Application Security/Resilience Testing - Hacker Wanted

  • Posted:
  • Proposals: 4
  • Remote
  • #98865
  • Archived
Bob T.Geoff A.Peter M.John C. have already sent a proposal.
  • 3

Description

Experience Level: Expert
Hi,

We have a web based application which we would like someone to try to hack and take any stored data possible.

You will be let loose on a production model of our final software. We would like to assess two main things; the ability for a non account holder to access our servers and the ability for an account holder to gain access to information they should not able to. As well as any other security flaws you can identify.

The individual should display a good knowledge of web programming, have worked on security projects previously and display an out of the box thought pattern towards breaking into our system. We think we have covered all the bases, prove us wrong!

We would require a small report detailing approaches you had taken and any security floors and also any recommendations you would make.

The job needs to start as soon as the production model is available this can be anything from a week to 3 weeks so a degree of flexibility in start dates would be great for us. The job would need to be completed within 5 days of receiving the production model.

The application is built in PHP, uses MySQL databases and is hosted on a elastic virtual machine. The application takes login details over an SSL connection and the form to capture these details is served via JS.

If you have any other questions please feel free to ask.

Boring Legal Bits
Due to the secure nature of this project, to keep us both safe we may ask for ID and proof of address or LTD details and trading address if a registered firm. We will also ask for a NDA to be signed.

New Proposal

Create an account now and send a proposal now to get this project.

Sign up

Clarification Board Ask a Question

    There are no clarification messages.