Penetration Testing Freelancers

Browse Penetration Testing job posts for project examples or post your job on Upwork for free!

Penetration Testing Job Cost Overview

Typical total cost of Upwork Penetration Testing projects based on completed and fixed-price jobs.

Upwork Penetration Testing Jobs Completed Quarterly

On average, 14 Penetration Testing projects are completed every quarter on Upwork.

14

Time to Complete Upwork Penetration Testing Jobs

Time needed to complete a Penetration Testing project on Upwork.

Average Penetration Testing Freelancer Feedback Score

Penetration Testing Upwork freelancers typically receive a client rating of 4.41.

4.41
Last updated: May 1, 2015
More options
Clear all filters
  1. Bhaumik S.

    Bhaumik S.

    Ethical Hacker, Risk Assessment, Penetration Testing

    India - Last active: 2 days ago - Tests: 3 - Portfolio: 7

    Information Security Consultant with 5+ years of professional experience in Information Security consulting, Enterprise Risk Assessments across industries such as Banking & Finance, BPO, Manufacturing, Telecom, FMCG and Information Technology. I have successfully delivered audit and consulting projects to the satisfaction of clients across US, and Asia-Pacific regions. ITGC: Change management, Data privacy, Configuration audit, Network security, Logical access and authorization audit etc Security Architecture Review: ISO 27K Web Application Security: Cezic, Burp Proxy, IBM App Scan, Acunetix, Sqlmap, HP Web Inspect Web Service Security: SOAP UI Penetration Testing: Nmap, Metasploit Framework, Nessus, Backtrack 5 etc. Mobile Penetration Testing: iOS, Android Standards: OWASP, SANS, NIST Programming languages: - Java, J2EE, C, C++, XML, PHP Web Technologies: - Spring, JSP, Servlet, Ibatis, Hibernate,Swing , JSF, ASP.NET, Web Services, CSS, HTML, jQuery, Joomla, Wordpress Internet Technologies: - JavaScript, GWT, AJAX, HTML, XHTML, JSP, SmartGWT, NSIS Databases: - SQL Server, MySQL, Oracle, DB2 Applications Servers: - Apache, jBoss, IIS, Tomcat Project Management: - Maven, JIRA

    $17.78 /hr
    342 hours
    4.86
  2. Saadat R.

    Saadat R.

