Penetration Testing Freelancers

Browse Penetration Testing job posts for project examples or post your job on Upwork for free!

Penetration Testing Job Cost Overview

Typical total cost of Upwork Penetration Testing projects based on completed and fixed-price jobs.

Upwork Penetration Testing Jobs Completed Quarterly

On average, 15 Penetration Testing projects are completed every quarter on Upwork.

15

Time to Complete Upwork Penetration Testing Jobs

Time needed to complete a Penetration Testing project on Upwork.

Average Penetration Testing Freelancer Feedback Score

Penetration Testing Upwork freelancers typically receive a client rating of 4.44.

4.44
Last updated: July 1, 2015
More options
Clear all filters
  1. Aaron M.

    Aaron M.

    Ethical Hacker, Pentester, Developer | CISA, ITILFv3

    Panama - Last active: 3 months ago - Tests: 9

    Hello, I am an Expert Ethical Hacker with more than 8 years of experience for major Venezuelan and Panamanian companies (Banking, Insurance, Telecom, Media, Government, Energy). I look for jobs as: - Penetration tester: VA, Network Based PT, WebAPP PT, Mobile Apps PT. - Code review and hardening: PHP, Java, C#, C/C++, ... - Security Hardening / Bastion Host: I have strong skills on Linux and Windows based infrastructure. - Software Development: C/C++ QT To deliver a high quality service, I perform these tasks observing the most accepted leading methodologies and standards like ISO27001, PCI-DSS, OWASP, OSSTMM, and CISA. I help your organization to be compliant and secure keeping in mind your business goals. I also provide a better service by improving the task with my very own developments. Over the years, this was a great differentiator among competitors, that happens when common VA scanners and pentesting tools does not fit on you. My blog: http://www.unmanarc.com ******* OpenSource contributions ******** - http://repo.unmanarc.com: repo.unmanarc.com aims to provide the most secure and updated public Linux CentOS 7 repository for mantaining security related packages (Grsecurity kernel, mod_suphp, mod_bw, mod_gnutls, rssh, openvpn). My job consist on keep those packages up2date and fix any vulnerability for large scale production environments. - OpenVPN Terminal APP for Android: http://contrib.unmanarc.com/androidvpn/: My job was to deliver and package the tool. - I Bug Hunted for several open-source and commercial applications for non-profit. - PortJammer: I developed a tool oriented to prevent information gathering at the scanning phase on a hacking attempt.

    $50.00 /hr
    0 hours
    5.00
  2. Imran Zahoor

    Imran Zahoor Agency Contractor

    Web Engineer (PHP/MySql, Symfony2, CodeIgniter, Wordpress)

    Pakistan - Last active: 09/11/2014 - Tests: 4 - Portfolio: 10

    Over the last 8 years, I am in Computer Science. I have developed a wide range of web applications using HMTL, DHTML, PHP, and MySQL including sites for start-up companies to small and enterprise level businesses. I'll be interested in providing you my services in the following areas: • PHP/MySql, Symfony2, CodeIgniter, Zend Framework, Smarty, Wordpress, Java • HTML, HTML5, CSS, CSS3, JavaScript and AJAX, JQuery and Photopshop. • Object Oriented Programming, MVC Pattern and other commonly used patterns like Strategy and Singleton, Database Designing and Optimization Techniques • Web Applications Security Measures and PCI Compliance.

    Associated with: WebTechSolutions

    $20.00 /hr
    19 hours
    5.00
  3. Alexander V.

    Alexander V.

