Crestron encryptionproiecte
...to be optimized. Background Services and Battery Management: Android 14 introduces stricter controls on background services and app activity to enhance battery life. Any background processes within the app will need to be reviewed and optimized to ensure compliance with the new battery management policies. Security Enhancements: Android 14 includes enhanced security measures, such as stronger encryption, improved authentication methods, and stricter app sandboxing. The app's security features will need to be reviewed and updated to meet these new requirements. Deprecations and New Features: Android 14 has deprecated several APIs and introduced new ones. The app may be using deprecated APIs that need to be replaced with modern equivalents. Additionally, new Android 14 feature...
...Prescription Ability for patients to upload or photograph prescriptions Dashboard to view active medications “Request Refill” feature with automated email notification to the pharmacy and confirmation to the patient Searchable minor ailments library (CMS editable) with dosing tips and guidance Requirements: Fully responsive, fast-loading, and secure (SSL) website Secure handling of patient data (encryption in transit and at rest) Admin panel with audit logs for refill requests Accessibility compliance (WCAG 2.1 AA) SEO optimization Tech Preferences: Open to WordPress or other reliable stacks with easy maintenance Must include an admin guide (video or PDF) Deliverables: Live website on our domain (GoDaddy) with HTTPS Patient registration & prescription manage...
...• A short pilot phase where we crush critical bugs and fine-tune alert thresholds with real patient data in a staging environment. Acceptance criteria 1. Live vitals stream stably (≤2 s latency) from test devices to the clinician dashboard. 2. Alerts fire 100 % of the time when thresholds are breached and appear on both patient and clinician apps. 3. Messaging module passes end-to-end encryption tests and stores no plaintext on device or server. 4. App passes App Store / Google Play review on the first submission. integration will be main core of this app When these boxes are ticked, the milestone is complete and we move to scaling. I’m ready to start right away and can respond quickly to unblock you at every step. I will prefer to work with person who is...
...Prescription Ability for patients to upload or photograph prescriptions Dashboard to view active medications “Request Refill” feature with automated email notification to the pharmacy and confirmation to the patient Searchable minor ailments library (CMS editable) with dosing tips and guidance Requirements: Fully responsive, fast-loading, and secure (SSL) website Secure handling of patient data (encryption in transit and at rest) Admin panel with audit logs for refill requests Accessibility compliance (WCAG 2.1 AA) SEO optimization Tech Preferences: Open to WordPress or other reliable stacks with easy maintenance Must include an admin guide (video or PDF) Deliverables: Live website on our domain (GoDaddy) with HTTPS Patient registration & prescription manage...
...Twilio ________________________________________ 9. Cloud Infrastructure • AWS / Google Cloud / Azure Services: • EC2 / Compute Engine • S3 (image storage) • CDN (CloudFront) • Load Balancer ________________________________________ 10. Database Design • PostgreSQL (Main DB) • MongoDB (Chat logs) • Redis (Caching) ________________________________________ 11. Security • JWT Authentication • SSL Encryption • Data privacy compliance (GDPR-ready) • Secure image uploads ________________________________________ 12. Admin Dashboard Features • Revenue analytics • User engagement metrics • Astrologer performance • Complaint management ________________________________________ 13. Additional Features • Multil...
...VPS to my local machine, while keeping everything fully functional, secure, and accessible via my domain. This is a clean migration and infrastructure setup task, not a rebuild. Scope of Work 1. Migration (Critical) * Migrate existing n8n instance from Hetzner to local system * Preserve: * All workflows * Credentials (must remain decrypted and working) * Users and settings * Ensure encryption key consistency * Validate everything works exactly as before 2. Local Deployment * Set up n8n locally using: * Docker / Docker Compose (preferred) * Clean, maintainable setup * Proper environment variable configuration 3. Domain and External Access * Keep existing domain: `` * Configure external access using: * Cloudflare Tunnel (preferred) or * Reverse proxy
My Asus X1505Z, fitted with an M.2 SSD, is locked by BitLocker after a former employee enabled encryption and left without sharing the password or recovery key. I must regain full access to every file on the drive—there are no backups to fall back on—yet I would like the work carried out entirely through remote means. I do not have the PIN nor the recovery key for the laptop. The device was not a part of active directory and the person used his own Microsoft account. To my knowledge it is locked with PIN and TPM. I can allow remote access via Anydesk as i can boot it to Hiren or Medicat via usb. I am willing to obtain any required software in support of this recovery within reason (not more than the cost of the freelancer fee) If you have proven experience in Win...
