Security Researcher
- or -
Post a project like this£25/hr(approx. $31/hr)
- Posted:
- Proposals: 1
- Remote
- #60752
- Expired
Description
Experience Level: Expert
Our company is interested in working with experienced security researchers on a project to project basis or even long term hiring if the skills are adequate.
The candidate is required to identify a security flaw in one of the following software:
- Microsoft Internet Explorer (should work on 6, 7 or 8)
- Microsoft Outlook (should work on 2003, 2007 and/or latest)
- Microsoft Word (should work on all release major and including Word 2000 til latest beta)
- Microsoft Exchange and Microsoft Servers
A skilled security programmer is required to find a security vulnerability in one of this software by using the desidered technique (fuzzing for example).
The vulnerability must be exploitable.
The vulnerability must be exploited, meaning that it should be possible to execute (by subverting the application logic) code by exploiting the vulnerability.
The vulnerability must not be already known.
The exploit demostration should download a file from the net via http and write it in c:\\demostration.file .
The exploit should work on the latest release of the vulnerable application with all the latest vendor\'s patches applied.
Communication of the results must be provided trough encrypted .zip file with password agreed by phone (SMS).
The exploit should be written in c, c++ or with the Metasploit framework.
Please DO NOT provide public exploit and/or public vulnerability already know in the security community and/or by the software vendor.
NOTICE on the USAGE:
We are a security company working in security verification and penetration testing consultancy and those tools are used in fully legal activity authorized by customers. Security testing require the usage of tools capable of leaveraging the security sensibility trough results.
The candidate is required to identify a security flaw in one of the following software:
- Microsoft Internet Explorer (should work on 6, 7 or 8)
- Microsoft Outlook (should work on 2003, 2007 and/or latest)
- Microsoft Word (should work on all release major and including Word 2000 til latest beta)
- Microsoft Exchange and Microsoft Servers
A skilled security programmer is required to find a security vulnerability in one of this software by using the desidered technique (fuzzing for example).
The vulnerability must be exploitable.
The vulnerability must be exploited, meaning that it should be possible to execute (by subverting the application logic) code by exploiting the vulnerability.
The vulnerability must not be already known.
The exploit demostration should download a file from the net via http and write it in c:\\demostration.file .
The exploit should work on the latest release of the vulnerable application with all the latest vendor\'s patches applied.
Communication of the results must be provided trough encrypted .zip file with password agreed by phone (SMS).
The exploit should be written in c, c++ or with the Metasploit framework.
Please DO NOT provide public exploit and/or public vulnerability already know in the security community and/or by the software vendor.
NOTICE on the USAGE:
We are a security company working in security verification and penetration testing consultancy and those tools are used in fully legal activity authorized by customers. Security testing require the usage of tools capable of leaveraging the security sensibility trough results.
Julian B.
0% (0)Projects Completed
-
Freelancers worked with
-
Projects awarded
0%
Last project
5 May 2024
United States
New Proposal
Login to your account and send a proposal now to get this project.
Log inClarification Board Ask a Question
-
There are no clarification messages.
We collect cookies to enable the proper functioning and security of our website, and to enhance your experience. By clicking on 'Accept All Cookies', you consent to the use of these cookies. You can change your 'Cookies Settings' at any time. For more information, please read ourCookie Policy
Cookie Settings
Accept All Cookies