Penetration Testing Freelancers

Browse Penetration Testing job posts for project examples or post your job on Upwork for free!

Penetration Testing Job Cost Overview

Typical total cost of Upwork Penetration Testing projects based on completed and fixed-price jobs.

Upwork Penetration Testing Jobs Completed Quarterly

On average, 14 Penetration Testing projects are completed every quarter on Upwork.


Time to Complete Upwork Penetration Testing Jobs

Time needed to complete a Penetration Testing project on Upwork.

Average Penetration Testing Freelancer Feedback Score

Penetration Testing Upwork freelancers typically receive a client rating of 4.41.

Last updated: May 1, 2015
More options
Clear all filters
  1. Saadat R.

    Saadat R.

    QA Expert - Security & Penetration Testing Specialist

    Pakistan - Last active: 15 days ago - Tests: 3 - Portfolio: 25

    SKILL SUMMARY ABOUT ME Being an Independent Software Quality Assurance & Testing personnel and full time freelancer, I have delivered testing analysis, design, and execution, reporting, fixes and follow-up services to my offshore clients all over the world particularly in USA, Canada, UK, France, Europe, Middle East, Russia, Japan, Australia etc. My specialties are ¤ MSc in COMPUTER SCIENCES with Specialization in Software Quality Assurance ¤ More than 11 years of hands on QA, QC, Manual & Automated Testing experience ¤ Vast experience in Automation Testing using Selenium Webdriver, MS CodedUI, LoadRunner, TestNG, Telerik WebAii etc solutions ¤ Extensive experience in Web, Desktop & Mobile Application Testing ¤ Extensive experience in Agile/Scrum/Kanban/Lean methodologies ¤ Extensive Experience of Security & Penetration Testing (Ethical Hacking) ¤ Great experience of Leading the QA Team, Writing test plan, Test Cases using requirement specifications, user stories, and system understanding ¤ 100% flexible, can work in any time zone 1 – REQUIREMENT ANALYSIS & UNDERSTANDING 2 - COMMUNICATIONS 3 – TEST PLANNING & DOCUMENTATION 4 – TESTS DESIGN 5 – QA DOCUMENTATION 6 – TEST EXECUTION I have performed extensive Manual & Automated testing for a wide range of almost all kind of Mobile, Web, RIA, Desktop Apps. I have always organized deliverables in a complete, clear, of good quality, and in timely manner. I perform different combinations of following testing types: 7 – TESTING TYPES ¤ Functional, Integration, System ¤ SOA, Web Services, 3rd Party API ¤ Boundary Value Analysis, Destructive, Structural ¤ GUI, UX, Usability, Accessibility ¤ Cross Browser, OS/ Platform/ Device ¤ Regression, Sanity, UAT, Exploratory ¤ Cookie, Session, User Authentication ¤ Security & Penetration for Mobile & Web apps ¤ Database, Multilingual ¤ Performance, Load, Stress ¤ BlackBox, GrayBox, WhiteBox ¤ Installation, Configuration, Software & Hardware Compatibility 8 – DATABASE SKILLS ¤ Sound expertise of Databases i.e. MySQL, MS SQL Server, ORACLE, PostgreSQL, MS Access, SQL, and related technologies ¤ Reviewed DB Schemas for improvements ¤ Performed Data Verification & Validation, Data Mapping, Feed Scheduling of DB Apps using SQL Scripts ¤ Involved in Performance Testing, Query Optimization, counting # of Data Reads on the pages ¤ Used SQL queries to evaluate and validate loaded/ imported data from external sources 9 – DEFECT REPORTING & ANALYSIS ¤ Defect Reporting with thorough Details & Reproduction Steps along with Screenshots, Screen-casts/ Videos, Images, Scripts etc. ¤ Defect Analysis based on Test Metrics ¤ Defect Summaries with Module-wise Metrics ¤ Status Reports, Quality Metric Reports, SQA Analysis Report 10 – FIXES AND FOLLOW-UPS ¤ Tested critical Bug Fixes and coordinated with developers ¤ Engaged in Release Setup/ Notes/ Support/ Follow-Up and testing the Release Delivering Process ¤ Coordinated with clients upon New Fixes and Change Requests 11 – QA AUDITS ¤ Reviewed Business Requirements, FS, and CRS Documents ¤ Design, Code Review, Project Plan, Design, Training Audits ¤ Verification & Validation Audits ¤ Review for QA artifacts like Test & Validation Plans, Test Cases and Data Validation SQL scripts

