Seguridad web Jobs

I'm looking for an experienced PHP developer to enhance my website's performance and maintain its security. Key Tasks Include: - Fixing performance issues in existing PHP code. - Optimizing for faster load times and reduced server load. - Maintaining and updating sites by: - Keeping security certificates current. - Updating outdated software. Ideal Skills and Experience: - Strong proficiency in PHP. - Experience with performance tuning. - Familiarity with security protocols and site maintenance. Please provide examples of similar work done.

My website is down due to a malware attack, likely caused by vulnerable WordPress plugins. It's hosted on a Big Rock managed VPS server. I need an experienced WordPress developer to: - Troubleshoot the issue - Quickly restore full functionality Ideal skills and experience: - Strong knowledge of WordPress and experience with malware removal - Familiarity with Big Rock managed VPS servers - Expertise in plugin management and site security - Ability to work efficiently and communicate effectively Please provide a detailed plan and timeline with your bids.

My website is down due to a malware attack, likely caused by vulnerable WordPress plugins. It's hosted on a Big Rock managed VPS server. I need an experienced WordPress developer to: - Troubleshoot the issue - Quickly restore full functionality Ideal skills and experience: - Strong knowledge of WordPress and experience with malware removal - Familiarity with Big Rock managed VPS servers - Expertise in plugin management and site security - Ability to work efficiently and communicate effectively Please provide a detailed plan and timeline with your bids.

I run a corporate website and need a reliable IT pro to guard it around the clock and keep our pages visible in Google. At the moment no formal security stack is in place, so the first priority is to harden the site—firewall, malware scanning, secure backups, the works—then keep intruders out through continuous monitoring. Equally important is making sure every page is indexed and healthy in Search. You’ll watch Google Search Console, fix crawl or coverage issues, and adjust on-page SEO so new content is picked up quickly. Key deliverables • Deploy and configure security measures from day one (SSL best-practice, web-application firewall, automated backups, vulnerability scans). • Set up 24/7 monitoring with instant alerts for intrusion attempts or down...

Kailangan kong mailagay ang Google ReCaptcha sa aking existing na login form para maprotektahan ito laban sa spam at automated bots. Naka-set up na ang front-end at back-end ng site; ang kulang na lang ay ang tamang pag-encode, pag-display, at pag-validate ng ReCaptcha bago payagang mag-sign-in ang user. Ano ang inaasahan ko: • I-configure ang ReCaptcha keys sa server at sa client side. • Idagdag ang widget sa login page at siguruhing maayos itong maglo-load sa lahat ng major browsers. • I-update ang server-side authentication flow para suriin muna ang ReCaptcha token bago iproseso ang username at password. • Magbigay ng maikling dokumentasyon o README na naglalarawan kung saan inilagay ang code, paano palitan ang site/secret keys, at paano i-toggle ang feature k...

My WordPress site already runs on TutorLMS, but it’s still on the free tier. I need it upgraded to TutorLMS Pro via your agency-level licence so the new features activate seamlessly and future updates remain covered. Deliverables • TutorLMS Pro installed and activated under your agency account • A pro educational theme configured, branded with my colours and logo • Any broken links fixed or redirected • User Dashboard reviewed and adjusted for full functionality on desktop and mobile I will provide admin credentials and brand assets.

My site is showing indexing errors in Google Search Console and many pages are simply not making it into the index. I need a specialist to investigate why Google is skipping these URLs, correct the underlying technical causes, and guide me through a clean re-submission so every eligible page is crawled and indexed properly. Your job is to pinpoint the problem—whether it’s crawlability, canonical tags, rules, or anything else—and then fix it or provide clear, actionable instructions I can implement. Please aim to have the issue fully resolved and the pages re-crawled within the next month.

My TikTok account was recently hacked and, frustratingly, the attacker also changed the linked email and phone number, so I no longer have any way to reset the login myself. I reached out to TikTok support, but their final reply was that they can’t help any further. I need someone who already knows the inner workings of TikTok’s recovery process—appeals, proof-of-identity submissions, escalation channels, or any other legitimate method—to get the profile fully back under my control. If there are forms, notarised IDs, or support tickets to file, you’ll handle or guide me through each step and keep track of where the case stands. Deliverables • Successful restoration of full access to the account, including username, followers, and previous content ...

I have just subscribed to Google Workspace and now need the email side configured from start to finish. The scope is focused only on setting up 1–5 user mailboxes; Drive, Calendar and any other apps are outside this engagement. Here is what I expect: • Create the Workspace organisation and up to five user accounts under my primary domain. • Add and verify the domain in Google Admin, then update DNS (MX, SPF, DKIM, DMARC) so messages land reliably in inboxes. • Apply basic security best-practices—password policy, 2-step verification prompt and blocked forwarding to external addresses. • Set up at least one alias and a catch-all address. • Provide a brief hand-over document explaining how to add users, recover passwords, and access webmail and th...

