Phoenix - Your AI AssistantPentester / Cyber security expert required
- Posted:
- Proposals: 15
- Remote
- #3907516
- Expired
Rawalpindi 
Description
Experience Level: Entry
Experienced Pentester with current OSCP qualification for virtual front end Pentests. Also to advise us on continuing WAS options.
We build and administer surveys. We have two main applications for the different types of surveys. Every client has a unique sub-domain, but they are all accessing the identical application. Each User has a unique access code. In the first instance you will be provided with 5 access URLS.
We are looking to work with someone both short and longer term. In the first instance we are only concerned with access via the User interfaces to the apps. Eventually we want to commission fully blown white/grey box pen testing of the complete system.
All systems are LAMP based and on AWS servers in the UK. Front ends are a complete mix of frameworks including Perl, PHP, JS Angular and HTML among others.
The pentests will be on live sites, so planning and caution is required
What we need from you ...
Confirmation of availability
Confirmation of qualifications: OSCP, OSWE, CISSP etc
Confirmation of level of fluency in English (mother tongue preferred)
Scoping framework document - Evidence of scoping, planning and project management
Confirmation of all tools that will be used: Nmap, OpenVAS, Wireshark, Metasploit, Nipper, Hashcat, Cain and Abel, Burp Suite etc
Statement of how you intend to address this project.
Any questions, please feel free to ask.
To prove that you have read this all the way through and understood it please start your reply with the word BLACKPOOL. I will not reply to any message without this.
Thanks for your interest and I look forward to hearing from you
Chris
We build and administer surveys. We have two main applications for the different types of surveys. Every client has a unique sub-domain, but they are all accessing the identical application. Each User has a unique access code. In the first instance you will be provided with 5 access URLS.
We are looking to work with someone both short and longer term. In the first instance we are only concerned with access via the User interfaces to the apps. Eventually we want to commission fully blown white/grey box pen testing of the complete system.
All systems are LAMP based and on AWS servers in the UK. Front ends are a complete mix of frameworks including Perl, PHP, JS Angular and HTML among others.
The pentests will be on live sites, so planning and caution is required
What we need from you ...
Confirmation of availability
Confirmation of qualifications: OSCP, OSWE, CISSP etc
Confirmation of level of fluency in English (mother tongue preferred)
Scoping framework document - Evidence of scoping, planning and project management
Confirmation of all tools that will be used: Nmap, OpenVAS, Wireshark, Metasploit, Nipper, Hashcat, Cain and Abel, Burp Suite etc
Statement of how you intend to address this project.
Any questions, please feel free to ask.
To prove that you have read this all the way through and understood it please start your reply with the word BLACKPOOL. I will not reply to any message without this.
Thanks for your interest and I look forward to hearing from you
Chris
New Proposal
Login to your account and send a proposal now to get this project.
Log inClarification Board Ask a Question
-
There are no clarification messages.