Profi Ethical hacker

Hi, I'm very interested in Your offer. I have over 10 years of experience as system admin for both windows and linux based systems. I also have over 10 years of experience in the field of security testing and security fixing. I know all about popular vulnerabilities:xss, sqli, rfi/lfi, csrf, owasp top 10 and more. I also know how to test for vulnerabilities in various web cms(wordpress, drupal, joomla, magento, and others) including php apps and custom cms. Other than webapps, I also know how to test servers for security. I have done website security testing, penetration testing and security fixing in the past. For more regarding my previous work please check my profile. For reference, I am Certified Vulnerability Assessor and have CVA certificate from mile2 attached in my profile page. So, choose me and I can promise You that I'll complete this project on time and to Your standards; however, I'll need more details(as in website address and similar) so I could assess the scope of work and adjust my bid accordingly if needed. Thank You for considering my bid and I'm looking forward to Your reply. Cheers.

A proposal has not yet been provided

A proposal has not yet been provided

Hello, I am an expert Hacker . have been in this field since 3 years now. I know all kind of hacking so I know how to protect from it. Like SQL Injection, Blind SQL injection. I have all the tools that can get this done. I am available to discuss more via msg. Thanks

Dear Manager, I'm cyber security researcher. I worked at "The Scientific and Technological Research Council Of Turkey" - "Cyber Security Institute" from May 2012 to August 2016. I have worked lots of penetration testing, system auditing, computer forensics, network forensics, advanced threat analytics, malware anaysis, log analysis, incident response, critical infrastrature security projects. Also, I'm a trainer in these areas. I'm also "Database Security" expert. I have done penetration testing and hardening in many government agencies and banking database systems. I look forward to the possibility of working together. Yours sincerely,

+ Primarily self-taught, exposure to MySQL, Oracle, PostgeSQL, and MSSQL databases. + Keen eye to type, error, and query assembly factors of SQL. + Understanding of configuration vulnerabilities that may be attacked + Implementation of access control model for assigning user privileges + Experience with using blind SQL injection and methodology for find SQL + Understanding of potential risk of user privileges such as SELECT, INSERT, UPDATE, EXECUTE. + Familiarity with usage of automated tools such as SQLninja, Mole, HP WebInspect, and BSQL hacker. + Will provide necessary threat modeling with detailed analysis of vulnerabilities and their corresponding patch. + Understanding and implementation of proper query parameterization to distinguish and define static SQL code. + Understanding and implementation of white list input validation + Understanding and implementation of escaping such that the ESAPI database codec + Understanding of attacks on RDBMS which support query fingerprinting + Reconnaissance through HTTP GET and POST parameters + Understanding and implementation of proper user input sanitization + Customization of PHP scripts to take advantage of query functions such as SELECT + Creative combination of PHP scripts, grep, regex, and HTTP to harvest information. + Fully documented (and readable) risk and vulnerability reports + Understanding of client and server objects that may be subject to SQLi attacks. + Understanding of INSERT for injecting queries

Ihave over all exp of 9 years in Cyber security, Network security, End oint security, cloud security and information security and forensic investigation IT Information Security: Drafting the information security policies & information security guidelines & other industry best practices. Evaluating internal control systems / procedures, preparing reports with a view to highlight the shortcomings and implementing / suggesting necessary recommendations. Guiding IT security and threat management teams and ensure adherence to quality practices. Network Security : Designing architecture, implementation and Troubleshooting of IDS/IPS, NGFW Firewalls Cisco, Fortinet , Palo Alto and Sophos. Analyzing network traffic flows to reverse-engineer the required firewall ports and rules to allow secure access of applications. Cloud Security: Designing architecture, implementation and Troubleshooting of Network, Cyber and Information security products using AWS (Amazon Web services), Microsoft Azzure & VM Ware ESXI platforms. Cyber Security: Designing architecture, implementation and Troubleshooting of SIEM, VAPT, APT, Cyber security problems, Unknown threats (Malware) Using sandboxing technology and different tools Information Risk Management: Liaising with management during events as well as active troubleshooting with network and other application teams. Developing business applications also documenting processes and preparing test plans according to IT best practices for u