Find Jobs
Hire Freelancers

Wordpress based website - needs to be tested for vulnarabilities

$30-250 USD

Cancelled
Posted over 4 years ago

$30-250 USD

Paid on delivery
I have a website which has gone live and behind a firewall (both network firewall and web application firewall) I will share the link of the website with the selected bidder This website has been developed using wordpress I want a penetration tester to list out the security vulnerabilities that are due to the wordpress and other website development work i.e. html, css, js files (and not the vulnerabilities due to apache web server, CentOS operating system, etc. such as the ability to list directories, etc.) I want to find out the vulnerabilities that could be addressed by the developers of the website. Wordpress related issues and other html, js, css, images, related issues, etc. (I do not want the vulnerabilities that must be handled by the system administrator of the web server who would improve the configuration of the Apache web server, etc.)
Project ID: 21370142

About the project

21 proposals
Remote project
Active 4 yrs ago

Looking to make some money?

Benefits of bidding on Freelancer

Set your budget and timeframe
Get paid for your work
Outline your proposal
It's free to sign up and bid on jobs
21 freelancers are bidding on average $141 USD for this job
User Avatar
Hi there! May Peace Be Upon You !! I am a Certified Ethical Hacker and Pen Tester. I just love hacking and breaking the rules, but don’t get me wrong as I said I am an ethical hacker. @Certified at Windows Security & Forensics @Certified at Ethical Hacking @Certified at WEB APP SECURITY FUNDAMENTALS @Certified at Website Hacking / Penetration Testing Main Skills: Penetration Testing, Web Application Security. Social Engineering, Red team assessment, Ethical Hacking & Countermeasures, Malware Analysis My core competency lies in performing black and gray box testing, on the live web applications/networks or in lab environments.I am familiar with all common attack vectors and mitigation techniques, as well as finding unknown to public exploits known as 0days in web applications. Even though most of my work is confidential I can share vulnerability assessment sample. I have experience in vulnerability assessment for PCI & HIPAA Compliance. Service Description 1)Web Application Penetration Testing based on OWASP TOP 10 2)Network Penetration Testing 3)Vulnerability Assessment 4)Security Hardening See you online and have a great day! Warm regards, Shofiur
$250 USD in 7 days
4.8 (37 reviews)
6.5
6.5
User Avatar
Linux System Administrator and RHEL Certified Engineer, Security Specialist, Offensive Security Certified Professional. Skills: 1. Administrating Linux Based Servers 2. Penetration Testing 3. Securing and configuring Webservers and Databases 4. Nginx, Apache and Varnish set-up and optimization 5. Installing Server and Client side software/Add-ons 6. Bash (Unix Shell) Coder 7. Managing Control panels based server (cPanel, Plesk,,,etc)
$200 USD in 3 days
4.9 (34 reviews)
5.6
5.6
User Avatar
Have 5+ years of experience in both black box and white box testing penetration testing. Perform VAPT(Vulnerability and penetration testing) services like Web-Application penetration testing; System Application penetration testing; Mobile application penetration testing; Network application penetration testing; social engineering penetration testing etc. Conduct penetration testing in a systematic approach. Follow the standard methodology of the industry like OWASP Testing Guide v4(OTGv4) ; SANS top 25; NIST SP 800-115; PCI DSS to perform penetration testing so that client can concentrate on their professions without worrying about security threats. Web Application Testing: Do web application penetration testing with the latest methodology like OWASP Top-10, SANS Top-25. Perform both manual and automated penetration testing for vulnerabilities like Injection flaws(such as SQL, NoSQL, OS, and LDAP injection etc),Broken Authentication, Sensitive Data Exposure,XML External Entities (XXE), Broken Access Control,Security Misconfiguration, Cross-site scripting(XSS), Insecure Deserialization, Using Components with Known Vulnerabilities,Insufficient Logging & Monitoring. Also perform source code reviews for many technologies like java, .NET, PHP etc. Approach for Manual Web-Application Penetration Testing: Conduct manual testing with following controls: Configuration and Deployment Management Testing Identity Management Testing Authentication Testing Authorization Testing Session
