Browse categories
Explore
Fiverr Pro
English
$
USD
I will audit your web app for security vulnerabilities
About this Gig
A vulnerability scanner is not an audit. It flags known CVEs in your dependencies. It does not read your auth flow, test password reset logic, or check whether a URL parameter exposes another company's data.
I find the things scanners miss.
Recent findings: a password reset function that didn't expire old links 5,000 accounts exposed. Broken access control that let a user read another company's billing data by editing a URL parameter.
Every audit delivers a written findings report with severity ratings (CRITICAL/HIGH/MEDIUM/LOW), exact file and line for each issue, and a specific fix. No vague recommendations.
BASIC Entry Scan $499: Your 5 most critical endpoints reviewed in one round. Authentication, password reset, session handling, file upload, primary API surface. Written report. 72-hour turnaround.
STANDARD $1,499: Ten rounds, one category each. Each round on its own branch with a pull request. Final deliverables: AUDIT_REPORT.md and MANUAL.md. Tagged release per round.
PREMIUM $2,500: Everything in Standard plus a formal PDF report, executive summary, and a site badge.
Message me with your language, framework, and a brief description of your app. I confirm scope within 24hrs.
Development technology:
Python
My Portfolio
FAQ
Do I need to share my source code?
For the Entry Scan, no — I work from your live endpoints. For Standard and Premium, yes. I create a private GitHub repo, add you as a collaborator, and all work happens there.
What languages and frameworks do you support?
Python (Flask/Django), JavaScript (Node, Express, Next.js), Ruby on Rails, Laravel, and Go. Message me if you're on something else, I'll tell you straight if I can cover it
What if I don't use GitHub?
Entry Scan has no repo requirement. For Standard and Premium, GitHub is the delivery mechanism, tagged releases are how you download each round without needing git knowledge.
Is this a one-time service or ongoing?
One-time per engagement. After delivery, you own everything. If you want a re-audit after making changes, that's a new order at a discounted rate. Message me first.
