Веб-безпека Jobs

My website is currently unreachable for some users because of a DNS resolution problem, and on top of that Cloudflare keeps throwing an SSL certificate error. I need someone who understands both sides of the stack—DNS record management and Cloudflare-based SSL deployment—to sort this out quickly. Here is what I know so far: • DNS: Queries intermittently fail to resolve, so the correct A/AAAA or CNAME entries may be missing, mis-typed, or simply not propagating. • SSL: Cloudflare is showing a certificate mismatch / invalid certificate warning. Full (strict) mode had been enabled previously, but rolling back to flexible hasn’t helped. Your task will be to: 1. Diagnose the root cause of the resolution failures, adjust records in Cloudflare’s DNS dashboard...

My site is suffering from a technical error: nobody can log in. Each attempt immediately returns an “Account locked” message, even with correct credentials. There are no broken links or visible JavaScript errors on the page—just this persistent authentication failure. I need you to trace the root cause in the existing codebase and server configuration, repair it, and confirm that normal login flows work again. Feel free to inspect session handling, database queries, password-hash checks, or any rate-limit logic that might be triggering the lockout. Deliverable: updated code or configuration plus a short report documenting what you changed and proof (screenshots or screencast) that a standard user can sign in successfully.

My GoDaddy-registered domain recently lapsed, and the registrar has swapped in their default parking nameservers. Before the expiry, the domain was pointing to a shared hosting account set up about five years ago. Unfortunately, the original developer is unreachable, I don’t recall which host we used, and I have no legacy emails or paperwork that list the settings. The job is to research and identify the exact nameserver pair (or set) that was active immediately prior to GoDaddy’s parking change. Historical DNS platforms such as SecurityTrails, DomainTools, ViewDNS, WhoisXML, Wayback-powered DNS snapshots, or similar investigative resources will probably be required; feel free to use any method that can produce verifiable results. Deliverable • A clear report showing t...

I need an experienced PHP/OpenCart malware cleanup specialist to help fix an infected OpenCart ecommerce store. Site details: * OpenCart version: 3.0.3.3 * Dedicated server * SSH and SFTP access available * OpenCart admin access available * No recent extensions or major changes added * Store will be migrated to Shopify in 1–2 months, so this is cleanup/stabilization only Issue: * Visitors are randomly redirected to suspicious/malicious pages * Redirect does not happen every time * Redirect happens more often when users visit the cart or add products to cart * Admin area appears normal * Antivirus/browser security tools are showing dangerous site warnings * Issue first appeared around late April, stopped for a while, and has now returned Required work: * Identify the exact redir...

We need an independent third-party penetration test of our production SaaS platform to satisfy a SOC 2 control. We're looking for an experienced, certified penetration tester (OSCP / OSWE / GWAPT / CREST or equivalent) who can start immediately and deliver a professional, audit-ready report. TIMELINE — TIME-SENSITIVE: We need the testing performed and the final report delivered within 1 week of kickoff. Please only bid if you have current availability. ABOUT THE SYSTEM (full details and credentials shared under NDA with the selected tester): - Customer-facing web application: / React / TypeScript - Backend: Python / Django / Django REST Framework API - Authentication: Keycloak (OIDC) — username/password, social login, TOTP/MFA - Two supporting Python/Django microservices ...

My site has started throwing form-submission errors and overall page speed has dipped, so I need a focused cleanup. The first priority is to get every form submitting reliably again. While you’re inside the form logic, please switch the date field to the new format I’ll supply, introduce a couple of new data fields, and strip out any obsolete ones I point out. Loading time is the next pain point. I’m looking for pragmatic optimisation—compressing heavy assets, tweaking queries, improving caching—whatever brings the site back to a snappy response without a full rebuild. Finally, the WhatsApp button needs a quick tweak: change the pre-filled message text so that it pulls a short template I’ll provide. The button’s position and core functionality ca...

