I will review your web application code for security vulnerabilities


About this gig
Your web app is only as secure as its weakest endpoint.
I am an independent security researcher who reviews web application source code for the flaws that lead to breaches: broken access control and IDOR, SQL and command injection, stored and reflected XSS, authentication and session bypass, SSRF, and business logic errors that scanners never catch.
What you get:
- A manual review of your routes, controllers, auth, and data access, mapped to the OWASP Top 10
- - Every issue rated by severity, with the exact file, line, and how it is exploited
- - A working proof of concept for real issues, not scanner false positives
- - Concrete, framework specific fixes your team can apply right away
- - A re review after you apply fixes (Standard and Premium)
Stacks: Node and Express, NestJS, Django, Flask, FastAPI, Laravel, and similar. Your code stays strictly confidential.
Message me with your repo before ordering and I will confirm scope and the right package.
Get to know NamasteAlex
Offensive security researcher, secure code review and Web3 audits
- FromRomania
- Member sinceOct 2017
- Avg. response time1 hour
Languages
English, Romanian
My Portfolio
Other Software Development Services I Offer
FAQ
Do you keep my code confidential and can you sign an NDA?
Yes. Your code is treated as strictly confidential, and I am happy to sign your NDA before you share anything.
What do you need from me to start?
A repository link, the framework and stack, and a short note on the roles and sensitive actions in the app. I confirm scope and the right package before you order.

