I will perform API security testing and vulnerability assessment

Bangladesh

I speak English, German, Russian, Spanish

10 orders completed

Cyber Security Expert, Penetration Tester, Bug Bounty Hunter

Hi, I'm Shahadat Fahim — a Certified Penetration Tester (eJPT, CRTOM) and Bug Bounty Hunter with hands-on experience in web application security. I help businesses identify and fix real vulnerabili...

About this Gig

Is your API leaking sensitive data?

I'm Shahadat Fahim certified pentester (eJPT, CRTA)

and Hall of Fame researcher at companies in UK and Europe.

WHAT I TEST:

- Broken Object Level Authorization (BOLA/IDOR)

- Broken Authentication and JWT attacks

- Excessive Data Exposure

- Rate Limiting and Mass Assignment

- Injection attacks via API parameters

- Sensitive data in API responses

WHAT YOU GET:

- Professional PDF report with CVSS scores

- Full Proof of Concept for each finding

- Step by step remediation guidance

- Free retest after fixes

Manual testing only. No automated scanner dumps.

Message me before ordering to discuss your API scope.

perform API security testing and vulnerability assessment

Full Screen

View Presentation

My Portfolio

FAQ

Q: What API types do you test?

REST, GraphQL, and SOAP APIs. Mobile app APIs and third party integrations included.

Do you need API documentation?

Helpful but not required. I can discover endpoints manually during the engagement.

Will testing affect my live API?

No. I use safe non destructive methods that will not disrupt your service.

Need to get creative?

Looking for tech experts?

Ready to reach and convert consumers?

Looking for writers?

Get your business running smarter

I will perform API security testing and vulnerability assessment

About this Gig

My Portfolio

FAQ

Related tags