I need help tightening the digital security around a growing library of photographs. My pri...confidential, unaltered and accessible only to authorised users. Here’s what I’d like from you: • Assess the current storage workflow (local drives, cloud folders, backups) and identify vulnerabilities. • Propose and implement practical safeguards—encryption at rest/in transit, granular access controls, and tamper-evident measures. • Document every change so I can maintain the system long-term, including clear restoration steps if something ever goes wrong. If you have hands-on experience with secure photo archives, modern encryption standards (AES-256, TLS), and best-practice key management, I’d love to hear how you would approach t...
Context: Build on existing BLE Flutter skeleton. Deliver core patient UX and a b...(already designed) - Stop-test flow with reason picker Deliverables — Cloud backend: -Basic cloud setup (EU region) -User authentication (patient + clinician roles) -API for sensor data upload and retrieval -Flutter integration with offline buffering -Architecture + data-flow diagram Out of scope:Patient diary, test history viewer, PDF report, clinician dashboard, EHR/FHIR integration, advanced encryption/compliance (later task) Compliance: - IEC 62304 Class B module headers - SOUP entries for new packages and cloud services Acceptance criteria: - End-to-end onboarding → pairing → test → upload works on iOS + Android with nRF52840 DK - EN/DE + dark mode work on all screens - D...
...VCF/BAM genomic files, and expose well-documented REST/GraphQL endpoints for future integrations. Deliverables • Data ingestion & preprocessing pipeline covering EHR, imaging, and genomics • Trained and validated ML/Deep-Learning models for diagnosis, patient-risk scoring, and outcome prediction • Unified web, mobile, and desktop front ends consuming a common API • End-to-end security layer (encryption, audit trails, role-based access) meeting HIPAA guidelines • Automated testing suite plus deployment scripts and clear developer documentation Acceptance criteria: models reach agreed-upon performance metrics on a held-out test set, UI is fully responsive across devices, core workflows execute in under three seconds, and code passes all unit/i...
...own Claude API key, and our backend processes requests through proprietary infrastructure designed to reduce token consumption. We're pre-launch and need thorough third-party QA before opening to paying customers. ***PLEASE GO THROUGH ENTIRE SIGN UP PROCESS A - Z*** What we need tested 1. Functional testing (all user flows) Signup, login, password reset, session handling API key submission, encryption at rest, and deletion flows Credit purchase flow across all three tiers ($10, $25, $50) and custom amounts End-to-end request flow: user prompt → our backend → Claude API → response Streaming, tool use, and vision request handling across Sonnet and Haiku models Edge cases: invalid keys, expired keys, rate limits, malformed requests, network failures 2. Pricin...
The immediate goal is to deliver a highly secure escrow app for both iOS and Android that handles P2P, B2B, P2B and B2P transactions right out of the gate. Bank-grade encryption, a strict zero-trust architecture, and full OWASP compliance are non-negotiable pillars of the build. Phase 1 – Mobile First • Design and code the core escrow workflow for peer-to-peer and business-to-business payments. • Implement strong customer authentication, role-based access, and end-to-end encrypted data at rest and in transit. • Integrate a modular backend API so we can later expose the same services to a web portal and USSD interface without rewriting business logic. Security & Compliance Every line must pass automated OWASP checks, static code analysis, and pe...
I'd like a working prototype with minimum UI and feature, without any encryption. Two users A and B. User Stories below: User Story #1: Initially A and B are far away from each other, and each opens app in iPhone. - A writes a text content T1 - B moves close enough to A and receives T1 User Story #2 (symmetric to story #1): - B writes a text content T2 - A moves close enough to B and receives T2 Note: the app works without wifi or mobile network, as far as the phones support BLE. Users don't need to register for account or ask for each other's permission before connecting. More details: Is this project for business or personal use? Personal use for now, but the project can grow if the prototype goes well What information should successful freelancers include in ...
...with modular architecture (microservices-ready) Implement secure authentication & authorization Apply industry-standard design patterns and clean architecture Ensure performance optimization and scalability Core Modules & Features: 1. Authentication & User Management User registration and login (Admin / Librarian / Student) Role-based access control (RBAC) JWT-based authentication Password encryption and security best practices 2. Book Management Add, update, delete books Book categorization (genre, author, publisher) ISBN-based management Bulk import/export (CSV/Excel) 3. Issue & Return Management Book issue/return tracking Due date management Fine calculation system History and logs 4. Search & Discovery Advanced search (title, author, category) Fil...
