You will get a professional penetration report on your web&mobile application security.
Orhan Y.
You will get a professional penetration report on your web&mobile application security.
Orhan Y.
- Delivery Time 7 days
- Application Audit
- Project Plan
- Cost Estimation
7 days
delivery —
Oct 17, 2024
Revisions may occur after this date.
Upwork Payment Protection
Fund the project upfront. Orhan gets paid once you are satisfied with the work.
Project details
OWASP test guide basics are applied in web application penetration tests. Automated tools and manual test steps are performed to determine the presence of the following vulnerabilities on the application.
Here are the list of web application Penetration Testing checklist:
• Contact Form Testing
• Proxy Server(s) Testing
• Spam Email Filter Testing
• Network Firewall Testing
• Security Vulnerability Testing
• Credential Encryption Testing
• Cookie Testing
• Testing For Open Ports
• Application Login Page Testing
• Error Message Testing
• HTTP Method(s) Testing
• Username and Password Testing
• File Scanning
• SQL Injection Testing
• X-S-S Testing
• Access Permission Testing
• User Session Testing
• Brute Force Attack Testing
• Denial of Service Attack Testing
• Directory Browsing
The licensed applications below are used in these tests.
• Burp Proxy
• Acunetix Web Application Vulnerability Engine
• Netsparker Web Application Vulnerability Engine
• Nessus Vulnerability Search
Here are the list of web application Penetration Testing checklist:
• Contact Form Testing
• Proxy Server(s) Testing
• Spam Email Filter Testing
• Network Firewall Testing
• Security Vulnerability Testing
• Credential Encryption Testing
• Cookie Testing
• Testing For Open Ports
• Application Login Page Testing
• Error Message Testing
• HTTP Method(s) Testing
• Username and Password Testing
• File Scanning
• SQL Injection Testing
• X-S-S Testing
• Access Permission Testing
• User Session Testing
• Brute Force Attack Testing
• Denial of Service Attack Testing
• Directory Browsing
The licensed applications below are used in these tests.
• Burp Proxy
• Acunetix Web Application Vulnerability Engine
• Netsparker Web Application Vulnerability Engine
• Nessus Vulnerability Search
Cybersecurity Expertise
Configuration Management, Audit, PrivacyTechnology Type
Firewall, IaaS, Computer Network, Data Center, Database, Operating System, SaaS, Web Application, CRM, Email System, ERP, Mobile DeviceCybersecurity Regulation
GDPR, ISO, PCI DSS, SOC 2What's included
Service Tiers |
Starter
$400
|
Standard
$750
|
Advanced
$1,400
|
---|---|---|---|
Delivery Time | 7 days | 12 days | 20 days |
Application Audit | |||
Project Plan | |||
Cost Estimation |
About Orhan
Penetration Tester | Application Security Expert
Istanbul, Turkey - 6:52 pm local time
I have been working as a professional cyber security consultant and a experienced penetration tester. I have extensive experience in penetration tests, Offensive & Defensive cybersecurity solutions.
In total, I have done more than 500 penetration tests in the areas of expertise I have mentioned below;
✅ Web Application Security/Testing
✅ Mobile Application Security/Testing
✅ Desktop Application Security/Testing
✅ Internal/External Network Security/Testing
✅ Cloud Infrastructure Security/Testing (AWS, Google, Azure)
✅ SaaS, PaaS, IaaS Security/Testing
✅ SCADA Network Security/Testing
✅ Distributed Denial of Service Security/Testing
✅ Social engineering (Phishing Attacks)
✅ Red Teaming
✅ Malware Analyses
✅ Traffic Analyses
✅ Source Code Review
✅ IoT Device Security/Testing
As well as my competencies on the offensive side, I also work on the defensive side. Especially, I continue to work on open source SIEM and SOC management tools.
✅ Splunk
✅ ELK (Elasticsearch, Logstash, Kibana)
✅ Sysmon, Wazuh
✅ Microsoft Windows OS Hardening
I skilled in Internal&External Network Pentesting, Web Application Security, Mobile Application Security, Web Service Security, Source Code Review, Vulnerability Management, Red Teaming. I hold Offensive Security Certified Expert (OSCE), Offensive Security Certified Professional (OSCP) certifications. Penetration tester and bug hunter. I would be pleased to assist you by using experience and knowledge.
I have the following certificates.
• Offensive Security Certified Expert | OSCE
• Offensive Security Certified Proffessional | OSCP
• Offensive Security Wireless Proffessional | OSWP
• Attack And Defence Active Directory | CRTP
• Attacking Active Directory with Linux
• AWS Certified Cloud Practitioner | AWS Cloud Practitioner
• Microsoft 365 Certified: Security Administrator Associate
• Nessus Certificate of Proficiency
• X86 Assembly Language and Shellcoding on Linux – SLAE
Kind Regards,
Orhan YILDIRIM
Steps for completing your project
After purchasing the project, send requirements so Orhan can start the project.
Delivery time starts when Orhan receives requirements from you.
Orhan works on your project following the steps below.
Revisions may occur after the delivery date.
Determining the Scope
At this step, applications to be included in the scope are requested from the customer.
The extent to which the test will be performed is determined.
In this step, the following frame of penetration tests will be performed is determined. • White Box (Recommended), • Gray Box, • Black Box