Browse categories
Explore
Fiverr Pro
English
$
USD
I will professional website security testing and vapt with a full report
Amith Nilupul
About this gig
I'm Amith, a cybersecurity professional offering expert vulnerability assessment and penetration testing services to help you find and fix security flaws before attackers do.
Using industry-standard tools and manual techniques, I will simulate real-world attacks to identify vulnerabilities in your web application and APIs, and provide detailed, easy-to-understand reports with remediation guidance.
What I Offer:
️ BASIC One-Time Fast Scan
- Automated scanning of website & APIs
- Manual verification of findings
- Report with actionable recommendations
STANDARD Full Web App & API Pentest
- Greybox or Blackbox testing
- Manual & automated testing
- OWASP Top 10 coverage
- Detailed report with risk ratings
PREMIUM Comprehensive Security Assessment
- Business logic testing
- Full penetration testing
- Retesting after fixes
- In-depth report + mitigation plan
Why Choose Me?
- ️ Real-world cybersecurity experience
- ️ Manual verification, not just tool
Respect third-party rights
Please be aware that it is against Fiverr's policies for sellers to include themes, templates, or any other elements that infringe third-party rights or applicable laws in the delivered work. Read more about in our Guide to Responsible Digital Creation.
Get to know Amith Nilupul
Amith Nilupul
- FromSri Lanka
- Member sinceAug 2025
- Avg. response time1 day
Languages
English
Hey there! I’m Amith, a cybersecurity enthusiast with real-world experience in vulnerability assessments, penetration testing, log analysis, and threat detection. I love helping people and businesses stay safe online by finding and fixing security flaws before attackers can. Whether you need your website, app, or network secured, I’ve got you covered. I’ll deliver clear, detailed reports and practical advice to improve your defenses. Let’s connect and make your digital space safer together!
FAQ
What do you need from me to get started?
To begin the assessment, we need the URL/target of your website or API. If you have selected a package that includes authenticated testing (Greybox), we will also need a set of test credentials to evaluate the security of user-restricted areas.
Is your testing fully automated or do you perform manual checks?
We use a hybrid approach. While industry-standard automated tools are used for initial discovery, our core strength lies in manual verification. We simulate real-world attacks to identify complex vulnerabilities, such as business logic flaws, that automated scanners often miss.
Will the testing affect my website’s performance or cause downtime?
We take extreme care to ensure minimal impact. Our testing is conducted using non-disruptive techniques by default. However, for the most thorough assessment, we recommend providing a staging or development environment if your production site has very high traffic.
Do you cover the OWASP Top 10 vulnerabilities?
Yes. Our Standard and Premium packages provide comprehensive coverage of the OWASP Top 10, including SQL Injection (SQLi), Cross-Site Scripting (XSS), Broken Access Control, and more.
What is included in the final report?
You will receive a detailed PDF report that includes: Executive Summary: A high-level overview for management. Detailed Findings: A breakdown of every vulnerability with risk ratings (Critical, High, Medium, Low). Evidence: Screenshots and Proof of Concepts (POCs). Remediation Guidance.
Do you offer a retest after I have fixed the vulnerabilities?
Retesting is included as part of our Premium Package. For the Basic and Standard packages, we can provide a custom offer for a follow-up scan once your team has implemented the fixes.
Is my data and the security of my website kept confidential?
Absolutely. Professionalism and confidentiality are our top priorities. All information shared and the results of the security assessment are handled with strict privacy and will never be shared with third parties.
