![phoenix](https://d1a29h5kxv3oc2.cloudfront.net/dist/img/phoenix.81914efc7207f6a059bd10f5d3fd5f89.png)
Application Security/Resilience Testing - Hacker Wanted
4802
£250(approx. $305)
- Posted:
- Proposals: 4
- Remote
- #98865
- Archived
Description
Experience Level: Expert
Hi,
We have a web based application which we would like someone to try to hack and take any stored data possible.
You will be let loose on a production model of our final software. We would like to assess two main things; the ability for a non account holder to access our servers and the ability for an account holder to gain access to information they should not able to. As well as any other security flaws you can identify.
The individual should display a good knowledge of web programming, have worked on security projects previously and display an out of the box thought pattern towards breaking into our system. We think we have covered all the bases, prove us wrong!
We would require a small report detailing approaches you had taken and any security floors and also any recommendations you would make.
The job needs to start as soon as the production model is available this can be anything from a week to 3 weeks so a degree of flexibility in start dates would be great for us. The job would need to be completed within 5 days of receiving the production model.
The application is built in PHP, uses MySQL databases and is hosted on a elastic virtual machine. The application takes login details over an SSL connection and the form to capture these details is served via JS.
If you have any other questions please feel free to ask.
Boring Legal Bits
Due to the secure nature of this project, to keep us both safe we may ask for ID and proof of address or LTD details and trading address if a registered firm. We will also ask for a NDA to be signed.
We have a web based application which we would like someone to try to hack and take any stored data possible.
You will be let loose on a production model of our final software. We would like to assess two main things; the ability for a non account holder to access our servers and the ability for an account holder to gain access to information they should not able to. As well as any other security flaws you can identify.
The individual should display a good knowledge of web programming, have worked on security projects previously and display an out of the box thought pattern towards breaking into our system. We think we have covered all the bases, prove us wrong!
We would require a small report detailing approaches you had taken and any security floors and also any recommendations you would make.
The job needs to start as soon as the production model is available this can be anything from a week to 3 weeks so a degree of flexibility in start dates would be great for us. The job would need to be completed within 5 days of receiving the production model.
The application is built in PHP, uses MySQL databases and is hosted on a elastic virtual machine. The application takes login details over an SSL connection and the form to capture these details is served via JS.
If you have any other questions please feel free to ask.
Boring Legal Bits
Due to the secure nature of this project, to keep us both safe we may ask for ID and proof of address or LTD details and trading address if a registered firm. We will also ask for a NDA to be signed.
![Mitch @.](https://dw3i9sxi97owk.cloudfront.net/uploads/thumbs/172978_150x150.jpg)
Mitch @.
0% (0)Projects Completed
1
Freelancers worked with
1
Projects awarded
25%
Last project
21 Oct 2011
United Kingdom
New Proposal
Login to your account and send a proposal now to get this project.
Log inClarification Board Ask a Question
-
There are no clarification messages.
We collect cookies to enable the proper functioning and security of our website, and to enhance your experience. By clicking on 'Accept All Cookies', you consent to the use of these cookies. You can change your 'Cookies Settings' at any time. For more information, please read ourCookie Policy
Cookie Settings
Accept All Cookies