You will get emergency Cloudflare DDoS, bot, and API attack mitigation
Top Rated

Project details
I help stabilize websites and applications under DDoS or bot attack using Cloudflare, WAF/rate-limit tuning, server hardening, and live traffic analysis. Whether you need a quick exposure review or active mitigation, I focus on blocking malicious traffic while keeping real users online. You get practical changes, clear communication, and hand-off notes so the environment stays safer after delivery.
Cybersecurity Expertise
Configuration Management, Cyber Threat Intelligence, Risk AssessmentTechnology Type
Firewall, IaaS, Computer Network, Web ApplicationCompany Size
Small Company SizeWhat's included
| Service Tiers |
Starter
$500
|
Standard
$900
|
Advanced
$1,500
|
|---|---|---|---|
| Delivery Time | 3 days | 7 days | 14 days |
Cybersecurity Monitoring | - | ||
Malware Removal | - | - | - |
Security Analysis | |||
Security Patch Installation | - | - |
Frequently asked questions
192 reviews
(187)
(5)
(0)
(0)
(0)
This project doesn't have any reviews.
MC
Marcello C.
Jul 3, 2026
DevOps recurring contract
Vedran was a great help. Always available at any time to solve critical issues and precise in his daily tasks. 100% suggested for his technical knowledge on Cloudflare and AWS services.
MG
Melissa G.
Jul 3, 2026
Cloudflare directory migration
BF
Brenton F.
May 27, 2026
Cloudflare Specialist Needed to Fix Facebook Crawler Blocking on WordPress Site
ZG
Zlatko G.
May 26, 2026
Migration Wordpress
Vedran did a great job with our WordPress migration. Everything was handled smoothly and professionally, with no downtime or issues. Communication was excellent throughout the project. Highly recommended!
OZ
Otto Z.
May 25, 2026
Reinstall OS in EC2 on AWS
About Vedran
Cloudflare DDoS/Bots/Workers & AWS Linux Expert | Emergency Response
100%
Job Success
Velika Gorica, Croatia - 6:41 am local time
Numbers first, promises second:
● $700K+ earned on Upwork, 280+ jobs, 11,900+ hours, 100% Job Success, Top Rated Plus
● Mitigated a targeted DDoS of 40M+ requests while the site stayed up for real customers
● Found and cleaned a WordPress compromise that had been quietly running for 17 months (miner + spam relay) — then hardened the stack so it can't return
● Cut a client's AWS bill by ~$500/month with one storage-lifecycle fix
● My biggest contracts run for years, not weeks: clients who hired me for an emergency and kept me for $20K–45K of ongoing infrastructure work
● Average response time: 0–4 hours
▸ EMERGENCY TROUBLESHOOTING — AWS/Linux, NGINX, PHP/MySQL, DNS, SSL, cPanel/Plesk. I diagnose across the full chain, stabilize live systems without breaking revenue paths, and explain the root cause in plain language.
▸ MALWARE REMOVAL & HACKED SITE RECOVERY — WordPress, Magento, and Linux server cleanup: webshells, backdoors, crypto miners, spam relays, SEO spam, redirect hacks. I find how they got in, remove everything (not just the visible files), fix the entry point, restore email/Google blacklist reputation, and harden so reinfection doesn't happen.
▸ CLOUDFLARE SECURITY & TRAFFIC ABUSE — WAF, DDoS mitigation, bot protection, rate limiting, Workers, Zero Trust. Scraping, carding, fake signups, login/cart/checkout abuse, API abuse. Cloudflare's defaults stop yesterday's attacks; I write the rules that stop yours.
▸ ECOMMERCE PROTECTION & CLEAN ANALYTICS — Shopify, Magento/OpenMage, WooCommerce. Bots inflating your sessions, wrecking your conversion rate, and feeding bad signals to Meta/Google? I block them at the edge — before they click your ads and pollute your pixels — and migrate analytics to Cloudflare Zaraz for clean attribution.
▸ AWS & DEVOPS — Architecture, EC2, VPC, CloudFront, RDS, ECS/Docker, migrations with zero downtime, monitoring, cost optimization, hardening.
▸ AI-ERA INFRASTRUCTURE — Deploying and securing AI workloads (agent/MCP servers, VPS automation) and defending production systems against AI-driven scraping and automated abuse.
HOW I WORK: capped diagnostic first → root cause in plain language → fix with your approval → hardening so it doesn't happen again. I sign NDAs, ask only for the access I need, and document what changed.
If production is on fire right now, send me the symptoms and URLs — I likely start today.
Steps for completing your project
After purchasing the project, send requirements so Vedran can start the project.
Delivery time starts when Vedran receives requirements from you.
Vedran works on your project following the steps below.
Revisions may occur after the delivery date.
Ddos mitigation