    QA engineer + ISTQB + Selenium automation

    Ukraine - Last active: 1 day ago - Tests: 1

    I was born to test. Having overall 5+ years of working experience; Expertise in automated testing; GUI, functional, configuration; requirements testing. During my carrier I created a big number of automation test suites from scratches. I played Automation Architecture role on several projects. Also I am proficient in manual testing and planning activities. I have ISTQB certificate. I really love my job :-)

    $22.22 /hr
    1,964 hours
    5.00
  4. Alfonso Valdes

    Alfonso Valdes

    Sr Linux / Amazon EC2 / Migrations / Nginx / Security / DevOps

    Mexico - Last active: 1 day ago - Tests: 4 - Portfolio: 6

    A self-motivated System and Network security administrator with more than 10 years in the management and analysis of Linux/Unix enterprise Servers (60- 70 servers). With deep and advance knowledge of highly scalable servers, Cloud Computing, High performance, Hardening Servers, Migrations, Ethical hacking, Development Operations - DevOps, Open Source services and Server optimization. Certifications such as: Certified Ethical Hacker - Red Hat Certified Engineer - Cisco CCNA. Expertise in: MIGRATIONS: AMAZON/Wordpress/Magento/LAMP/Cpanel migration plans and implementation, backup-restore and recovery plans. I have helped dozens of clients migrate their web sites and applications into the CLOUD VPC. Design and build Web Servers with HIGH PERFORMANCE (LAMP, NGINX/python, Nginx/Varnish, Nginx/php-fpm, Jboss, Apache tomcat and Varnish) - Improve and Fix performance issues, service optimization, security issues and deployments. MALWARE removal and analysis: WordPress / Magento / Joomla Malware removal and remediation, Incident handling and Forensics analysis. BOOST and optimize websites with: NGINX, Varnish, REDIS, Amazon S3, Memcached, APC, apache tunning and mysql tunning, Amazon CloudFront and more. Amazon Cloud Computing (AWS) - AMAZON EC2, amazon CDN S3, amazon RDS, amazon ELB, Amazon AutoScaling, Amazon VPC, CloudFront, Route53, etc. Also Management of multiple Control panels like Rackspace Cloud Computing, SoftLayer, GoDaddy, HostGator, dreamhost and MediaTemple. DevOps and Continuous integration: Docker + vagrant, Vagrant + Puppet, Puppet + Git, Docker + Ansible. Continuous integration with Jenkins, travisCI, distelli and more... Designing and deploying scalable & Highly available systems such as: Amazon Load Balancing (ELB), Hearbeat, HAProxy, mysql cluster, apache cluster... Network and web security such as: Vulnerability Assessments, Hardening servers, security audits, Penetration testing, Virus/Malware/Threats/Vulnerabilities countermeasures, web security, fail2ban, Tripwire-AIDE-OSSEC, mod_security, mod_evasive, Denial of Services (DDOS) countermeasures, Firewalls (iptables, CSF and apf), etc. VPS: Cpanel / WHM / Plesk / DirectAdmin / Webadmin - Migrations, management, hardening, configuration, maintenance and high level of Administration. Databases Administration such as: Mysql tweaking and tunning, MongoDB, load balancing and Mysql replication (Master & Slave) for High traffic. Database: Mysql tweaking and tunning, MongoDB, ElasticSearch, Apache Solr, Sphinx, lucene, MariaDB, Postgresql replication & Pgpool, Mysql load balancing and Mysql replication (Master & Slave) for High traffic. Networking: TCP/IP high expertise, NAT, FIREWALLS, CISCO routing and switching and Packet analysis with tcpdump and wireshark. Storage solutions and Directory management: SAMBA, NFS, FTP and sftp. LVM and RAID*. SCRIPTING: Bash and python. Proficient with MAIL Servers: postfix, sendmail and Zimbra. Source control versioning: GIT and SVN. Deploying and maintaining Monitoring systems such as: nagios, ZAbbix, cacti and Jboss Operation Network (JON). Backups solutions: amanda, rsync, Amazon backups and rsnapshot. Research & development (R & D) for any open source service and technology.

    $24.99 /hr
    8,538 hours
    4.88
  5. Nouman Rifat

    Nouman Rifat

    Expert in php, Web Security, Malware Removing, Ethical Hacking

    Pakistan - Last active: 1 day ago - Tests: 5 - Portfolio: 3

    I have 4 years experience in ethical hacking. During this time, i have secured large number of websites. I know all common types of web attacks like SQL Injection, Uploading Backdoors & Malwares and Symlink etc. I can patch all websites having any common vulnerabilities. If your website got hacked or you are afraid of getting hacked then you can feel free any time to ask me suggestions.