My site is showing a few stubborn functionality errors—most notably a date that refuses to update correctly—so the first task is to track those down and put them right. After the front-end is behaving, I want a thorough look at the database to confirm everything is healthy and consistent before we move on. While you have access, please harden the security of the entire installation. I’m already running over HTTPS, but I’d like you to double-check certificates, permissions, and any obvious gaps that could expose user data. Deliverables • Functionality errors fixed (including the date issue) • Database health report with any corrective actions applied • Security hardening completed and documented (SSL verified, permissions tightened) I’...

I'm looking for an experienced mobile app developer to create an app for both iOS and Android platforms. Please include your relevant experience in your application. Ideal Skills and Experience: - Proficiency in React Native, Flutter, or similar cross-platform frameworks - Strong knowledge of both iOS and Android design guidelines - Experience with API integrations - Familiarity with app store submission processes - Ability to deliver high-quality, bug-free code Please share your past projects and ensure your bids are within the budget.

Project Description: I am looking for a skilled developer who can help me reduce the high server resource consumption of my information website in WordPress. The current average server resource consumption is high, and I am currently using plugins or tools to optimize server resources. Main requirements: - Optimize server resource consumption to improve website performance and speed - Identify and fix any inefficient code that may be causing high server resource consumption Ideal skills and experience: - Strong expertise in WordPress development and optimization - In-depth knowledge of server resource optimization techniques - Proficient in identifying and fixing inefficient code - Experience in working with information websites and handling high traffic If you have the necessary skill...

انتهيت تقريباً من تطوير موقعي الخدمي المبني على نظام مخصص يحمل اسم “Lovely”، وأحتاج الآن إلى عين خبيرة تتولى المرحلة الحاسمة قبل الإطلاق. المطلوب هو إنجاز الآتي: • تنفيذ اختبار اختراق (Pen-Testing) شامل يحدد أي ثغرات ويسلّم توصيات قابلة للتنفيذ. • تحليل الشيفرة المصدرية للتأكد من جودة الكود وامتثاله لأفضل ممارسات الأمان. • مراجعة إعدادات الخادم (Firewall، SSL/TLS، Headers، DNS وغيرها) وضبطها نهائياً. بعد إقفال المسائل الأمنية أريد متابعة دعم لمدة شهر بعد الإطلاق: الردّ على الأحداث الطارئة، تطبيق التحديثات والتحسينات الصغيرة، وتقديم نصائح دورية للحفاظ على الأداء. هناك فكرة مطروحة بسحب بيانات الموقع إلى منصة جاهزة بديلة؛ أود سماع رأيك المهني أولاً قبل اتخاذ قرار الانتقال من البنية الحالية. سلّم لي في نهاية العمل: 1. تقرير مفصل عن الثغرات والإصلاحات. 2. ...

My Roblox account was taken over more than a month ago and every attempt I have made with the official support path has stalled. I opened a ticket, verified everything they asked, yet the agent eventually said my ownership “could not be verified” and closed the chat. I still cannot log in and the account shows activity that isn’t mine. I need someone who knows the inner workings of Roblox’s recovery process—escalation routes, proof-of-ownership requirements, and the exact language that convinces Trust & Safety to reopen a closed case. If you have previously restored accounts after long periods of compromise, or you maintain contacts who can push a manual review, you are the person I’m looking for. Your goal is simple: regain full access to my accou...

My Roblox account was taken over more than a month ago and every attempt I have made with the official support path has stalled. I opened a ticket, verified everything they asked, yet the agent eventually said my ownership “could not be verified” and closed the chat. I still cannot log in and the account shows activity that isn’t mine. I need someone who knows the inner workings of Roblox’s recovery process—escalation routes, proof-of-ownership requirements, and the exact language that convinces Trust & Safety to reopen a closed case. If you have previously restored accounts after long periods of compromise, or you maintain contacts who can push a manual review, you are the person I’m looking for. Your goal is simple: regain full access to my accou...