$277 USD in 5 days
5.0 (9 reviews)
4.4
4.4
User Avatar
I work as a junior web penetration tester. VAPT is my field. I do use automatic tools such as nessus,burp acunetix but the manual penetration is the most important part. I usually do black box testing and some grey box testing but code review sounds great to me as well Regarding my previous work i can not share this here, we have to talk in private. At the end of security audit i will present the report to you/your company and we can even set up a skype call if you want. The structure of the report will be discussed in private so i can better understand what are you interessed in. Thank you and for more details feel free to contact me.
$60 USD in 7 days
5.0 (9 reviews)
3.9
3.9
User Avatar
Hello, I read your description and I'll do your work faster and professionally with in your time frame. Can you please share your website link to test and check everything properly and make test and clear your website. looking forward to hearing from you Thank you, Michael
$250 USD in 3 days
5.0 (2 reviews)
3.7
3.7
User Avatar
Hi There, I hope you are well. I checked the post you need WordPress developer. I am Web developers and designers having great expertise in building Websites and customizations. I have also experience in wordpress plugin, theme, API creation and customization. If you'd like to see our work, Please check our Portfolio - https://www.freelancer.com/u/smilemittal181?w=f I assure you: •High-quality Work, •100% guarantee, •Delivery on your satisfaction, Please message me so we can discuss more. I am waiting for your quick response. Regards, I am placing a placeholder bid as the amount field is compulsory to submit this bid.
$60 USD in 3 days
5.0 (5 reviews)
3.5
3.5
User Avatar
It is my understanding that you are looking for an information security professional who can perform deep pentest/black box penetration test on your web application. Being an Information security professional I will perform deep security test to secure your website for further attacks and let you know how you can secure your website efficiently. I am a cyber security professional having over 7+ years of experience in Information Security, Vulnerability Management, Penetration Testing, Security Operation Center (SOC), Investigations, web application testing, Audits & Trainings. My skillset includes: Threat and Vulnerability Assessment, Penetration Testing, Web Application Pentesting and Mobile Applications. My first priority is always start from manual testing then on Automated Web Penetration Testing: Burp-Suite, Nexpose, W3af, OpenVas, Nessus, Metasploit, Armitage etc. Looking forward to hear back from you for detailed discussion over your requirement.  Thanks !
$199 USD in 7 days
5.0 (1 review)
3.5
3.5
User Avatar
I'm an OSCP Certified Pentester having Knowledge in Penetration testing and Ethical Hacking. With a Background of 3+ Years in Cyber Security and Ethical hacking. I have also performed Penetration tests for several clients. Mostly I have tested Web Applications and Servers. I can Work and Perform Tests on The Following:- Network testing both Wired and Wireless . System/Server Testing including all Operating Systems such as Windows and Linux. Web App Testing including CMS Software such as Wordpress, Drupal and Joomla. I can help you with your requirements. regards Rahul
$120 USD in 4 days
4.8 (4 reviews)
3.6
3.6
User Avatar
Hello. I am a n ethical hacker with over 8+ years experience in Cyber Security. I would like to help in such as i have a clean and a clear understanding of the above mentioned attacks as i work on both defensive and defensive pen testing mechanisms. I feel i ma the right person for the task as i can deliver within the stated time frame. I would also produce a high quality and detailed report at the end of the phase. Please consider
$100 USD in 1 day
5.0 (1 review)
1.6
1.6
User Avatar
Hi there, I'm a security researcher, and I do a couple of security job on the side. I'm happy to give you a vulnerability report on your WordPress if you want to. Let me know if you interested, Kind regards Julien
$166 USD in 3 days
5.0 (1 review)
1.4
1.4
User Avatar
