Advanced Penetration Tester / Ethical Hacker

A proposal has not yet been provided

Hey I'm interested I'm a Cyber Security Engineer I'm a former black hat hacker as well I have been in the Information Security arena for years Thanks

Have 5+ years of experience in both black box and white box testing penetration testing. Perform VAPT(Vulnerability and penetration testing) services like Web-Application penetration testing; System Application penetration testing; Mobile application penetration testing; Network application penetration testing; social engineering penetration testing etc. Conduct penetration testing in a systematic approach. Follow the standard methodology of the industry like OWASP Testing Guide v4(OTGv4) ; SANS top 25; NIST SP 800-115; PCI DSS to perform penetration testing so that client can concentrate on their professions without worrying about security threats. Web Application Testing: Do web application penetration testing with the latest methodology like OWASP Top-10, SANS Top-25. Perform both manual and automated penetration testing for vulnerabilities like Injection flaws(such as SQL, NoSQL, OS, and LDAP injection etc),Broken Authentication, Sensitive Data Exposure,XML External Entities (XXE), Broken Access Control,Security Misconfiguration, Cross-site scripting(XSS), Insecure Deserialization, Using Components with Known Vulnerabilities,Insufficient Logging & Monitoring. Also perform source code reviews for many technologies like java, .NET, PHP etc. Approach for Manual Web-Application Penetration Testing: Conduct manual testing with following controls: * Configuration and Deployment Management Testing * Identity Management Testing * Authentication Testing * Authorization Testing * Session Management Testing * Input Validation Testing * Testing for Error Handling * Testing for weak Cryptography * Business Logic Testing * Client Side Testing Tools that use for Automated Web Penetration Testing: Acunetix, Burp-Suite, Netsparker, Nexpose, Nikto, IBM Appscan, HP fortify, W3af etc. Network penetration testing:Provide Network Penetration Testing so that your Network Infrastructure is secured from the real world attacks. Do both manual and automated network penetration testing. Approach for Manual Network Penetration Testing: Manually check for IDS/IPS, Server, Networks switch, Network Router, VPN, Firewalls, Anti-virus,Password etc. Tools that use for automated network penetration testing: OpenVas, Wireshark, Nessus, Metasploit, Armitage, Scapy etc.

I have worked over the past year for numerous clients (government and private), conducting extensive VAPT on their web applications, and network.

Detail-oriented, goal-driven, and seasoned professional with more than 19 years of experience in information security. Well-versed in formulating and implementing strategic action plans to continuously improve system security and align with rapidly-changing business needs and threat landscapes. Adept at building, motivating, guiding, and leading high-caliber teams of professionals toward a common goal. Equipped with articulate communication and interpersonal skills in establishing work relationships with professionals of all levels

I'm a security administrator and have a speciality in Ethical Hacking.

As a Certified Ethical Hacker and Forensics Expert, i have the extensive knowledge and experience in AppSec. I'm a former employee from the big consulting firms and now looking to start my own startup.

Manual and automated web application assessment/ penetration test covering the OWASP Top 10 testing framework, with executive summary and summary of findings delivered at completion.

1. end to end security testing for website 2. following OWASP top 10 2013 and 2017 3. Mostly manual testing 4. ready to do Black box and white box security testing

Professional Master Network engineer,Working 10 years + on Cloud,Server ,hosting ,security,Network and Software Architecture technology.