    $15.00 /hr
    414 hours
  2. Amit Choudhari

    Amit Choudhari

    Security Testing, Penetration Testing

    India - Last active: 08/30/2014 - Tests: 3 - Portfolio: 3

    I am a certified security tester with 2 years experience in Penetration testing. I have tested and maintained the websites of many official organizations. I can find the vulnerabilities in websites or applications and fix them so that they can't be exploited by hackers. I have the knowledge of latest security testing tools Main Projects worked upon : - Provided security solutions to University ERP System - Currently working with an Australian Bank as a consultant for security. I have also developed LINUX shell utilities and Python Networking scripts. Other skills: Android App Developer, JAVA, TCP/IP

    $50.00 /hr
    0 hours
  3. William Caput

    William Caput

    Information Security / Penetration Testing

    United States - Last active: 11/21/2013 - Tests: 1 - Portfolio: 2

    Work as a technical adviser in area of information technology with a concentration on network security and risk. Security Related Experience: • Attack and Penetration • Network Security • Wireless Network Infrastructure Security • Social Engineering and Physical Security Assessments • Web Application Security Assessments • Application Security Project Development • Switch and Router Configuration: Cisco all models • Security Training Department of Defense Top Secret clearance (inactive) Public Trust (inactive) Specialties: Designed security strategy for integrating security into the development process. Developed processes to decrease time to remediate security vulnerabilities. Implemented several development strategies to increase code quality. Advised upper management on the impact of vulnerabilities identified internally and externally. Penetration testing specializing in internet, intranet, wireless, social engineering, incident response, VOiP, VMWare, mobile, and web applications.

    $66.67 /hr
    0 hours
  4. Jonathan Stockton

    Jonathan Stockton

    Web Application Development/Penetration Testing

    United States - Last active: 10/13/2014 - Tests: 1 - Portfolio: 1

    I am currently a QA test engineer at Shoregroup where I started as an intern in March and was made a full-time employee in June, however I have no college degrees or certifications. Over the next year or two I plan on getting my Zend PHP certification, CCNA, and a CPTE certification. Further down the road I would like to open up my own penetration testing business (and am currently enrolled in OCC for a business degree to help me with the business side of things). Prior to my previous job, I have no on-the-books job experience, but as far as personal experience goes, I have taught myself PHP, HTML, CSS, and some JavaScript and am currently building an open source framework (SimpleSite - ). The way it works is being heavily influenced by experience in two other frameworks - Yii and Twig. In the past 8 years that I've been working with computers, starting at 11 years old, I have dabbled in ASM (with x86 processor), C, C++, some Java (although I don't like it), Python, and Perl. I am skilled with linux system administration (as I've installed and set up multiple servers at home) including using bash (and a few distributions including Debian, Ubuntu, Slackware, and Arch Linux), intermediate windows system administration, and basic networking. The various servers/daemons that I have used include: snmpd, OpenSSH, MySQL, Apache2, and lighttpd As far as security experience goes, my main area of expertise is in web application security which I have been learning about before I started learning about programming (around age 11). I have used multiple versions of the security-oriented linux distribution BackTrack (as it progressed I got a newer one) starting from 3. The main security tools other I've used include: nmap, ettercap, Wireshark, firefox addons (User-Agent switcher and Tamper Data), nessus, metasploit, aircrack, john the ripper, burp, and w3af. I am also skilled with, and actually prefer, manually exploiting web application vulnerabilities including Local/Remote File Inclusion, Cross-Site Scripting, Cross-Site Request Forgery, Authentication Bypass, and SQL injection. Other general linux tools I have used include tcpdump, ufw, ifconfig, nslookup, netcat, iptables, package managers (apt-get, yum), sed, awk, and grep.