When I search for preferred mobile numbers on the Jio Self-Care portal, the site blocks further queries after a short burst of activity and keeps me locked out for roughly 20–22 hours. All signs point to a request-based rate-limiting mechanism. Your job is to dive into the traffic, confirm exactly how that limit is enforced, and then craft a sustainable fix by elevating or adjusting the account-side privileges rather than relying on short-lived technical hacks. Here is what I expect: • Packet-level and header analysis to pinpoint the trigger condition (endpoint, count, timeframe, hidden token, etc.). • A documented explanation of the underlying rate-limit logic. • A practical solution centred on improving the account’s standing/privileges so searches can...

The site is currently live on the Lovable platform and must be moved to a stronger, more performant stack— is my first choice, though I’m open to any framework that can match its speed and keep overall costs in check. My top priority is noticeably higher performance once the migration is complete. Scope of work • Replicate all existing functionality on the new stack and optimise the overall performance profile. • Elevate user interaction by introducing fresh, interactive features that feel snappy and intuitive. • Implement rock-solid, OTP-enabled payment flows and verify they work across desktop and mobile. • Integrate Google Maps where required and configure branded, reliable email dispatch. • Harden security throughout the migration to ensu...

My WordPress website is currently displaying a "There has been a critical error on this website" message, making the site inaccessible for visitors and administrators. I need a skilled WordPress developer to investigate the issue, identify the root cause, and restore the website to full functionality. The problem may be related to: - Plugin conflicts - Theme issues - PHP version compatibility - Corrupted WordPress files - Database errors - Server configuration problems The website should be fully tested after the fix to ensure everything is working correctly. Quick communication and fast delivery are required.

I’m looking for a seasoned ethical hacker to take a deep dive into my production-level web applications and help me harden them against real-world threats. The goal is straightforward: expose anything that could be exploited and give me clear, actionable steps to strengthen security. You’ll have full, authorized scope to simulate attacks just as a malicious actor would—SQL injection, cross-site scripting, authentication bypass, misconfigured cloud services, the works—while staying within the bounds of responsible disclosure. Modern tooling such as Burp Suite Pro, OWASP ZAP, Kali Linux and manual code-review techniques are welcome, provided every finding is thoroughly validated. Deliverables: • A comprehensive report that ranks each vulnerability by severity a...

improve the website and company reviews!

I manage several WordPress sites that need a full refresh and hardening. First, every installation must be brought current—core, all plugins, themes, and any media elements that could break after version changes. Once everything is up to date, I want security locked down. My highest priorities are: • A properly configured firewall (Wordfence, Sucuri, or similar) • Strong user-authentication controls with 2FA, password policies, and limited-login protection • Continuous malware scanning with automatic alerts and clean-up procedures Current pain points include repeated unauthorized access attempts, a few outdated plugins/themes, and sporadic malware or suspicious-activity notices from the host. I need each issue identified, removed, and documented with a clear &...

I manage several WordPress sites that need a full refresh and hardening. First, every installation must be brought current—core, all plugins, themes, and any media elements that could break after version changes. Once everything is up to date, I want security locked down. My highest priorities are: • A properly configured firewall (Wordfence, Sucuri, or similar) • Strong user-authentication controls with 2FA, password policies, and limited-login protection • Continuous malware scanning with automatic alerts and clean-up procedures Current pain points include repeated unauthorized access attempts, a few outdated plugins/themes, and sporadic malware or suspicious-activity notices from the host. I need each issue identified, removed, and documented with a clear &...

For hiring a developer, you should not explain only the idea — you should explain the **problem, solution, features, technology, and expected result**. This will attract better developers. Copy this description # Project: Buildora – All-in-One Interior Business Management App ## About the Project I am looking for an experienced mobile app developer to build a professional business management application specifically designed for interior designers, contractors, builders, and small construction businesses. The main goal of this app is to solve real business problems like expense control, worker payments, client management, quotations, project tracking, and maintaining proper records with proof. The app should be simple, premium, fast, and easy to use even for people who a...

I need a seasoned security specialist to dive into our online card-and-board-game platform and expose any path an ordinary player might use to escalate privileges through the interface. That is the single most critical outcome of this engagement. While you work, I also want you to examine the WebSocket layer—specifically its data-encryption implementation—to be sure that every message travelling between client and server stays confidential and tamper-proof. You’ll be looking at live traffic the same way a determined attacker would, so expect to spend time in Wireshark or a similar PCAP tool as you capture sessions, replay them, and probe for weaknesses. If deeper packet analysis or anomaly hunting becomes necessary, I’m open to extending the scope, but the first mi...

