cases 4- Execution of Test Cases 5- Create defect Report 6- Review defect report and sent to Client Testing levels used: 1- Black box (functional, cosmetic and GUI based issues) 2- Grey Box (verify database as well) 3- Business Logic (sometimes need to verify log files if necessary) Documentation (Documents prepared): 1- TestScenarios 2- TestCases 3- DefectReport Regarding why should you hire me I just want to say that I am: *Responsible *Good Communication skills *Good in Manual Penetration Testing *Document every things from Test Plan to Release Notes *Experienced QA and Test Engineer

    $5.56 /hr
    373 hours
    5.00