...surveys, web forms, sensors and operational databases; and where all that information actually lives, from on-prem servers to modern cloud platforms. The heart of the article must spotlight data security and privacy. I need engaging, true-to-life examples that show what can go wrong when sensitive data is mishandled (think headline breaches or small-business mishaps) and how sound practices—encryption, role-based access, regular audits—prevent disasters. Keep the technical jargon light; analogies and plain language are welcome. Deliverables • A narrative article of roughly 1,500–2,000 words in editable Doc/Google format • At least three real-life security or privacy incidents, each paired with the lesson learned • Smooth transitions betwee...
...calculations (same as Excel or improved). * Document attachment capability (PDF, Excel, etc.). * Dashboard for progress tracking (per mission, per user). * Search and filtering functionality. * Export to Excel/PDF. 6. Data Management * Central database (SQL or equivalent). * Backup and restore system. * Multi-user concurrent access. 7. Security * Secure login system. * Role-based permissions. * Data encryption (recommended). 8. UI/UX * Clean, professional interface adapted to audit workflows. * Fast and efficient navigation (productivity-oriented). 9. Technical Expectations * Scalable architecture. * Clean, documented code. * Possibility of future integration (ERP, accounting systems, etc.). 10. Deliverables * Fully functional desktop application. * Source code. * Techn...
...login via email, phone, or social OAuth • Real-time messaging (text, photos, videos, voice notes, emojis, GIFs) • Group chat creation & management • Swipe-to-reply, double-tap to like, message status indicators • Push notifications while respecting device-level privacy settings • Basic profile page with avatar, username, and status • Secure data handling: end-to-end encryption or best-practice transport encryption Deliverables 1. Source code with clear modular structure and in-line comments 2. Working builds ready to install on current iOS and Android versions (TestFlight / APK) 3. Simple admin or dashboard panel to view active users and chats 4. Setup guide so I can deploy the backend and publish future updates myse...
I’m c...repository with build instructions and a short demo video that walks through search, profile login, chat, map view, payment flow, and review submission Acceptance criteria The final build must install on Android 8.0+ devices, return relevant results within one second on a typical 4G connection, process sandbox payments successfully, and pass a brief security review for authentication and data encryption. If you already have modules covering any of these areas—search filters, in-app chat, Google Maps overlays, Stripe/PayPal payments, or a ratings widget—let me know; leveraging existing, battle-tested components will keep costs and timelines under control. I’m ready to start as soon as I see a portfolio item or live demo that proves your previous cl...
I am rolling out a Employee Assistance Program focused on mental health counselling and need a full solutio...counseling hub with tiered access to a resource library • Real-time, secure live-chat support that routes to licensed professionals • Calendar-based appointment scheduling with push/e-mail reminders on both mobile platforms and the web • App to facilitate secure phone and video counselling appointments Security, data privacy, and uptime are non-negotiable; please plan for industry-standard encryption and user authentication. The mobile apps must go live on both iOS and Android stores, and the website should mirror the experience responsively. When you reply, outline your proposed tech stack, development timeline, and any similar EAP or tele-health platfo...
I need an experienced developer to update Crestron touchpanels and an iOS apps to Smart Graphics for an MC3 processor. Attached image shows existing graphics, functioning well from simpl and vtrpro programming. Requirements: - Enhance user interface design - New layout design - Improved navigation - Custom graphics and icons Ideal Skills: - Proficiency in Crestron Smart Graphics - Strong UI/UX design skills - Experience with MC3 processors - Ability to create custom graphics and icons Please provide examples of previous work and a detailed plan.
...information, medical history and appointment history must be stored with encryption at rest and in transit. Please build in role-based access controls, audit logging and best-practice password handling. Compliance with HIPAA/GDPR principles is essential. Analytics The admin dashboard should show total confirmed bookings per month (and allow filtering by doctor). Deliverables 1. Fully functional web app (front-end, back-end, database). 2. Source code in a Git repo with clear setup instructions. 3. Admin report showing monthly booking counts. 4. Brief security documentation outlining how data is protected. Acceptance Criteria • A patient can complete a booking flow end-to-end in under two minutes. • Encryption verified through inspection of traffic...
