Securitate web Jobs

I need an experienced PHP/OpenCart malware cleanup specialist to help fix an infected OpenCart ecommerce store. Site details: * OpenCart version: 3.0.3.3 * Dedicated server * SSH and SFTP access available * OpenCart admin access available * No recent extensions or major changes added * Store will be migrated to Shopify in 1–2 months, so this is cleanup/stabilization only Issue: * Visitors are randomly redirected to suspicious/malicious pages * Redirect does not happen every time * Redirect happens more often when users visit the cart or add products to cart * Admin area appears normal * Antivirus/browser security tools are showing dangerous site warnings * Issue first appeared around late April, stopped for a while, and has now returned Required work: * Identify the exact redir...

We need an independent third-party penetration test of our production SaaS platform to satisfy a SOC 2 control. We're looking for an experienced, certified penetration tester (OSCP / OSWE / GWAPT / CREST or equivalent) who can start immediately and deliver a professional, audit-ready report. TIMELINE — TIME-SENSITIVE: We need the testing performed and the final report delivered within 1 week of kickoff. Please only bid if you have current availability. ABOUT THE SYSTEM (full details and credentials shared under NDA with the selected tester): - Customer-facing web application: / React / TypeScript - Backend: Python / Django / Django REST Framework API - Authentication: Keycloak (OIDC) — username/password, social login, TOTP/MFA - Two supporting Python/Django microservices ...

My site has started throwing form-submission errors and overall page speed has dipped, so I need a focused cleanup. The first priority is to get every form submitting reliably again. While you’re inside the form logic, please switch the date field to the new format I’ll supply, introduce a couple of new data fields, and strip out any obsolete ones I point out. Loading time is the next pain point. I’m looking for pragmatic optimisation—compressing heavy assets, tweaking queries, improving caching—whatever brings the site back to a snappy response without a full rebuild. Finally, the WhatsApp button needs a quick tweak: change the pre-filled message text so that it pulls a short template I’ll provide. The button’s position and core functionality ca...

My site is showing a few stubborn functionality errors—most notably a date that refuses to update correctly—so the first task is to track those down and put them right. After the front-end is behaving, I want a thorough look at the database to confirm everything is healthy and consistent before we move on. While you have access, please harden the security of the entire installation. I’m already running over HTTPS, but I’d like you to double-check certificates, permissions, and any obvious gaps that could expose user data. Deliverables • Functionality errors fixed (including the date issue) • Database health report with any corrective actions applied • Security hardening completed and documented (SSL verified, permissions tightened) I’...

Malware Analysis of iOS Exploit / Token Stealer from Suspicious Link Job Description: I have identified a suspicious website () that appears to exploit iOS devices when the link is clicked. According to my observation, once an iOS device accesses the link, the device automatically uploads: Token information from apps installed on the phone Cryptocurrency wallet-related information I am not the owner of the website. I want to analyze this threat to understand how it works, what data it steals, and how to block or remove it from an affected device. Scope of work: Analyze the link and its associated scripts (client-side, possibly obfuscated JavaScript or server-side redirects). Identify the specific exploit mechanism (e.g., WebKit vulnerability, configuration profile installation, zero...

I'm looking for an experienced mobile app developer to create an app for both iOS and Android platforms. Please include your relevant experience in your application. Ideal Skills and Experience: - Proficiency in React Native, Flutter, or similar cross-platform frameworks - Strong knowledge of both iOS and Android design guidelines - Experience with API integrations - Familiarity with app store submission processes - Ability to deliver high-quality, bug-free code Please share your past projects and ensure your bids are within the budget.

Project Description: I am looking for a skilled developer who can help me reduce the high server resource consumption of my information website in WordPress. The current average server resource consumption is high, and I am currently using plugins or tools to optimize server resources. Main requirements: - Optimize server resource consumption to improve website performance and speed - Identify and fix any inefficient code that may be causing high server resource consumption Ideal skills and experience: - Strong expertise in WordPress development and optimization - In-depth knowledge of server resource optimization techniques - Proficient in identifying and fixing inefficient code - Experience in working with information websites and handling high traffic If you have the necessary skill...

انتهيت تقريباً من تطوير موقعي الخدمي المبني على نظام مخصص يحمل اسم “Lovely”، وأحتاج الآن إلى عين خبيرة تتولى المرحلة الحاسمة قبل الإطلاق. المطلوب هو إنجاز الآتي: • تنفيذ اختبار اختراق (Pen-Testing) شامل يحدد أي ثغرات ويسلّم توصيات قابلة للتنفيذ. • تحليل الشيفرة المصدرية للتأكد من جودة الكود وامتثاله لأفضل ممارسات الأمان. • مراجعة إعدادات الخادم (Firewall، SSL/TLS، Headers، DNS وغيرها) وضبطها نهائياً. بعد إقفال المسائل الأمنية أريد متابعة دعم لمدة شهر بعد الإطلاق: الردّ على الأحداث الطارئة، تطبيق التحديثات والتحسينات الصغيرة، وتقديم نصائح دورية للحفاظ على الأداء. هناك فكرة مطروحة بسحب بيانات الموقع إلى منصة جاهزة بديلة؛ أود سماع رأيك المهني أولاً قبل اتخاذ قرار الانتقال من البنية الحالية. سلّم لي في نهاية العمل: 1. تقرير مفصل عن الثغرات والإصلاحات. 2. ...

