Fermé

Security Audit/Threat Assessment using STRIDE model

Hi, we have a small website consists of 6 pages build using react and nodeJS.

We want a security audit of the website and threat assessment based off a threat model called STRIDE.

We just want to understand what areas we have tested and what areas don't need improvement and what areas do need improvement and what those improvements are.

- You need to write up what you found into a document for us.

- And write not just the things that can be improved but also the things that are okay.

For our understanding we want to know what the possible areas of attack are and what we have done to prevent it.

We will probably use this in the ISO 27001 audit that we are doing soon.

To show documentation of our procedures.

Please start your bid with "Security Audit" so we can know you have read the requirements.

Thanks

Compétences : Sécurité Web, Sécurité Internet, Certified Information Systems Security Professional (CISSP), Sécurité Informatique, node.js

Concernant l'employeur :
( 0 commentaires ) Una, India

Nº du projet : #21273156

11 freelance font une offre moyenne de $191 pour ce travail

srmukul2

Hi there! May Peace Be Upon You !! I am a Certified Ethical Hacker and Pen Tester. I just love hacking and breaking the rules, but don’t get me wrong as I said I am an ethical hacker. @Certified at Windows Security Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 7 jours
(10 Commentaires)
5.0
SAMWEL729

Security Audit. I am an experienced ethical hacker with over 8+ years experience in Cyber Security field. I have helped secure a number of Applications and thus i would like to work for you. I have a clear understandin Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 2 jours
(1 Évaluation)
1.6
pgv96

I work as a junior web penetration tester. VAPT is my field. I do use automatic tools such as nessus,burp acunetix but the manual penetration is the most important part where you can find sqli,xss, privillege escalatio Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 7 jours
(1 Évaluation)
1.2
Uditi1

Greetings,  It is my understanding that you are looking for an information security professional who can perform deep pentest/black box penetration test on your web application. Being an Information security professi Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 5 jours
(1 Évaluation)
0.4
imasharma83

Hi, I read your job detail, I am ready to start ASAP. I have 6+ years of experience as a full-stack developer (Expertize in E-commerce, Magento, PSD to Shopify, Wix, PSD to WordPress, Webflow, Woocommerce, Php, Html, Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 7 jours
(0 Commentaires)
0.0
kpratik99

I have in depth knowledge in SQL Injection, Remote Code Execution, Local File Inclusion, Remote File Inclusion, XXS, CSRF, XXE, DDoS, OWASP Top 10, Server Privilege Escalation. I follow manual penetration testing meth Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 15 jours
(0 Commentaires)
0.0
austinsonger

For our understanding we want to know what the possible areas of attack are and what we have done to prevent it. - I'm a certified ethical hacker and certified security analyst and can do a complete look at the site. Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 7 jours
(0 Commentaires)
0.0
KhanSHabaz

Please share a detail with us we are audit your security parameters and share a vulnerability because now a day's data breaches is most vulnerability

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 3 jours
(0 Commentaires)
0.0
askyadav771

Hello, I hope you are Doing Well. We just read your short project description and understand that you are looking for Web Application/Penetration Tester of your site from the first point. Based on the understanding We Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 7 jours
(0 Commentaires)
0.0
sunilmodhave

19 years of rich experienced with a demonstrated history of working in Cyber Security, Information Security, Systems Audit, Data Center Audits, RBI Cyber Security Framework Implementer, Governance, Risk & Compliance, G Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 7 jours
(0 Commentaires)
0.0
barasec

With a couple of years of experience in Web Application Security, a full-time ongoing career as a Security Analyst in the Penetration Testing field, and more in the Web Application Development sector, I am more than ca Plus

%bids___i_sum_sub_35% %project_currencyDetails_sign_sub_36% AUD en 7 jours
(0 Commentaires)
0.0