Browse categories
Explore
Fiverr Pro
English
$
USD
I will do web penetration testing and vulnerability assessment
About this Gig
Is your website truly secure? Every second, a new cyber attack happens, and malicious hackers are looking for their next target. Don't wait until it's too late!
I am Tanvir, a passionate Cybersecurity Researcher and Penetration Tester. I will perform a deep security audit of your web application to identify critical vulnerabilities before attackers can exploit them.
What I will test for (Vulnerabilities):
- SQL Injection (SQLi) & Cross-Site Scripting (XSS)
- Broken Access Control & IDOR
- Sensitive Data Exposure & API Leakage
- Insecure Direct Object Reference
- OWASP Top 10 Risks
- SSL/TLS Misconfigurations
My Technical Arsenal (Tools I use):
- Burp Suite Professional (Manual Deep Dive)
- Nuclei (Fast Automated Scan)
- Katana & Waymore (Advanced Crawling)
- SQLmap & Dalfox (Exploitation Testing)
What you will get in the delivery:
- Comprehensive PDF Report: Categorized by severity (Critical, High, Medium, Low).
- Proof of Concept (PoC): Step-by-step evidence of the vulnerabilities found.
- Remediation Steps: Clear instructions for your developers on how to fix the bugs.
Why Choose Me?
- 100% Manual and Automated Hybrid Testing.
- Professional Ethical Standards.
- Confidentiality and Data Protection Guaranteed.
Device:
Desktop
•
Laptop
•
Server
•
Mobile
•
Tablet
Operating system:
Windows
•
Linux
•
IOS
•
Android
•
Ubuntu
My Portfolio
FAQ
What information do you need from me to start the work?
To start, I need the website URL or IP address, the scope of testing, and a written "Letter of Authorization" (LOA) to ensure the test is legal.
Will I receive a professional report after the security audit?
Yes, absolutely. You will receive a detailed PDF report containing the identified vulnerabilities, their severity (OWASP standards), proof-of-concept (PoC), and clear remediation steps for your developers.
Do you fix the identified bugs yourself?
As a penetration tester, my role is to identify and report security flaws. I do not fix them directly, but I provide comprehensive guidance and steps so that your development team can easily fix them.