SMM Script Security Hardening, Dynamic 8-Theme Integration & Logic Fixes We need an expert PHP/Backend developer to apply precise security patches, link our hidden themes, and fix logic bugs in our digital growth agency script via cPanel. Full technical counter-audit is ready. Core Tasks: 1. Dynamic 8-Theme Registration & UI Overhaul: The file system has 8 theme folders in 'app/views/', but the Admin UI currently only renders 4. You must write the missing database hooks/routing logic to register and fully activate all 8 themes in the Admin Panel so I can change the website look instantly in 1 second. Fix sidebar/layout issues across these layouts. 2. Captcha Validation Logic Fix: Fix the broken, inverted Captcha verification logic on 'app/controller/' (Line 59...

We are looking for a skilled and experienced web scraping developer to fix, improve, and align an existing scraper to our core scraping engine. The scraper is currently broken and requires a full fix along with proper integration into our stealth engine We have a well-structured scraping engine with a custom stealth configuration already in place. We have a scraper that is not functioning correctly and needs to be diagnosed, fixed, and properly aligned with how our engine works. Full details about the specific platform and the exact issues will be shared. What We Will Provide Full source code of our existing scraping engine Our current stealth configuration module A detailed walkthrough of the issues and expected behavior Expected output format for the data to be collected What We Need...

My Roblox account was taken over more than a month ago and every attempt I have made with the official support path has stalled. I opened a ticket, verified everything they asked, yet the agent eventually said my ownership “could not be verified” and closed the chat. I still cannot log in and the account shows activity that isn’t mine. I need someone who knows the inner workings of Roblox’s recovery process—escalation routes, proof-of-ownership requirements, and the exact language that convinces Trust & Safety to reopen a closed case. If you have previously restored accounts after long periods of compromise, or you maintain contacts who can push a manual review, you are the person I’m looking for. Your goal is simple: regain full access to my accou...

My Roblox account was taken over more than a month ago and every attempt I have made with the official support path has stalled. I opened a ticket, verified everything they asked, yet the agent eventually said my ownership “could not be verified” and closed the chat. I still cannot log in and the account shows activity that isn’t mine. I need someone who knows the inner workings of Roblox’s recovery process—escalation routes, proof-of-ownership requirements, and the exact language that convinces Trust & Safety to reopen a closed case. If you have previously restored accounts after long periods of compromise, or you maintain contacts who can push a manual review, you are the person I’m looking for. Your goal is simple: regain full access to my accou...

I need a complete ecommerce ecosystem built as a responsive website plus native Android and iOS apps. The platform must recognise four distinct user types—customers, vendors, delivery partners and the super-admin—each entering through a separate login window and viewing only the tools intended for their role. Customer side I want shoppers to enjoy the usual conveniences of a modern store: intuitive browsing, fast search and filter options, a smooth checkout flow and the ability to follow their order from payment through delivery. Vendor side Every seller should be able to add or edit products, confirm or reject orders and keep an eye on basic sales metrics from a clean dashboard. Delivery-partner side Drivers will log in to receive assignments, update delivery status i...

Freelancer Proposal: Social Media & Account Recovery Investigation Client Name: Joshua Cornett Timeline: Three weeks from receipt of purchase order Budget: Approximately $2,500 Project Overview I am seeking an experienced cybersecurity or digital forensics specialist to recover and secure multiple compromised accounts and investigate unauthorized access across platforms. Affected Accounts & Systems - Multiple Microsoft accounts linked to my Gmail account - Outlook account associated with a specific domain - Amazon account - Contacts and digital business cards (BCF cards) - Other connected services or linked applications Scope of Work 1. Account Recovery Assistance - Recover access to all affected accounts - Remove unauthorized users, emails, or ...

I need a seasoned ethical hacker to probe my public-facing web applications and surface every weakness before attackers do. The core goal is to identify vulnerabilities; no remediation work is required at this stage, but I do want clear, reproducible evidence for each flaw. Scope The assessment must cover the full web stack—front-end, back-end, APIs and any server-side components tied to the apps. Automated scanning is fine as a first pass, yet I expect you to validate every finding manually and look beyond scanner results for business-logic or access-control issues. High-priority findings Please focus your efforts on: • SQL injection • Cross-site scripting (XSS) • Cross-site request forgery (CSRF) You are free to uncover and report additional issue type...