I need a complete ecommerce ecosystem built as a responsive website plus native Android and iOS apps. The platform must recognise four distinct user types—customers, vendors, delivery partners and the super-admin—each entering through a separate login window and viewing only the tools intended for their role. Customer side I want shoppers to enjoy the usual conveniences of a modern store: intuitive browsing, fast search and filter options, a smooth checkout flow and the ability to follow their order from payment through delivery. Vendor side Every seller should be able to add or edit products, confirm or reject orders and keep an eye on basic sales metrics from a clean dashboard. Delivery-partner side Drivers will log in to receive assignments, update delivery status i...

Freelancer Proposal: Social Media & Account Recovery Investigation Client Name: Joshua Cornett Timeline: Three weeks from receipt of purchase order Budget: Approximately $2,500 Project Overview I am seeking an experienced cybersecurity or digital forensics specialist to recover and secure multiple compromised accounts and investigate unauthorized access across platforms. Affected Accounts & Systems - Multiple Microsoft accounts linked to my Gmail account - Outlook account associated with a specific domain - Amazon account - Contacts and digital business cards (BCF cards) - Other connected services or linked applications Scope of Work 1. Account Recovery Assistance - Recover access to all affected accounts - Remove unauthorized users, emails, or ...

I need a seasoned ethical hacker to probe my public-facing web applications and surface every weakness before attackers do. The core goal is to identify vulnerabilities; no remediation work is required at this stage, but I do want clear, reproducible evidence for each flaw. Scope The assessment must cover the full web stack—front-end, back-end, APIs and any server-side components tied to the apps. Automated scanning is fine as a first pass, yet I expect you to validate every finding manually and look beyond scanner results for business-logic or access-control issues. High-priority findings Please focus your efforts on: • SQL injection • Cross-site scripting (XSS) • Cross-site request forgery (CSRF) You are free to uncover and report additional issue type...

PROJECT OBJECTIVE Our objective is not simply to repair tracking or solve isolated issues. We want to establish a secure, scalable, fully documented, company-owned eCommerce infrastructure that can operate independently of any individual freelancer, agency, or contractor in the future. Before any implementation work begins, the selected freelancer must perform a complete infrastructure review and provide a professional recommendation explaining whether: 1. The current environment should be repaired and optimized, or 2. A complete rebuild is the safer and more sustainable long-term solution. We are fully open to rebuilding from scratch if that results in better security, cleaner architecture, improved performance, and complete company ownership. PROJECT PRIORITIES Priority 1 — ...

Fortinet Firewall Implementation Onsite Engineer Location: UAE (Onsite) Client: Dell Technologies Employment Type: Contract Project Duration: 4 Months Experience Required: 7+ Years Preferred Budget: AED 15,000 – 18,000 per month Notice Period: Immediate to 30 Days Job Summary We are looking for an experienced Fortinet Firewall Implementation Engineer to support a large-scale onsite deployment and migration project in the UAE. The ideal candidate should possess strong hands-on expertise in Fortinet security solutions, including FortiGate Firewalls and FortiAnalyzer. Candidates with additional experience in FortiManager will be highly preferred. The engineer will be responsible for firewall implementation, migration, configuration, optimization, troubleshooting, and support activit...

I run a healthcare-focused IoT platform built entirely on ThingBoard and I’m ready to hand the technical reins to an expert for the next twelve months. The scope is end-to-end: you will keep the platform healthy, extend it with new functionality, and guard its security posture. The environment is used daily for patient monitoring and management and must interface cleanly with existing information systems, so stability and clean integrations are critical. Day-to-day you’ll review device telemetry flows, fine-tune rule chains, roll out version upgrades, patch vulnerabilities, and design fresh dashboards or API endpoints whenever clinical teams request them. Where integration work is needed you’ll coordinate with our in-house developers to stitch ThingBoard services into ...

I need help setting up a solution to hide my location while using Remote Desktop on Windows and Duo app to log into applications. Key Requirements: - Must work without administrative access - Should be reliable for daily remote work Ideal Skills: - Experience with VPNs or similar tools - Familiarity with Remote Desktop and Duo security protocols

I need to migrate several Dreamweaver-built websites to WordPress. Some of these sites are e-commerce, while others are blogs. Objectives are to add SEO functionlaity, move away from using Dreamweaver, add e-commerce functions of order and payment processing to some of the sites--with a comatible host. Requirements: - Transfer text articles, product listings, and image galleries. - Integrate essential SEO and e-commerce plugins. Ideal Skills and Experience: - Proficiency in WordPress and Dreamweaver. - Experience with SEO and e-commerce plugin integration. - Strong content migration skills, especially for diverse content types. - Attention to detail and ability to maintain site integrity during migration. 8 sites are involved; could be combined if desirable, perhaps to 4 or fewer if in...

