Security testing and Vulnerability Analysis -- 2

$10-50 AUD

Mbyllur

Postuar

8 months ago

$10-50 AUD

Paguhet në dorëzim

Task 1. Security Testing and Vulnerability Analysis For this task, you should use the ZAP project to conduct automated and manual security testing of the project. Describe in detail the steps of your testing and discuss the outcomes of the testing results. You may discuss whether a testing approach is more effective and what you have done to enhance the number and/or the accuracy of the detected vulnerabilities. You are required to analyze 3 potential security vulnerabilities. The 3 vulnerabilities you identify should be of 3 different classes, and you should classify them using 3 distinct CWE codes. Higher marks will be given to vulnerabilities that cover a broader range or are very different in nature. For each of the vulnerabilities, you should write a short report discussing the following: • How the vulnerability was detected, e.g., through one method or a combination of multiple methods/techniques. • A description of the vulnerability, including o typical example(s) of the vulnerability with explanations, o how the vulnerability may be exploited, e.g., example inputs from malicious users that can trigger the attack, and o consequences of the vulnerability being exploited. • A justification of why the vulnerability you identified in the project is indeed a security vulnerability corresponding to the CWE classification. You may achieve this by one or more of the following: o Verify the vulnerability by trying to exploit it and describe in detail what action you performed. o Perform a code review to identify the source code instance, describe where it appears in the project, and provide the code snippets. o Conduct some research and cite references to support your claims. • A recommendation of remediation that would fix the vulnerability or a discussion on why remediation is challenging. Ideally, a fix is provided specific to the project, e.g., by revising the source code. You should not write more than 2 pages for each vulnerability and use an appendix if necessary. The report format for each vulnerability should contain the following headings. • Name: • CWE Code: • Detection: • Description: o Examples: o Exploitation: o Impact: • Justification: o Verification (optional): o Code Source (optional): o Supporting Data (optional): • Remediation:

ID e Projektit: 37257050

Rreth projektit

15 propozime

Projekt në distancë

Aktive 7 mos ago

Po kërkoni të fitoni para?

Adresa e email-it

Përfitimet e ofertës për Freelancer

Vendosni buxhetin dhe afatin tuaj

Paguhuni për punën tuaj

Përshkruani propozimin tuaj

Është falas të regjistrohesh dhe të bësh oferta për punë

15 profesionistët e pavarur ofrojnë mesatarisht $45 AUD oferta për këtë punë

@InoovativeThink

Security testing and Vulnerability Analysis -- 2 I am a Professional writer with 4 years of experience. I assure you I will do my upmost best to meet your requirements. I've written over 500 projects in the last 2 months for satisfied customers. If you are looking for a writer who completes this project on a low budget and short deadline I am the best option for you...... If you are interested in my proposal contact me in the chatbox for more details and queries. Thanks!

$10 AUD në 1 ditë

4,9

(65 përshtypje)

5,4

@cryptophyta

I am an ethical hacker. I have extensive experience using the OWASP Zap application to pentest applications and frameworks. I can find and rate vulnerabilities. I have done similar exercises many times before as well. I usually solve HackTheBox VMs and these kind of tasks often come up. Pay me after the project is done. Its risk free with me. I have a CCNA too.

$49 AUD në 1 ditë

5,0

(7 përshtypje)

3,8

@TheDataAnalysts

Hello, I can help you with the Security texting and Vulnerability analysis and reporting. Kindly text me over the chats we discuss further. Thank you

$120 AUD në 2 ditë

5,0

(4 përshtypje)

3,4

@fahimislam15

Hello, My name is Fahim and I'm a certified ethical hacker (CEH) and professional penetration tester. I specialize in web application penetration testing, Android application pentesting, network penetration testing and malware analysis. I have extensive experience in cybersecurity consultancy, penetration testing, OSINT (Open Source Intelligence) and WordPress security. I understand that you are looking for someone to conduct security testing and vulnerability analysis for your project. Specifically, you require me to use the ZAP project to conduct automated and manual security testing of the project. Additionally, I would need to analyze 3 potential security vulnerabilities in the project. I am confident that I am the best fit for this project due to my extensive knowledge in web application penetration testing, Android application pentesting, network penetration testing and malware analysis as well as WordPress security. This will ensure that all potential security vulnerabilities are detected quickly and accurately so that they can be addressed before they can be exploited by malicious users. Thank You Fahim