    Groups: Bluehost Developers and Designers, Pilot Group

    $15.00 /hr
    101 hours
    4.99
  6. Taibouni Abdel Hafid

    Taibouni Abdel Hafid

    Hacking&security , Web programmer,Web Designer , Softwar&script

    Algeria - Last active: 28 days ago - Tests: 5 - Portfolio: 3

    Over the last 5 years, I have developed a wide range of websites using HTML,CSS, PHP, and MySQL including sites for startup companies and small businesses. My core competency lies in complete end-end management of a new website development project, and I am seeking opportunities to build websites from the ground up for you or your business. Fast Developer : PHP,HTML/xHTML,CSS,MYSQL,JAVASCRIPT,AJAX -PSD to XHTML / HTML5 -Website Development with html5 & css3 for all browser Softwar & script: - PHP scripts - Python scripts (iRC Bots, web bots ,...) - Security and penetration testing - C++ and Qt lib

    $25.00 /hr
    22 hours
    4.89
  7. Sudhanshu R.

    Sudhanshu R.

    Security Consultant & System Admin (CEH|ECSA|CCNA|RHCE|MCSE|CISP|CISP)

    India - Last active: 1 day ago - Tests: 11 - Portfolio: 4

    Information Security Consultant and System Admin with good Networking Skills 5 Years of experience in IT Industry and Expertise in Web security ,Linux Admin , Windows Admin, Network Security , Web Application Security , Vulnerability Assessment and Penetration Testing. I specialize in Black Box/White Box Penetration Testing,Computer Forensics,Auditing, Ethical hacking, Cloud Computing , Migration , Server installation , Server security hardening , DDOS attack , Malware removal , Ethical Hacking . # Hands-On Experience :- Vulnerability Assessment and Penetration Testing :- - OWASP 2014 top 10 Vulnerability Assessment and Mitigation - Web Application/Network/Mobile Penetration Testing - Wordpress/Joomla Security and Malware Analysis/Removal - Vulnerability Assessment of Network Devices/Databases/Web - Server/Application Server - Asp.net , PHP Security Guidelines , Scripting Attack module IDS/IPS :- - WIPS (Airtight spectragaurd enterprise , Wireless IPS ) - NIPS ( McAfee Network IPS ) - Proventia ( IBM GX4004 ) - Snort and OSSEC IDS ( Installation and monitoring Openstack ) Firewalls and Security :- - Checkpoint(R70.20/65,Fotigate600c&200B/Cyberoam/ Sonicwall/Gajshield/Kario Winroute/Riverbed - Identity Management: Security Protocols (RADIUS and TACACS+), Cisco Secure - Cisco LMS, Solarwinds, OPmanager Linux Server :- - Rackspace RackConnect, AWS SecurityGroups, dedicated firewall devices. - Rkhunter, Chkrootkits, SSHD, TCP Wrapper, fail2ban - Mitigate Mass mailing issue , DDOS scripting removal , IP Blacklisting - Experienced with setting up PCI Compliant servers. Scanning tools include dedicated - Nessus server and third-party scanner like Trustwave and ControlScan - Setup and manage firewall rules with iptables, ufw, configserver firewall (csf), DNS:- Manage DNS cluster on Cpanel DNSOnly versions. Manage zones hosted and integrated with Cpanel servers. - Manage Bind DNS service on dedicated and Cpanel servers (WHM and DNSOnly versions). Manage zones hosted at Softlayer and integrated with Cpanel servers Hosting Control Panels:- Manage multiple cPanel servers for shared hosting clients and services - Previous experiences include Plesk, zpanel, directadmin, and Webmin control panels Operating Systems:- Servers: RHEL, CentOS, Debian, Ubuntu, openSUSE, solaris Windows Server :- - Server Administration: Windows Server Administration (Server 2003/2008/2012) - Web Server Administration: Web Server Administration (IIS6/IIS7/IIS7.5/IIS8). - Database Server Administration: MS SQL Server (2005/2008/2012), MySQL database Administration. - DNS and Mail Server Administration:DNS and MS Exchange/SmarterMail/. - Visualization & Cloud :Hyper-V server administration, Managing Microsoft Private Cloud - Web Hosting Panel: WHM/cPanel, Website Panel, Plesk panel administration. - Monitoring, troubleshooting network and OS. - Backup & Restore - Server Firewall/Security, email tracing for spoofed mails. Certification :- ECSA v 8 (EC-council Certified Security Analyst) CEH v 7 (EC- Council Certified Ethical Hacker) RHCE (Red Hat Certified Security Engineer ) CISP (ISO 27001:2005 ) ISMS Implementation CCSA(Checkpoint certified security administration) – Checkpoint ID:- CP0000065597 CCNP (Cisco Certified Network Professional) - (Routing & Switching)-Route(642-902)-certified CCNA (Cisco Certified Network Associate) Cisco ID-CSCO11759679 MCSE (Microsoft Certified System Engineer)