My Google Business profile has been taken over by someone else and I no longer have access to the original email tied to the listing. I have not yet contacted Google support or changed any passwords, so we’re starting from scratch. What I do have are official business documents that clearly prove I’m the rightful owner. I need a specialist who understands Google Business Profile recovery inside-out—verification processes, appeal forms, direct support channels, and any escalation paths that actually work. The end goal is simple: restore full ownership of the profile, transfer primary admin rights to a secure email I control, and lock everything down so it can’t be hijacked again. Deliverables • Reclaim the profile and confirm primary admin access in my name ...

My Google Business profile has been taken over by someone else and I no longer have access to the original email tied to the listing. I have not yet contacted Google support or changed any passwords, so we’re starting from scratch. What I do have are official business documents that clearly prove I’m the rightful owner. I need a specialist who understands Google Business Profile recovery inside-out—verification processes, appeal forms, direct support channels, and any escalation paths that actually work. The end goal is simple: restore full ownership of the profile, transfer primary admin rights to a secure email I control, and lock everything down so it can’t be hijacked again. Deliverables • Reclaim the profile and confirm primary admin access in my name ...

Saya membutuhkan bantuan untuk merapikan beberapa area penting di website kami. 1. Menu navigasi • Tautan yang saat ini tidak berfungsi harus diperbaiki sehingga setiap item mengarah ke halaman yang tepat dan dapat di-crawl mesin pencari. • Pastikan struktur tetap konsisten di desktop maupun perangkat mobile. 2. Halaman portofolio • Gambar portofolio tidak muncul; saya ingin seluruh gambar tampil sempurna, menggunakan kompresi ringan tanpa menurunkan kualitas. • Pastikan layout tetap rapi setelah gambar dimuat. 3. Kecepatan website • Optimalkan waktu muat halaman (core web vitals) dengan teknik caching, minifikasi aset, dan penyesuaian server jika diperlukan. • Lampirkan laporan sebelum–sesudah dari PageSpeed Insights ata...

I already hold an X.509 digital certificate and I now need a matching set of JSON Web Key Sets (JWKS) built from it so I can feed the keys into an OAuth / OIDC gateway. The keys must be created for the RSA algorithm only; I do not require EC or HMAC variants at this stage. What I will hand over: • The existing X.509 certificate file (public and private parts available) along with any password that protects the private key. • Any metadata you need about issuer, key-use (sig), kid naming conventions, or expiry. What I expect back: • A correctly structured containing the public RSA key entries ready for direct publication. • The corresponding private key in a secure format of my choosing (PKCS#12 or PEM) and clear instructions on how it maps to the JWKS. • A ...

Por favor, regístrate o inicia sesión para ver los detalles.

I want to launch an e-commerce site that sells digital products only, and I need the overall buying and editing experience to feel as smooth and intuitive as Canva. Visitors should be able to browse, preview, purchase, and instantly download the files on both desktop and mobile without any friction. Core features I have in mind • Clean, responsive UI that adapts perfectly to desktop and mobile screens • Secure checkout with major cards and wallet options, followed by immediate file delivery via email and dashboard download links • User accounts for saving purchases, viewing order history, and re-downloading files • Admin dashboard where I can upload new digital items, set pricing, run discounts, and see basic sales analytics • SEO-friendly structure plus...

My primary Gmail address has been disabled by Google for “suspicious activity.” The only specific clue Google gave me is that there were unusual login locations before the shutdown. I still own the recovery phone and backup email tied to the profile, but the standard appeal form has so far led nowhere. I’m looking for someone who already knows Google’s account-recovery and appeal workflow inside out—someone who can draft the right responses, supply any required logs or headers, and walk me through additional verification steps so the mailbox, Drive, Photos, and linked services come back online without data loss. Selected red-flag Google detected: • Unusual login locations Desired outcome • Full re-activation of the Gmail/Google account ...

I need a steady stream of inbound tech-support calls from people who are dealing with software-related virus or malware troubles. Every caller you send should be looking for one or more of the following: virus/malware removal, a full system cleaning, or help installing security software. We are not servicing hardware or network issues, so please filter accordingly. To make this work smoothly, the calls must come in qualified— the user should already recognize they have a malware problem (pop-ups, slow PC, ransom notes, security warnings, etc.) and be willing to speak with a technician. Once the call lands, my internal team will diagnose and sell the service; your role ends after a clean hand-off. You may drive traffic through PPC, social, native ads, email, or any other compliant c...