PROJECT OBJECTIVE Our objective is not simply to repair tracking or solve isolated issues. We want to establish a secure, scalable, fully documented, company-owned eCommerce infrastructure that can operate independently of any individual freelancer, agency, or contractor in the future. Before any implementation work begins, the selected freelancer must perform a complete infrastructure review and provide a professional recommendation explaining whether: 1. The current environment should be repaired and optimized, or 2. A complete rebuild is the safer and more sustainable long-term solution. We are fully open to rebuilding from scratch if that results in better security, cleaner architecture, improved performance, and complete company ownership. PROJECT PRIORITIES Priority 1 — ...

Fortinet Firewall Implementation Onsite Engineer Location: UAE (Onsite) Client: Dell Technologies Employment Type: Contract Project Duration: 4 Months Experience Required: 7+ Years Preferred Budget: AED 15,000 – 18,000 per month Notice Period: Immediate to 30 Days Job Summary We are looking for an experienced Fortinet Firewall Implementation Engineer to support a large-scale onsite deployment and migration project in the UAE. The ideal candidate should possess strong hands-on expertise in Fortinet security solutions, including FortiGate Firewalls and FortiAnalyzer. Candidates with additional experience in FortiManager will be highly preferred. The engineer will be responsible for firewall implementation, migration, configuration, optimization, troubleshooting, and support activit...

I run a healthcare-focused IoT platform built entirely on ThingBoard and I’m ready to hand the technical reins to an expert for the next twelve months. The scope is end-to-end: you will keep the platform healthy, extend it with new functionality, and guard its security posture. The environment is used daily for patient monitoring and management and must interface cleanly with existing information systems, so stability and clean integrations are critical. Day-to-day you’ll review device telemetry flows, fine-tune rule chains, roll out version upgrades, patch vulnerabilities, and design fresh dashboards or API endpoints whenever clinical teams request them. Where integration work is needed you’ll coordinate with our in-house developers to stitch ThingBoard services into ...

I need help setting up a solution to hide my location while using Remote Desktop on Windows and Duo app to log into applications. Key Requirements: - Must work without administrative access - Should be reliable for daily remote work Ideal Skills: - Experience with VPNs or similar tools - Familiarity with Remote Desktop and Duo security protocols

I need to migrate several Dreamweaver-built websites to WordPress. Some of these sites are e-commerce, while others are blogs. Objectives are to add SEO functionlaity, move away from using Dreamweaver, add e-commerce functions of order and payment processing to some of the sites--with a comatible host. Requirements: - Transfer text articles, product listings, and image galleries. - Integrate essential SEO and e-commerce plugins. Ideal Skills and Experience: - Proficiency in WordPress and Dreamweaver. - Experience with SEO and e-commerce plugin integration. - Strong content migration skills, especially for diverse content types. - Attention to detail and ability to maintain site integrity during migration. 8 sites are involved; could be combined if desirable, perhaps to 4 or fewer if in...

أبحث عن مطوّر يجيد العمل على جملة لتشييد موقع شركتي بثلاث صفحات أساسية: الصفحة الرئيسية، صفحة للخدمات، ونموذج تواصل فعال. أريد للموقع أن يعمل بسلاسة على الهواتف وجميع المقاسات الأخرى، مع أداء سريع وتحسين أساسي لمحركات البحث. ليس لدي قالب محدّد حتى الآن، لذلك أحتاج إلى نصيحتك في اختيار تصميم أنسب لطبيعة نشاطنا، مع الحفاظ على هوية ألواننا المفضّلة: الأحمر والرمادي. أقدّر أن تقترح أكثر من خيار قالب متوافق مع جملة وتشرح لي مزايا كل خيار قبل البدء بالتطوير. بعد اعتماد القالب سنمضي مباشرة في: • بناء الصفحات الثلاث ومحتواها التجريبي. • ضبط الاتصال الآمن HTTPS وتكوينه. • إعداد نموذج التواصل وربطه برسائل بريدي الإلكتروني للاختبار. • تهيئة الموقع لسرعة التصفح والأجهزة المحمولة. • تسليم دليل مبسّط يشرح طريقة تحديث المحتوى من لوحة تحكم جملة. يفضّل أن يكون لديك خبرة ...

I’m finishing up a new site and now need a compact, well-structured module that lets visitors create an account, log in, and stay logged in securely. The essentials are: • User registration and login flows built with clean, commented code • Real-time password-strength validation (a visible meter plus server-side verification that enforces length, mixed-character rules, etc.) • Proper hashing (bcrypt/Argon2) and salting of all stored passwords • Session handling that prevents fixation and hijacking • Clear setup notes so I can drop the module into my existing stack (PHP/MySQL or Node/PostgreSQL—whichever you’re fastest with) Please keep the UI minimal; I’ll handle styling later. A quick demo page, SQL schema, and brief README ar...