    $25.00 /hr
    129 hours
    4.93
  8. Daniel Harvey

    Daniel Harvey

    Security Architect/Developer/Consultant

    United States - Last active: 23 days ago - Tests: 1

    Over the past 5 years I have specialized in application security. My responsibilities have included designing secure applications, programming fixes for vulnerabilities, educating developers, developing secure development processes(SDLC), and testing applications for security vulnerabilities. I currently work for a large payment processor and have worked for other financial institutions in the past.

    $44.44 /hr
    151 hours
    5.00
  9. Tyler W.

    Tyler W.

    Network Security | Penetration Testing | Intrusion Detection Systems

    United States - Last active: 8 days ago - Tests: 2 - Portfolio: 1

    I am the primary consultant and founder of Nightside Security, an infosec firm that specializes in penetration testing, vulnerability audits, and network security monitoring with IDS/IPS frameworks like Snort and Bro. I help clients develop resilient, dynamic and scalable security solutions in order to identify, understand, and mitigate threats before they are exploited. I have been working on my own for over two years now, and I have over four years of experience within the IT security industry prior to this. I have extensive experience with server administration, website development and design, and I am proficient in Python (which allows me to write my own pentesting tools should the situation call for them). With regards to lower-level languages, I know C and I am currently teaching myself assembly. I am also skilled in system administration and server configuration, especially within the Unix ecosystem. For more information, please refer to my company website: https://nightside.sx/ or my profile on Elance: https://www.elance.com/s/tyler-w/

    $30.00 /hr
    108 hours
    4.92
  10. Alex Bubly

    Alex Bubly

    Expet penetration tester and Linux Administrator

    Russia - Last active: 2 days ago - Tests: 12 - Portfolio: 8

    Hi, My name is Alexei Bubly. In my portfolio, are a few of the projects that I've developed. I believe my strong points are my Creativeness and Punctuality. My #1 goal will always be to meet your needs and deadline. When working on a new project, I like to speak with the client, so that I can have a clear understanding of his/her needs and vision of the project. I'm honest and fair. Since 2013, I worked as a freelancer for the Department of Defense. Also did a security audit of many sites and systems. Also from 2014, I worked as a system administrator in the Russian telecommunications company MTS, then I set up the network and protect them. During all this time I kept to make websites on order Please take a look at my work history for comments from other clients. Thank you in advance for your time and consideration. I look forward to working with you soon. I have a Bachelors in Software Engineering from Moscow Tehnological Institute in Russia. Listed below are my experience and skills. — Web development: PHP, JavaScript, JQuery, HTML5, CSS3, Bootstrap3 etc; — Penetration testing: Ethical Haching, security audit, wireless security, Acunetix WVS, OWASP, Burp suite etc; — Frameworks: Eclipse RCP, JUnit, CodeIgniter. — Core web: XML, JSON, HTML/CSS, JavaScript; — IDE: Eclipse, NetBeans. — OS: Linux, Windows, Mac OS X; — VCS: Git, Mercurial, SVN; — SQL;

    $20.00 /hr
    96 hours
    5.00