$50 AUD në 7 ditë

5,0

(3 përshtypje)

2,8

@mohammadinfosec

Hello, My expertise lies in Vulnerability Assessment/Management and Penetration Testing. I have conducted more than 200 PT assignments related to Infra and Web. Hands-on experience in generating VA & PT reports as per the client's requirement. I will be using Burp Suite instead of ZAP. If you're interested please dm me.

$70 AUD në 5 ditë

0,0

(0 përshtypje)

0,0

@Dhawan8787

Hi there! My name is Narendra and I'm a professional with extensive experience in developing web applications. From my experience, I have learned how to use several technologies such as PHP, Python, Django, Node JS, React JS and Angular JS to create high-quality digital assets that truly resonate with clients.

$30 AUD në 7 ditë

0,0

(0 përshtypje)

0,0

@ITtechsol

Dear Client, When it comes to your project, I am expert. I will provide you with 100% satisfaction with work and full service. It would be great if you hire me. Based on your feedback, I can draft my proposal accurately and from there I can get started. Hence, I look forward to hearing back from you in order to proceed ahead accordingly. Thanks a lot. Regards ZUBAIR FAROOQ

$50 AUD në 2 ditë

0,0

(0 përshtypje)

0,0

@danielfahey1981

Dear Client. Welcome to my profile, Home to Professional and Quality services with 100% customer satisfaction guarantee. I'm a Certified & Experienced Expert in the respective project requirements. Dear Client, I take this opportunity to inform you that i have KEENLY gone through all your project requirements as given in your project description and I confirm to you that i can perfectly deliver as instructed. Being in possession of all CLEARLY STATED required project skills (Computer Security, Research Writing, Technical Writing, Internet Security and Web Security) as this is my area of professional specialisation having completed all Certifications and developed adequate experience in the same area, I hereby humbly request you to consider my bid for Professional, Quality and Affordable services always. STRICT TIMELY DELIVERY & UNLIMITED REVISIONS. Kindly Message Me We Discuss More About The Project and seal the contract. Welcome and Thank-you.

$50 AUD në 1 ditë

0,0

(0 përshtypje)

0,0

@DesignersExpert

Hello Dear, We are a Team and experienced penetration tester with a proven track record in identifying and mitigating security vulnerabilities. Our expertise can help safeguard your systems effectively and efficiently. Let's discuss your project and how we can assist you. don't worry you don't have to hire first. we will show you a few works. if you like our work then you can order. Best regards, tawhidislam45 Thank You

$40 AUD në 2 ditë

0,0

(0 përshtypje)

0,0

@MTcomply

I am a seasoned IT Security professional with more than 10 years experience in this field, having worked more than 30 years in the IT industry. I pride myself in the quality of the work given, always striving to better myself in this field.

$30 AUD në 7 ditë

0,0

(0 përshtypje)

0,0

@Hackstop

Hello there I am part of the team at Hackstop. We specialize in comprehensive security testing, which includes API Security Testing, Vulnerability Assessment and Penetration Testing (VAPT), Mobile Application Penetration Testing, Cloud Security and Code Review. We have a proven track record of success and our expertise ensures that your digital assets remain protected against threats and vulnerabilities. We understand that conducting security testing can be challenging as it requires thorough analysis of source code to identify potential vulnerabilities. This is why we take great pride in our commitment to client satisfaction by prioritizing client satisfaction above all else; this is why we believe that you can trust us to provide you with robust security solutions tailored to your specific requirements. If you're interested in our services please don't hesitate to contact us for any specific requirements or inquiries.

$30 AUD në 7 ditë