Dear Hiring Manager, I am Redhat Certified Engineer. I have 8 years of experience as a Linux System Administrator. I posses good knowledge of mail server like zimbra, sendmail, web server like Apache, shell scripting, Virtualization like Citrix Xen server, kvm, vmware. I have also done Tally 6.3 Certification. Knowledge of installing and hosting the PHP based application. Knowledge of installation of SSL of Apache and Tomcat. I have knowledge of mysql and oracle database as well. Knowledge of security compliance rule DISA STIGs, PCI-DSS. Knowledge of devops tools like docker, vagrant, jenkins, github etc. Knowlege of Amazon AWS cloud services,windows 2003, 2008, 2012. I have completed the "AWS Solution architect -Associate" training program. Able to create VPC, public-private subnet, route table, Internet gateway, network acl, instance Migration, updation. I have deployed node.js application over SAAS based platform heroku and have done dockerization of node.js app. Cross compilation of source code over Linux for various OS and architecture. Installation of middleman over ubuntu 18.04 Worked on AWS lightsail service to increase the VM size. Tally ERP9 Implementation in SAAS based cloud to let the user access their account from any location. Installation and configuration of pfsense firewall. Thanks
$88 USD in 2 days
5.0 (1 review)
0.6
0.6
User Avatar
Hi, I have a 7 year experinces in wordpress developer and so many build website PHP, Mysql, CSS, plugin customization, speedup, etc. I believe that in a short time I will be able to manage my job well. I'm a WordPress developer with extensive experience in building high quality sites. My experience ranges from building responsive mobile sites that work well cross-browser to building scalable sites for the IT services industry. It's important to me to build long term relationships with clients, so I'm primarily looking for long term projects *For Now, I am placing a placeholder bid as the amount field is compulsory to submit this bid. Thanks & Regards, Sachin k
$60 USD in 7 days
0.0 (0 reviews)
0.0
0.0
User Avatar
My testcase base on OWASP. We can exchange details about the project as well as the progress made via skype or telegram
$140 USD in 7 days
0.0 (0 reviews)
0.0
0.0
User Avatar
I am an ethical hacker, website penetration Tester, since past 8 months. Relevant Skills and Experience I have worked with plenty of WordPress websites more than 20+ for a company, I can pentest your website for , vulnerabilities
$50 USD in 3 days
0.0 (0 reviews)
0.0
0.0
User Avatar
I have read the JD and am really excited to pen test the wordpress application. I have the required understanding of the Wordpress framework and architecture therefore i can provide assistance from a security point of view. Looking forward to working with you.
$50 USD in 3 days
0.0 (0 reviews)
0.0
0.0
User Avatar
Hi, I am Certified Ethical Hacker with working knowledge of WordPress and different Linux servers. I can perform the required testing of your WordPress Web Application along with resolving your servers and firewall issues to make it penetration free website. Beside performing penetration testing of the web applications, I have designed various WordPress website to ensure you my understanding with penetration testing, CentOS, firewall and WordPress. Let's have a discussion about your work. You can be free to award the project after our discussion.
$100 USD in 2 days
0.0 (0 reviews)
0.0
0.0
User Avatar
Greetings, i am oscp certified ethical hacker and security consultant i have my own cyber security company named as vulpix cyber security pvt ltd. we have highly skilled inhouse security analyst team for penetration of web application mobile application. we will also give you the security audit certificate
$166 USD in 6 days
0.0 (0 reviews)
0.0
0.0

About the client

Flag of SRI LANKA
Colombo, Sri Lanka
0.0
0
Payment method verified
Member since Sep 20, 2019

Client Verification

Thanks! We’ve emailed you a link to claim your free credit.
Something went wrong while sending your email. Please try again.
Registered Users Total Jobs Posted
Freelancer ® is a registered Trademark of Freelancer Technology Pty Limited (ACN 142 189 759)
Copyright © 2024 Freelancer Technology Pty Limited (ACN 142 189 759)
Loading preview
Permission granted for Geolocation.
Your login session has expired and you have been logged out. Please log in again.