I'm looking for a skilled developer to create a USDT wallet management software. The software should be compatible with Windows and Linux platforms. Essential features include: - Secure multi-signature support - Comprehensive transaction history - User-friendly address book Ideal skills and experience: - Expertise in cryptocurren...a USDT wallet management software. The software should be compatible with Windows and Linux platforms. Essential features include: - Secure multi-signature support - Comprehensive transaction history - User-friendly address book Ideal skills and experience: - Expertise in cryptocurrency wallet development - Proficiency in cross-platform software development - Strong security protocols and encryption knowledge Please provide examples of previou...
...procedure, and how to trigger a bank transfer. I’m flexible on the underlying OS and tech stack as long as the GUI is smooth and the final package is self-contained. If you already have experience with multi-coin libraries (e.g., Electrum, BTCPay, or similar) and can integrate a banking API or ACH library, that will give you a head start. Security features such as 2FA, biometrics, or additional encryption layers can be proposed, but the core requirement is an offline-first, plug-and-play wallet image with direct bank payout capability....
...management platforms * Hands-on experience with Ping/Post lead distribution models * Proficiency in MySQL / PostgreSQL or similar databases * Experience working with iframe forms and cross-domain tracking * Knowledge of JavaScript, HTML, CSS for form customization * Familiarity with cloud hosting (AWS, DigitalOcean, VPS environments) * Understanding of data privacy and secure transmission (HTTPS, encryption) What You’ll Build: -A custom centralized Lead Management CRM -Ping/Post system (real-time lead buying/selling) -API integrations with buyers -Lead routing system (based on filters) - A form tracking and attribution system (including iframe-based forms) Important: If you’ve never worked on: Lead gen systems Affiliate networks Ping/Post flows This is NOT the ...
...configuration controls. • Live ride monitoring dashboard (real-time map). • Financial reporting module. • Fraud monitoring tools. • Dispute resolution interface. • Manual ride override functionality. • Analytics dashboard. • Region and surge management. • System health monitoring dashboard. 9. Security & Compliance • OAuth2 + JWT authentication security framework. • TLS 1.3 enforcement. • AES-256 encryption at rest. • API rate limiting. • DDoS protection integration. • Web application firewall (WAF). • Role-based access control (RBAC). • Audit logging system. • GDPR data export and delete functionality. • CCPA compliance controls. • PCI DSS compliant payment workflow. • Backgro...
...theme files on the fly. A collapsible floating icon that can be dragged anywhere would be ideal, but I’m open to alternative overlay behaviours as long as the user can restyle every element. Stealth & safety Anti-ban protection is essential. Obfuscate critical hooks, randomise signatures, and include bypasses for the game’s integrity checks so the account can survive online play. If additional encryption layers or signature-spoofing techniques are needed, build them in. Development notes • Target the current live build of Pixel Worlds on Google Play • Coding stack can be Java, Kotlin, C++ with Android Studio or any proven hooking framework (e.g., Frida, AndHook, Substrate) • The final APK must install on both arm64 and armeabi-v7a devices ...
...sketched out; what I need now is an experienced mobile developer who can turn those ideas into a polished, production-ready APK and guide it through Play Store submission. Here’s the scope in plain terms: • Build a native Android app that opens quickly, registers users by phone or email, and lets them exchange text, images, and voice notes in one-to-one or small-group chats. • Implement end-to-end encryption with a well-maintained library (for example, Signal protocol or similar) so all conversations stay private by default. • Design a clean Material-you inspired UI; I have colour references and a splash-screen logo ready for hand-off. • Set up Firebase (or another scalable real-time backend you prefer) for authentication, message sync, push notificati...
...workflow (CLI script, simple build step, or short Node/Gulp/Webpack task) that takes my original JS, obfuscates it strongly, and outputs a single file I can hand to a client. • The resulting code has to run in any modern browser with no manual tweaks on the client’s side—just drop-in `<script src="…">`. • Obfuscation quality should focus on making the source unreadable rather than full-blown encryption, while still preventing quick tampering. • A brief write-up or screen-share walk-through so I can reproduce the process for every new customer. You’re free to employ whatever tooling you prefer—Terser, javascript-obfuscator, webpack-obfuscator, custom Babel plugins, or a combination—so long as the final outp...
