Browse categories
Explore
Fiverr Pro
English
$
USD
I will do authorized web application security testing
Certified Web App and API Penetration Tester
I am a certified penetration tester (eJPT, eWPT, eWPTX, ICCA) specializing in web application and API security. I help businesses secure their apps by testing for OWASP Top 10, authentication flaws, a...
About this Gig
As a certified ethical hacker (eJPT, eWPT, eWPTX, ICCA + MIT), with 30+ bugs hunted on HackerOne and Bugcrowd, I offer ethical, authorized security testing only. All testing requires your explicit written permission and proof of ownership/authorization. No unauthorized access or illegal activities are performed.
What you get:
Thorough manual vulnerability assessment covering OWASP Top 10 (SQL Injection, XSS, Broken Access Control, etc.)
API security checks, business logic flaws, authentication issues, and more
Professional PDF report with: CVSS risk ratings, screenshots/evidence of findings, remediation recommendations
Tools used: Burp Suite Professional + industry-standard scanners
My process: Reconnaissance Scanning Manual exploitation attempts (ethical only) Reporting
Why choose me? Extensive hands-on experience on OWASP Juice Shop, HackTheBox, TryHackMe, CTFs, and real-world bug bounty hunting.
Important: Provide target URL, scope, and authorization proof before starting. For deeper API focus, add my "API Deep Dive" extra.
Ready to secure your web app? Message me first with details!
Testing application:
Web application
Device:
PC
•
Linux
My Portfolio
FAQ
Are you certified?
Yes, I am certified in eJPT, eWPT, eWPTX, and ICCA, which validate both my network and advanced web application penetration testing skills.
What services do you offer?
I offer professional web application penetration testing. My services include vulnerability scanning, manual testing for OWASP Top 10 issues, API security testing, and a detailed PDF report with remediation steps.
Can you handle sensitive data?
Yes. I treat all client information with the highest level of confidentiality. Any sensitive data I access during testing (credentials, configurations, or business information) is used only for security assessment and is never stored, reused, or shared.
How long does a project take?
Delivery time depends on project scope; small assessments can be done in 2–4 days, larger projects as agreed.
Do you provide recommendations after testing?
Yes, you’ll receive a clear, actionable report with prioritized steps to improve security.