    QA Expert - Security & Penetration Testing Specialist

    Pakistan - Last active: 1 day ago - Tests: 3 - Portfolio: 5

    SKILL SUMMARY ABOUT ME Being an Independent Software Quality Assurance & Testing personnel and full time freelancer, I have delivered testing analysis, design, and execution, reporting, fixes and follow-up services to my offshore clients all over the world particularly in USA, Canada, UK, France, Europe, Middle East, Russia, Japan, Australia etc. My specialties are ¤ MSc in COMPUTER SCIENCES with Specialization in Software Quality Assurance ¤ More than 11 years of hands on QA, QC, Manual & Automated Testing experience ¤ Vast experience in Automation Testing using Selenium Webdriver, MS CodedUI, LoadRunner, TestNG, Telerik WebAii etc solutions ¤ Extensive experience in Web, Desktop & Mobile Application Testing ¤ Extensive experience in Agile/Scrum/Kanban/Lean methodologies ¤ Extensive Experience of Security & Penetration Testing (Ethical Hacking) ¤ Great experience of Leading the QA Team, Writing test plan, Test Cases using requirement specifications, user stories, and system understanding ¤ 100% flexible, can work in any time zone 1 – REQUIREMENT ANALYSIS & UNDERSTANDING 2 - COMMUNICATIONS 3 – TEST PLANNING & DOCUMENTATION 4 – TESTS DESIGN 5 – QA DOCUMENTATION 6 – TEST EXECUTION I have performed extensive Manual & Automated testing for a wide range of almost all kind of Mobile, Web, RIA, Desktop Apps. I have always organized deliverables in a complete, clear, of good quality, and in timely manner. I perform different combinations of following testing types: 7 – TESTING TYPES ¤ Functional, Integration, System ¤ SOA, Web Services, 3rd Party API ¤ Boundary Value Analysis, Destructive, Structural ¤ GUI, UX, Usability, Accessibility ¤ Cross Browser, OS/ Platform/ Device ¤ Regression, Sanity, UAT, Exploratory ¤ Cookie, Session, User Authentication ¤ Security & Penetration for Mobile & Web apps ¤ Database, Multilingual ¤ Performance, Load, Stress ¤ BlackBox, GrayBox, WhiteBox ¤ Installation, Configuration, Software & Hardware Compatibility 8 – DATABASE SKILLS ¤ Sound expertise of Databases i.e. MySQL, MS SQL Server, ORACLE, PostgreSQL, MS Access, SQL, and related technologies ¤ Reviewed DB Schemas for improvements ¤ Performed Data Verification & Validation, Data Mapping, Feed Scheduling of DB Apps using SQL Scripts ¤ Involved in Performance Testing, Query Optimization, counting # of Data Reads on the pages ¤ Used SQL queries to evaluate and validate loaded/ imported data from external sources 9 – DEFECT REPORTING & ANALYSIS ¤ Defect Reporting with thorough Details & Reproduction Steps along with Screenshots, Screen-casts/ Videos, Images, Scripts etc. ¤ Defect Analysis based on Test Metrics ¤ Defect Summaries with Module-wise Metrics ¤ Status Reports, Quality Metric Reports, SQA Analysis Report 10 – FIXES AND FOLLOW-UPS ¤ Tested critical Bug Fixes and coordinated with developers ¤ Engaged in Release Setup/ Notes/ Support/ Follow-Up and testing the Release Delivering Process ¤ Coordinated with clients upon New Fixes and Change Requests 11 – QA AUDITS ¤ Reviewed Business Requirements, FS, and CRS Documents ¤ Design, Code Review, Project Plan, Design, Training Audits ¤ Verification & Validation Audits ¤ Review for QA artifacts like Test & Validation Plans, Test Cases and Data Validation SQL scripts

    $15.00 /hr
    406 hours
    0.00
  3. Michael John S Marcos

    Michael John S Marcos Agency Contractor

    Digital Forensics, IT Security,Penetration Testing,Ethical Hacker

    Philippines - Last active: 1 month ago - Tests: 9 - Portfolio: 2

    Mico graduated in De La Salle University – Manila where he took up Bachelor of Science in Computer Science with specialization in Network Engineering. He started his career in Digital Forensics in Sycip Gorres Velayo and Co (SGV), an affiliate of Ernst and Young, the Philippine’s No. 1 professional services firm. He is one of the pioneer associates that established the Forensic Technology and Discovery Services in the Philippines for SGV. His experience in forensic examination includes investigating procurement fraud, corporate espionage, conflict of interest, skimming and lapping schemes, inventory and cash theft, FCPA violations, child pornography and etc. Now, Mico heads the Digital Investigation Services of Pacific Strategies and Assessments Inc. (PSA) Manila Office catering mostly cybercrimes, cyberwarfare and white-collar crimes. He’s also providing litigation support to clients and is a “qualified” expert witness in court cases in the Philippines primarily to cases that PSA has been engaged. Mico's other technical interests includes computer programming, penetration testing, network and database design. He also likes to write technical articles and reviews about technology. He is interested to accept consultation work, conduct online trainings and write articles as part-time work here in oDesk. Here's a sample magazine his article was published: http://eforensicsmag.com/eforensics-mobile-22012/ Mico is also invited as resource speaker in some IT conventions and seminars Here is a press conference where Mico is invited: http://www.interaksyon.com/infotech/sophisticated-cyber-attack-uncovered-vs-mining-firm-in-the-philippines

    Groups: salesforce.com

    Associated with: Marcos Solutions Inc.

    $13.89 /hr
    269 hours
    4.69
  4. Hakimuddin G.

    Hakimuddin G.