أبحث عن مطوّر يجيد العمل على جملة لتشييد موقع شركتي بثلاث صفحات أساسية: الصفحة الرئيسية، صفحة للخدمات، ونموذج تواصل فعال. أريد للموقع أن يعمل بسلاسة على الهواتف وجميع المقاسات الأخرى، مع أداء سريع وتحسين أساسي لمحركات البحث. ليس لدي قالب محدّد حتى الآن، لذلك أحتاج إلى نصيحتك في اختيار تصميم أنسب لطبيعة نشاطنا، مع الحفاظ على هوية ألواننا المفضّلة: الأحمر والرمادي. أقدّر أن تقترح أكثر من خيار قالب متوافق مع جملة وتشرح لي مزايا كل خيار قبل البدء بالتطوير. بعد اعتماد القالب سنمضي مباشرة في: • بناء الصفحات الثلاث ومحتواها التجريبي. • ضبط الاتصال الآمن HTTPS وتكوينه. • إعداد نموذج التواصل وربطه برسائل بريدي الإلكتروني للاختبار. • تهيئة الموقع لسرعة التصفح والأجهزة المحمولة. • تسليم دليل مبسّط يشرح طريقة تحديث المحتوى من لوحة تحكم جملة. يفضّل أن يكون لديك خبرة ...

I’m finishing up a new site and now need a compact, well-structured module that lets visitors create an account, log in, and stay logged in securely. The essentials are: • User registration and login flows built with clean, commented code • Real-time password-strength validation (a visible meter plus server-side verification that enforces length, mixed-character rules, etc.) • Proper hashing (bcrypt/Argon2) and salting of all stored passwords • Session handling that prevents fixation and hijacking • Clear setup notes so I can drop the module into my existing stack (PHP/MySQL or Node/PostgreSQL—whichever you’re fastest with) Please keep the UI minimal; I’ll handle styling later. A quick demo page, SQL schema, and brief README ar...

I need an expert to secure my computer and eliminate unauthorized password changes. Key requirements: - Identify and remove any existing malware or unauthorized access points. - Strengthen security protocols to prevent future breaches. - Provide a report on vulnerabilities and how to fix them. Ideal skills and experience: - Expertise in cybersecurity - Experience with malware removal - Strong knowledge of securing personal computers

Будь ласка, зареєструйтесь або увійдіть в систему для перегляду деталей.

I’m building an Android app that must ship with truly robust, “ethical-hacker-grade” protection. The single most important piece is a custom security module that monitors everything users do inside the app and flags anything suspicious. Here’s what I need you to deliver: • A lightweight, unobtrusive activity-monitoring component that captures user behaviour events in real time. • Intelligent tracking logic: distinguish normal navigation from potentially risky actions, then push those events to my existing backend through secure, encrypted calls. • Clear, well-structured code (Kotlin or Java) plus concise documentation so I can maintain and extend the module later. • A quick demonstration APK and companion README showing how to plug the c...

I need an experienced ethical hacker who can accurately trace the real-world IP and physical location associated with a suspected identity-theft incident on my platform. The objective is to gather verifiable evidence of where the malicious access originated so I can hand it to my legal and compliance teams. Scope of work • Analyse server and application logs I will supply (raw Apache/Nginx logs, Cloudflare records, plus limited VPN/proxy data). • Correlate timestamps, user-agent strings, and any packet captures to map each login back to its most probable exit node. • Bypass or reveal VPN, proxy, or Tor masking techniques when feasible, using OSINT, passive DNS, traceroute, WHOIS, Shodan, and similar tools. • Deliver a concise report that lists: – Conf...