Budget: 20000 UAH Deadline: 3 days
Good day!
I can check for vulnerabilities. Are the user passwords safe?
Good day
We have 3 websites that were hacked and socGholish was uploaded
https://accreditedshortcourses.com.au/
https://amandacelebrant.com.au/
Task:
1) Find out how the websites were hacked: Wordpress, Nginx/Apache, Mysql, Operating system.
2) Provide a guide from start to finish on how you were able to find this vulnerability
3) The task is considered completed if the executor can somehow prove that they were able to bypass all levels of protection and do something on the site
4) We do not provide access to the server, logs, or admin panel.
Budget: 20000 UAH Deadline: 3 days
Good day!
I can check for vulnerabilities. Are the user passwords safe?
>4) Мы не предоставляем доступов к серверу, к логам, в админку вп.
А как работать ?)
Это невозможно, не имея доступа к бекенду. 99% причина вирусов у вордпресса дырявые плагины и темы.
Ну ведь кто-то смог загрузить нам вирус
наша цель не натыкать защиты посредством ограничения прав доступа пользователя и прочего
наша цель понять каким образом и через что загрузили нам вирус и предоставить своим клиентом защиту от подобного как решение.
Пункт ТЗ касательно !не даем доступы" из-за вашего не понимания и глупости.
Надо доступы, надо смотреть какие установлены плагины, искать по базе CVE.
А в слепую никто ничего делать из адекватных специалистов не будет.
I'm gathering a team for the development of a large project, please write if you want to receive a stable monthly salary and live for free in a hotel in Bukovel with spa and meals, We will discuss the salary over the phone,
There is a sim bank as in the photo, we need a person who will connect it to the PC and teach us how to work with it. We just need to receive SMS.
We are looking for an experiencedCybersecurity Specialist / Penetration Tester to perform a security assessment of a web application built with AI. Responsibilities: Perform black-box and white-box penetration testing. Identify security vulnerabilities (OWASP Top 10, API security, authentication, authorization, etc.). Test against common attack vectors such as XSS, SQL Injection, CSRF, SSRF, IDOR, file upload vulnerabilities, and authentication bypass. Review API security and AI-related attack surfaces. Provide a detailed report with findings, severity, proof of concept, and remediation recommendations. Requirements: Fluent English (written and spoken). Proven experience in web application penetration testing. Strong knowledge of OWASP Top 10 and modern web security. Experience testing REST APIs. Ability to provide a professional security report. Relevant certifications (OSCP, PNPT, eJPT, CEH, etc.) are a plus. To apply, please include: Your hourly rate (USD). Your estimated fixed price for this project. Your years of experience. Examples of similar security assessments you have completed. Your English proficiency level
A problem has arisen with how things are heard on the other end; we have gone through a lot but cannot find the issue. We need a competent person who can identify the problem and better configure the telephony. There is also a remote server in this chain that connects via RDP, VPN, and other means. Therefore, the person must understand how it works and check all elements.