    Penetration Tester | Ethical Hacker | SQL Injection | XSS Tester

    Kuwait - Last active: 1 day ago - Tests: 9 - Portfolio: 17

    IT Security Consultant providing Consistent, Timely, and Cost-Effective IT Security Services. "h.gheewala@owasp.org" ### Professional Security Services ### # Web Application/SaaS Security Testing and Defense (sql injection, cross site scripting) # Penetration Testing & Ethical Hacking # Vulnerability Assessment & Network Auditing # Implementation and auditing of various security compliance(ISO 27001, NIST, PCI-DSS) # Protection of hacked websites and servers, cloud security. # Security Testing Mobile Apps, Chrome Apps, Salesforce AppExchange Business Apps , RESTful Applications and APIs # Security Awareness - On Demand Phishing for Organizations. ### Value Added Services ### # Debrief with the client at the conclusion of each engagement. # Research and provide recommendations for continuous improvement. # Knowledge sharing. ### Certifications ### CISM,CISSP,Certified Ethical Hacker, ISO27001, Security+ ### Hands on Experience ### Web applications :- Wordpress, Joomla, Drupal, Network :- Cisco, Linksys, Netgear, TP-Link, E-Commerce Security - OScommerce, prestashop, Magento Forums - MyBB, phpBB cPanel, WHMCS Linux, Windows, Ubuntu, CentOS etc. ### Tools ### Manual SQL Injection Testing, Business Logic vulnerability testing, Kali Linux, Burp Suite, Metasploit Pro

    $24.00 /hr
    1,473 hours
    4.99
  5. Zhu WenQi

    Zhu WenQi

    PHP Mysql Javascript Developer, Penetration Tester,Shanghai China

    China - Last active: 7 days ago - Tests: 9 - Portfolio: 4

    Over the last 7 years, I have developed a wide range of websites using HMTL, Ajax , PHP, and MySQL including sites for startup companies and small businesses. I have developed a CRM named Online Management System (OMS) for an insurance company. The main functions of the CRM are capture leads from multi campaigns, make PDF quotation according to different insurance options, track leads' sale progress, a basic report function. I also have developed a platform,both frontend and backend, which is named TAP (The Advocacy Platform). TAP is a gamified marketing platform which delivers research, user generated content, and most importantly transforms consumers into true authentic Brand Advocates. Advocacy campaigns via TAP have delivered key message recall of 40-50% at 1/10th of TV media cost. Fueled by a community of over 125,000 women in the top 20 cities in China, TAP has delivered 5 million brand 'missions' since January 2012 for key clients such as Reckitt Benckiser, P&G, Kimberley Clarke, J&J, GSK, and Fonterra. My core competency lies in complete end-end management of a new website development project, and I am seeking opportunities to build websites from the ground up for you or your business.

    $25.56 /hr
    64 hours
    5.00
  6. Corey M. Bobb

    Corey M. Bobb

    Network / Security Engineer - CISSP, CCNA-SEC, CCNA

    United States - Last active: 3 days ago - Tests: 6 - Portfolio: 1

    As a Network / Systems Engineer for the past 24 years, I can help troubleshoot most network issues on WAN / LAN with almost any network device vendor, administer Windows and Linux server environments from one small business office to large enterprises with multiple locations. As a security specialist in standards like PCI-DSS, HIPAA, NIST, ISO-27001(2), I can also help recommend and provide guidance to secure all aspects of data and network integrity, by providing assessments and audits of current environments. I also have excellent trouble isolation and resolution skills from a long history of working in the field, especially system and network engineering and administration. I look forward to helping you by using these skill sets to overcome any server or network task you should post. www.cmbnetworks.net Skills CISSP, PCI-DSS Compliance, HIPAA, PII Linux Server Engineering and Administration Windows Server Engineering and Administration Cisco Router, Switches and Firewalls Firewalls - Cisco, Juniper, SonicWall, Fortigate Engineered LAMP (+Java) for high volume e-commerce platform Engineered LAMP systems for 1500 node Linux / Windows network System Tuning for system performance and data optimization Apache Optimization, Website Security, Mod-Security, PHP VMWare / VSphere engineered production supplemental servers, Production, Development and QA Systems using complex Visualization (Citrix & VMWare) System administration and system tasks, scripts and management. MySQL / MSSQL DBA PMP

    $83.33 /hr
    596 hours
    4.95
  7. Sudhanshu R.

    Sudhanshu R.