...speed and the "backend engine" for secure data handling. Core Technical Scope: • Track 1 (Performance Frontend): Convert Figma designs into a 100% custom-coded environment. Objective: 95+ Mobile PageSpeed Score for optimized Ad-spend and SEO rankings. • Track 2 (Logic & Security): o Implementation of a custom pricing engine with dynamic percentage-based fee logic. o Development of a secure encryption vault for sensitive user credentials (AES-256). o Integration of a high-end REST API analytics dashboard. • Track 3 (Payments): Advanced integration of secure payment gateways for tiered subscription plans. Mandatory Technical Requirements: • No Page Builders: Zero reliance on Gutenberg, Elementor, or heavy plugins. • Security-First: Proven...
I’m standing up a brand-new WordPress box on a Linux host and need it architected from day one around a strict zero-trust stance—even the hypervisor or hosting provider must be treated as hostile. Here is the baseline I need you to hit: • Full-disk encryption with LUKS configured during provisioning, unlocking only through a self-hosted key management system that lives off–box (no cloud “managed” services, no HSM rental). • The key workflow must survive reboots without ever storing secrets locally and still allow automated patching and recovery. • WordPress itself should sit behind hardened nginx/Apache, with minimum required PHP modules, file-system permissions locked down, and Web Application Firewall rules tuned for the CMS. ...
...whether tasks are done so it stays in sync. All state changes should reflect instantly across the widget, list and notification queue. Key considerations • Full Android permissions workflow for SMS, call logs, microphone, notification access and accessibility API where needed • Continuous background collection without draining battery (WorkManager / JobScheduler best practices) • Local encryption of raw data and inference results; nothing readable should leave the device unless explicitly routed through a secure API endpoint I configure • Modular AI layer: you may integrate TensorFlow Lite, OpenAI APIs or a comparable model, provided it can run entity extraction and intent detection reliably • Minimum target SDK 31; written in Kotlin with clean...
...Manager api (AMI) In click-to-call (in outbound) api first call hit the agents number (not using softphone or hardphone) after receiving call in agents mobile then customer number will dial. Also handling the Inbound PBX – Call is hitting in a virtual number after that call will forward in agent mobile number. WebRTC – HTTP/WebSocketSecure (WSS), PJSIP with DTLS encryption. Sngrep – to monitor the sip calls. Webhooks – Send real time call data Using Dial plan, AGI, or AMI. Web Sockets – Web RTC based browser phone. STIR/SHAKEN – Identify the source of a call. Current Project – IVR Integration with Chat bot System using asterisk 13 and above version with FreePBX. With Speech to text and text to Spee...
The goal is a small Windows-based command-line utility that connects to Huawei ONTs (firmware generations V5 and V6) a remove the existing password encryption for the router to be open for hotspot Core workflow • Discover or accept the target ONT’s IP, authenticate, and establish the usual management session (SSH or Telnet—whichever the device allows). • Query the existing firmware version, compare it with the version bundled or pointed to in the command arguments, and decide whether an upgrade is required. • Transfer the firmware file, trigger the upgrade, watch the progress messages, and confirm a clean reboot. • Log every step to a text file for later auditing. I will provide: – Test units for one Huawei V5, one V6, and one Nokia hotspot mo...
...touch browser automation. Here is the performance bar I expect: the service should comfortably sustain more than 1,000 requests per second while keeping end-to-end latency below 50 ms. To achieve that you may architect a multi-threaded runner, spin up geographically distributed workers, or use any other creative optimisation—so long as the target numbers are met in real-world tests. Signature encryption, device fingerprinting, and the dreaded 429 rate limits all need to be bypassed with a custom-built approach rather than off-the-shelf libraries. Once a username is secured the tool should automatically transfer it to a holding account so it stays safe until I move it. Before we move to paid milestones I will ask for a short live trial on one of my test accounts; this is ...
Pr...unauthorized access Logging and audit trail System Features Simple and user-friendly interface Error handling for device connection issues Device status detection (connected/disconnected) Offline data capture option if required Export or sync data with server API (optional) Technical Requirements (Preferred): C# / .NET (WPF or WinForms) Integration with Mantra / Morpho SDK Secure data handling and encryption Webcam integration Local database or API integration Deliverables: Complete Windows Desktop Application source code Integration with biometric device SDK Documentation for installation and usage Clean and maintainable code following standard development practices We are looking for a developer who can build a secure, stable, and production-ready biometric registrati...