I need an expert to secure my computer and eliminate unauthorized password changes. Key requirements: - Identify and remove any existing malware or unauthorized access points. - Strengthen security protocols to prevent future breaches. - Provide a report on vulnerabilities and how to fix them. Ideal skills and experience: - Expertise in cybersecurity - Experience with malware removal - Strong knowledge of securing personal computers

I need a Google Workspace administrator to tighten up our email security during the initial account setup. The primary goal is to reduce spam before it ever reaches our users’ inboxes, so you’ll be working inside the Admin Console to configure advanced spam-filtering rules, SPF, DKIM, and DMARC records. Deliverables • Verify and publish correct SPF, DKIM, and DMARC records for the domain • Configure custom spam filters and routing rules to block spoofed or bulk mail • Provide a brief hand-off document outlining the changes and how to maintain them Acceptance criteria: zero DMARC failures on testing tools and a noticeable drop in unsolicited mail during the first week of monitoring. I've used sendgrid and a few other services in the past so there h...

Sto cercando uno sviluppatore senior con provata esperienza in React Native (Expo), FastAPI e MongoDB per realizzare un audit tecnico completo di PitchPoint, la nostra piattaforma che connette imprenditori e investitori tramite pitch video in stile TikTok. Focus principale La parte più critica è l’architettura backend FastAPI, con particolare attenzione a sicurezza e autenticazione. Voglio capire esattamente dove siamo esposti, quali best practice mancano e come intervenire in modo rapido ed efficace. Obiettivi dettagliati – Passare in rassegna tutto il codice esistente (frontend Expo + backend FastAPI). – Individuare bug di UI/UX e problemi di layout responsive su mobile. – Analizzare e ottimizzare le performance del feed video. – Verifi...

Înregistrează-te sau Conectează-te pentru a vedea detaliile.

I’m building an Android app that must ship with truly robust, “ethical-hacker-grade” protection. The single most important piece is a custom security module that monitors everything users do inside the app and flags anything suspicious. Here’s what I need you to deliver: • A lightweight, unobtrusive activity-monitoring component that captures user behaviour events in real time. • Intelligent tracking logic: distinguish normal navigation from potentially risky actions, then push those events to my existing backend through secure, encrypted calls. • Clear, well-structured code (Kotlin or Java) plus concise documentation so I can maintain and extend the module later. • A quick demonstration APK and companion README showing how to plug the c...

I need an experienced ethical hacker who can accurately trace the real-world IP and physical location associated with a suspected identity-theft incident on my platform. The objective is to gather verifiable evidence of where the malicious access originated so I can hand it to my legal and compliance teams. Scope of work • Analyse server and application logs I will supply (raw Apache/Nginx logs, Cloudflare records, plus limited VPN/proxy data). • Correlate timestamps, user-agent strings, and any packet captures to map each login back to its most probable exit node. • Bypass or reveal VPN, proxy, or Tor masking techniques when feasible, using OSINT, passive DNS, traceroute, WHOIS, Shodan, and similar tools. • Deliver a concise report that lists: – Conf...

I'm looking for an experienced Rust server developer to set up a game server for me. The main tasks involve server configuration and plugin installation. Key requirements: Complete server setup; Installation of paid plugins; BattleMetrics integration; Discord with bots; VIP store; Website; Loot balancing; Wipe system; Ideal skills and experience: - Proven experience managing Rust servers. - Familiarity with various Rust plugins. - Solid knowledge of server configuration and optimization. - Ability to ensure secure and stable server performance.

I am launching a finance-focused website that will operate under one domain yet serve visitors from several countries. The entire build must be done on WordPress—no other CMS or custom framework. Core purpose The site will position itself squarely in the finance space and concentrate on offering online loan services. Content, page flow, and any plug-ins you choose should keep that single goal in mind: guiding users from different regions to the right loan information, eligibility checks, and application pathways. Key requirements • A structure that supports multiple national audiences while remaining on one top-level domain (country-specific sub-folders or sub-directories are fine, but not separate domains). • Clear, compliant presentation of loan products—rat...

I already have a Windows machine ready and now need SoftEther configured on it so my team can reach internal resources securely from outside the office. The goal is simple: establish reliable, encrypted remote access using SoftEther’s VPN Server and standard username-and-password authentication. Here’s what I need from you: • Install or verify the latest SoftEther VPN Server on Windows, applying best-practice security settings. • Create the necessary virtual hub, user accounts and access lists so only authorised users can connect. • Configure port forwarding on the router / firewall to expose the correct SoftEther listener ports and confirm they are reachable from the internet. • Provide a brief, clear hand-off document (or screen-recorded walk-thro...