    Information Security Consultant (CEH | Security | Penetration Testor )

    India - Last active: 1 day ago - Tests: 5

    I am Information Security Consultant Looking for an Challenging Assignment. Having 5 experience in IT Security Domain , Having Good Hands-ON Experience . Expertise in Web security , Network Security , Web Application Security , Vulnerability Assessment and Penetration Testing. Creating Security Policies for Clients and Company , Audit against the Policies. I specialize in Black Box/White Box Penetration Testing,Computer Forensics,Code Auditing, Ethical hacking, Cloud Computing Skills supporting for this Expertise having Certification :- ECSA v 8 , CEH v 7 and CISP (ISO 27001:2005 ) , Cyber Forensics (CHFI ) Hands- On Experience :- --------IPS/IDS--------- - McAfee NIPS ( Analyses Attack and Policy management ) - IBM Proventia IPS ( Policy Management and New Rules Creation and Attack mitigation ) - Airtight Spectragaurd WIPS ( Wireless Security , Implementation and Perform UAT ) -------- Vulnerability Assessment and Penetration Testing--------- - OWASP 2013 top 10 Vulnerability Assessment and Mitigation - Web Application/Network/Mobile Penetration Testing - Wordpress/Joomla Security and Malware Analysis/Removal - Vulnerability Assessment of Network Devices/Databases/Web - Server/Application Server ----------Web Application Security Testing Hands-On ------------------------ Web applications :- Wordpress, Joomla, Drupal, E-Commerce Security - OScommerce, prestashop, Magento Forums - cPanel, WHMCS Linux, Windows, Ubuntu, CentOS Asp.net , PHP Security Guidelines , Scripting Attack module ------------------------System Admin-------------------------------------- Good hands on experience as an System Admin , Skills include Server Administration: Windows Server Administration (Server 2003/2008/2012) Web Server Administration: Web Server Administration (IIS6/IIS7/IIS7.5/IIS8). Database Server Administration: MS SQL Server (2005/2008/2012), MySQL database Administration. DNS and Mail Server Administration:DNS and MS Exchange/SmarterMail/. Virtualization & Cloud :Hyper-V server administration, Managing Microsoft Private Cloud Web Hosting Panel: WHM/cPanel, Website Panel, Plesk panel administration. - Monitoring, troubleshooting network and OS. - Backup & Restore - Server Firewall/Security, email tracing for spoofed mails.

    $22.00 /hr
    23 hours
    5.00
  8. Oleg S.

    Oleg S.

    Senior Automation QA / Selenium / ISTQB / Load / Performance

    Ukraine - Last active: 5 days ago - Tests: 2 - Portfolio: 9

    I have about 7 years of QA experience. I started as a tester and now I am Senior QA. I have a big experience in automation testing using different solutions and practises(Selenium Webdriver, MS CodedUI, Telerik WebAii, CI, BDD etc). Also I've performed the development process streamlining, requirements creation, managing of human resource, test documentation development, etc. I passed successfully ISTQB Foundation level exams and received ISTQB certificate.

    $22.21 /hr
    10,200 hours
    5.00
  9. Steven Stovall

    Steven Stovall

    DevOps, Cloud (AWS/Google), Security. Development: Rails/Python/PHP

    United States - Last active: 1 month ago - Tests: 2

    I enjoy solving challenging problems and utilizing technology to creatively design efficient, cost-effective solutions to meet business needs. Current Certifications: CISSP, CCNP, Net+/Sec+, MCP Cloud (AWS/Rackspace), Linux, Windows, VMware HA/vMotion/vCenter Open Source Software: Apache, nginx, Redis, elasticsearch, Zabbix, Logstash Information Security Auditing, Configuration, Policy Networking: Visio Diagrams, IPSEC/SSL VPNs, OSPF/EIGRP/BGP, Adaptive Security Appliances (ASAs), Wireless Controllers, F5 LTM, WiFi (RF Design) Information Security: Visio Diagrams (architecture), PCI DSS compliance, Splunk (syslog) Vulnerability Audit and Penetration Testing: Metasploit, Nexpose, Nessus, Vulnerability Reporting, Patch Management Development: Ruby/Rails, Git, Python, PHP, Perl, PowerShell, Bash, .NET

    $75.00 /hr
    21 hours
    5.00