...a similar framework is fine as long as it renders smoothly on desktop and mobile browsers. For the back end, I lean toward Node.js/Express or Python/Django with a SQL or NoSQL database to store user profiles, order history and configuration data. Real-time market quotes should stream through WebSockets from a third-party API, and every sensitive request must pass through HTTPS with the usual encryption, rate-limiting and input validation in place. I will consider the job complete when the source code is delivered, runs error-free on my VPS and meets these acceptance checks: • Responsive layout verified on Chrome, Firefox, Safari and Edge • Live quote feed updates in under 200 ms • Sandbox orders can be opened, modified and cancelled successfully Send me...
...insecure code practices, and vulnerable libraries. Dynamic Analysis (DAST): Test the application in a running state to identify runtime vulnerabilities. Insecure Data Storage: Check for sensitive data (credentials, PII, tokens) stored insecurely on the device (e.g., in SharedPreferences, Plist files, SQLite databases). Insecure Communication: Analyze network traffic to/from the app to ensure encryption is properly implemented (TLS/SSL) and to check for certificate pinning issues. Client-Side Injection: Test for vulnerabilities like SQL Injection in local databases or Cross-Site Scripting (XSS) in WebViews. Broken Authentication & Session Management: Test for weaknesses in login, logout, session handling, and credential management on the client side. Code Obfuscation & Rev...
Înregistrează-te sau Conectează-te pentru a vedea detaliile.
...Users can browse templates by category, preview the flow, and create a skill from a template (which copies the structure and lets them customize). TECH STACK REQUIREMENTS - Backend language: Python 3.10+ - Backend framework: FastAPI - Database: PostgreSQL (via asyncpg, raw SQL — no ORM) - AI/LLM: OpenAI API (GPT-4.1 or later) - Embeddings: OpenAI text-embedding-3-small - Vector DB: Pinecone - Encryption: AES-256-GCM (Python cryptography library) - Frontend framework: React (Create React App) - Graph editor: React Flow - Styling: Plain CSS (no Tailwind, no CSS-in-JS) - Language: JavaScript (no TypeScript) - Primary accent color: #5616ea DELIVERABLES 1. Backend module — A self-contained Python package/directory with: - All route handlers (FastAPI routers) - Da...
I'm looking for an experienced Python developer to create a secure, detailed password manager. Security is the top priority for this project. Key Features: - Password Generation - Autofill Functionality - Encrypted Storage - Hashing - GUI - Multi-factor Authentication Ideal Skills: - Proficiency in Python and GUI development - Strong understanding of encryption and security protocols - Experience with multi-factor authentication integration - Previous work on similar password management tools Please provide samples of relevant work and ensure you have a solid security background.
We are seeking an expert Full-Stack Developer to design and build a complex SaaS platform similar to PassKit. This platform will allow our clients (merchants) to create, manage, and distribute digital loyalty cards directly to their customers' Apple Wallet and Google Wallet. This is not a simple website project. It requires deep knowledge of mobile wallet...Technical Stack Preference: Backend: PHP 8.x (with PDO) or Node.js. Database: MySQL. Frontend: Clean HTML/CSS/JavaScript (or a framework like React/Vue). Required Qualifications: Proven Experience with Apple PassKit (server-side pass generation) and Google Wallet API. Deep experience with Stripe API (specifically Subscriptions/Billing). Solid understanding of security best practices (SSL, data encryption, SQL injecti...
...the underlying structure, data flows, and access logic examined for weaknesses that could compromise customer information or interrupt critical services. Scope of work • Map the current database design, supporting servers, and connected services. • Perform vulnerability assessments and penetration tests against these elements, documenting every finding with clear evidence. • Evaluate encryption, key management, privileged-user policies, and change-management procedures to be sure they align with modern banking standards (PCI-DSS, ISO 27001, NIST CSF as appropriate). • Deliver a concise report that prioritises risks, explains potential impact in plain language, and offers actionable remediation steps ranked by severity. Tool familiarity I expect...
...performed against five distinct user profiles: Admin, Regular User, Guest, Teacher, and School Admin. Each role has its own permission set and workflow, so role-specific edge cases matter just as much as the happy paths. Security is non-negotiable. I need OWASP Top 10 coverage, session management checks, permission escalation attempts, and a light penetration sweep to confirm that data isolation and encryption are sound. Deliverables I expect: • A concise test plan outlining coverage by module, user role, and browser • Executed test cases and regression scripts with clear pass / fail logs • A prioritized defect list (severity, steps to reproduce, environment, screenshots or screen-recordings) entered in my existing tracker or yours, then exported to PDF &bu...