    $25.00 /hr
    0 hours
  5. Ashraf Alharbi

    Ashraf Alharbi

    Penetration testing and Training services

    New Zealand - Last active: 02/27/2014 - Tests: 1

    * Have 6 years’ conducting security penetration testing (Ethical hacking) and risk assessment. * Infrastructure and web application expert penetration tester. * Advance in discovering sophisticated vulnerabilities. * Advance in Metasploit, Nessus, Nexpose, Burp Suite (as a proxy and scanner). Also, I’m familiar with different programming languages such as Python, Java, C#, Ruby, Visual Basic, PHP and many different CMSs. *Have different certificates and trainings: - CEH (certified ethical hacking) - Ethical hacking from infosec institute - OSCP (Offensive Security Certified Professional) - eWPT (Web application Penetration tester) - ISO 27001 Lead implementer-ISMS Protect what matters by applying offensive penetration testing to your infrastructure and applications and also see if your response team detects the attack.

    $55.56 /hr
    0 hours
  6. Tyler W.

    Tyler W.

    Network Security | Penetration Testing | Intrusion Detection Systems

    United States - Last active: 1 month ago - Tests: 2 - Portfolio: 1

    I am the primary consultant and founder of Nightside Security, an infosec firm that specializes in penetration testing, vulnerability audits, and network security monitoring with IDS/IPS frameworks like Snort and Bro. I help clients develop resilient, dynamic and scalable security solutions in order to identify, understand, and mitigate threats before they are exploited. I have been working on my own for over two years now, and I have over four years of experience within the IT security industry prior to this. I have extensive experience with server administration, website development and design, and I am proficient in Python (which allows me to write my own pentesting tools should the situation call for them). With regards to lower-level languages, I know C and I am currently teaching myself assembly. I am also skilled in system administration and server configuration, especially within the Unix ecosystem. For more information, please refer to my company website: or my profile on Elance:

    $30.00 /hr
    0 hours
  7. Ilya D.

    Ilya D.

    System Administraror, Penetration Testing, Security Consultant

    Russia - Last active: 07/13/2014

    I've more than 5 years of experience in server administration highload projects and solve common problems. My main skills are in systems administration Linux (Ubuntu/Debian/CentOS), Oracle Solaris as well as Penetration testing (Kali Linux, Web (SQLi, XSS etc), Social engineering) Installation and configuring, backup organization and rescue, data transfer from one server to another, troubleshooting, shell scripting are in my competencies. Mail Server Settings (Exchange, postfix+Dovecot), Databases (MySQL, PostgreSQL, MS SQL) Active Directory (MS AD, SAMBA+LDAP), Shared-Hosting (nginx/apache, php-fpm) Using virtualization (VMware ESXi, MS Hyper-V, KVM) Server monitoring (zabbix) I'll be happy to answer all your questions during and after the project, and I'll keep working with you until the job is done completely to your satisfaction I use skype or mail for communication and i am available about 15 hours a day to update you.

    $22.22 /hr
    0 hours
  8. Shad Malloy

    Shad Malloy

    Information Security Professionals focused on Penetration Testing.

    United States - Last active: 01/30/2014 - Tests: 2

    I am one of the managing partners and founders of Secure Network Management. , Secure Network Management LLC is an information security company founded in 2012 by professional penetration testers. I specialize in network, wireless, and web application penetration testing and providing accurate and actionable reports to clients. Analysis of each vulnerability is done based on the unique criteria of the client. We are experienced in HIPAA/HITECH, PCI-DSS, FIPS-199, and SOX. My background includes penetration testing for government, payroll processing, commercial, internet and medical facilities. I currently hold CISSP, CEH, ECSA, and Security+ along with other more specialized training.

    $38.89 /hr
    0 hours