...Finalize the "pipes" between internal gateway and external Telco APIs Implement bank webhook handlers (Finacle/Oracle - read-only) Set up HMAC signature verification for payment callbacks Configure Africa's Talking SMS gateway integration Create fallback mechanisms for API failures 3. SECURITY HARDENING (20%) Implement OAuth 2.0 / JWT authentication across all services Apply AES-256 encryption for all PII fields at rest Ensure TLS 1.3 for all data in transit Set up role-based access control (6 user roles) Configure audit logging for all system actions Prepare for security audit and penetration testing 4. PERFORMANCE TUNING (15%) Optimize communication between the "Brain" (Python) and the "Face" (React) Ensure real-time data upd...
My site’s contact and signup forms have suddenly stopped sending messages. The error log points to failed credentials, and I’m currently routing the messages through Gmail with standard SMTP authentication. I’m not sure whether “Less secure app access” is still enabled or if a recent Google change broke the setup. I need you to: • Audit the existing SMTP configuration (host, port, encryption, username / password). • Update or replace the credentials, switching to an App Password or OAuth if required. • Test and confirm that all form submissions reliably land in the intended inbox. • Provide a short note outlining the fix so I can maintain it in the future. The codebase is straightforward, so I expect this to be a focused tr...
...Scope • Analyse our Linux fleet (mostly RHEL, CentOS and Ubuntu) and pinpoint the controls we must meet—CIS benchmarks, NIST 800-53 or similar. • Draft a security baseline proposal for sign-off, then codify it as Ansible roles, playbooks and variables. • Build idempotent tasks for hardening, user and group governance, privileged escalation restrictions, patch enforcement, log/audit configuration, encryption settings and firewall rules—prioritising compliance over simple configuration. • Create a staging inventory and Molecule tests so every change is verifiable in CI/CD (GitLab CI preferred, but open to alternatives). • Deliver human-readable documentation covering what each role does, how to run it, and how to roll back. Acceptance criteria ...
...comprehensive security audit: scan for existing malware, review logs, check permissions, and verify that all core services (Apache/Nginx, Exim, MySQL, SSH) follow current best practices. • Implement layered defences aimed at the three concerns I flagged—malware detection & removal, unauthorized-access prevention, and data encryption/protection. Typical tools might include CSF/LFD, ModSecurity rulesets, hardened SSH policies, ClamAV or Imunify360, and full-disk or at-rest encryption where applicable. Feel free to bring in other proven utilities if they add value. • Set up real-time alerts and dashboards so that suspicious activity or integrity failures reach me immediately by e-mail/Slack. • Provide rapid incident response and clear remediatio...
I’m running a Linux VPS on Ubuntu and need a fresh OpenVPN installation configured as a site-to-site tunnel to my office network. Default security settings are fine—no extra encryption tweaks or two-factor layers required—so the goal is simply a reliable, auto-starting link that routes selected subnets both ways. Here’s what I expect from you: • Install the latest OpenVPN packages, enable IP forwarding, and apply any necessary UFW/iptables rules. • Create the CA, keys, and certificates, then build matching server and peer configurations. • Supply the peer-side .ovpn (or equivalent) file and guide me through importing it on our edge router or secondary Linux box. • Verify traffic flow end-to-end (ping, basic service checks) and ensu...
...building from immediately. Scope The document must open with a concise Introduction & Overview that explains the product vision, core value proposition, and high-level workflow. From there it should dive straight into Technical Specifications aimed squarely at fellow developers. Key areas that must be covered • User Registration & Authentication – flow diagrams, data models, recommended encryption/auth methods (JWT, OAuth2, etc.). • Booking & Payment Process – booking life-cycle, real-time fare calculation, third-party payment gateway integration, WebSocket or MQTT suggestions for live status updates. • Driver & Vehicle Management – driver onboarding, vehicle records, assignment logic, availability tracking. Technical de...
...and the audit-log engine behave consistently across all transactions. Security focus Data encryption, both in transit and at rest, is non-negotiable. Role-based access control and at least one round of penetration testing follow once encryption is confirmed. GDPR-level baselines should guide any data handling decisions. Quality & performance After feature fixes, run formal UAT with my operations team, followed by load tests that simulate several separate client companies on the same instance. We will iterate until zero critical bugs remain. Deliverables 1. AWS infrastructure as code (Terraform or CloudFormation) 2. Stable logistics modules merged to main branch 3. End-to-end encryption implemented and documented 4. Pen-test report with remedial ac...