My business mailboxes sit on a mix of Namecheap PrivateEmail and several Gmail/G Suite accounts. Messages have started bouncing and some never reach their destination, so I’m convinced the root cause is an incomplete or conflicting server configuration. I need someone who knows their way around DNS to: • Audit the current zone on Namecheap and any other registrars I’m using • Create or correct the MX, SPF and DKIM records for every active domain (DMARC guidance would be a plus) • Wait for propagation, run test sends/receives and verify that mail now lands in the inbox, not spam • Supply a short hand-over document so I can replicate the setup if I add new domains later I’ll give you registrar and hosting log-ins as soon as we start; you can wor...

Google arama sonuçlarında “kaynak hakkında” bölümünde arka planda kullandığım site adresi görünüyor. Bu bilgiyi görünmez hâle getirerek marka gizliliğimi korumak istiyorum. Ne bekliyorum: • Sorunun kaynağını analiz etmeniz (, meta etiketler, sunucu yapılandırması veya başka bir sebep olabilir). • En uygun yöntemi belirleyip uygulamanız. • Değişiklikleri yaptıktan sonra Google’da yeniden tarama isteğini tetiklemeniz ve sonucu doğrulamanız. WordPress, Joomla, özel kod ya da başka bir altyapı kullanıyor olabilirim; mevcut sisteme uyumlu bir çözüm üretmeniz yeterli. Teknik adımları net şekilde belgelerseniz ileride aynı sorunu kendim de yönetebilirim.

As we prepare to launch our online-security startup, I need a seasoned penetration tester to run a full-spectrum assessment that spans network, web and mobile layers. The scope touches every corner of our stack—cloud resources, the internal LAN, and the publicly exposed perimeter—so you’ll be diving into each environment with equal depth. Primary objectives • Expose and document vulnerabilities before launch • Provide clear, actionable fixes that bring us in line with relevant compliance frameworks • Cross-check findings with our in-house AI analytics so we can validate security controls continuously Deliverables • An engagement plan outlining tools, timelines and test boundaries • Hands-on testing covering: – Network infrastru...

My production Windows server has gone silent—no RDP, no web console, nothing. I still hold full ownership credentials with the hosting provider, so authorized recovery options (rescue console, snapshot-based rollbacks, etc.) are available. I need a seasoned Windows system administrator or security professional to get the box responsive again, verify integrity, and lock it down. The core goals are simple: • Diagnose why the server is unresponsive and revive it through approved rescue or recovery tools • Regain normal administrator access without breaching provider policies • Audit current services, patch levels, startup items, and event logs • Implement practical hardening steps (firewall rules, updates, backup checks) and explain what was changed Please...

I have website in Divi theme wordpress. Error showing you have experience DIvi theme the conatct me, error is An error has occurred while saving your page. Various problems can cause a save to fail, such as a lack of server resources, firewall blockages, plugin conflicts or server misconfiguration. You can try saving again by clicking Try Again, or you can download a backup of your unsaved page by clicking Download Backup. Backups can be restored using the portability system while next editing your page. Contacting your host and asking them to increase the following PHP variables may help: memory_limit, max_execution_time, upload_max_filesize, post_max_size, max_input_time, max_input_vars. In addition, auditing your firewall error log (such as ModSecurity) may reveal false positives tha...

My website is currently unreachable for some users because of a DNS resolution problem, and on top of that Cloudflare keeps throwing an SSL certificate error. I need someone who understands both sides of the stack—DNS record management and Cloudflare-based SSL deployment—to sort this out quickly. Here is what I know so far: • DNS: Queries intermittently fail to resolve, so the correct A/AAAA or CNAME entries may be missing, mis-typed, or simply not propagating. • SSL: Cloudflare is showing a certificate mismatch / invalid certificate warning. Full (strict) mode had been enabled previously, but rolling back to flexible hasn’t helped. Your task will be to: 1. Diagnose the root cause of the resolution failures, adjust records in Cloudflare’s DNS dashboard...

My site is suffering from a technical error: nobody can log in. Each attempt immediately returns an “Account locked” message, even with correct credentials. There are no broken links or visible JavaScript errors on the page—just this persistent authentication failure. I need you to trace the root cause in the existing codebase and server configuration, repair it, and confirm that normal login flows work again. Feel free to inspect session handling, database queries, password-hash checks, or any rate-limit logic that might be triggering the lockout. Deliverable: updated code or configuration plus a short report documenting what you changed and proof (screenshots or screencast) that a standard user can sign in successfully.

My GoDaddy-registered domain recently lapsed, and the registrar has swapped in their default parking nameservers. Before the expiry, the domain was pointing to a shared hosting account set up about five years ago. Unfortunately, the original developer is unreachable, I don’t recall which host we used, and I have no legacy emails or paperwork that list the settings. The job is to research and identify the exact nameserver pair (or set) that was active immediately prior to GoDaddy’s parking change. Historical DNS platforms such as SecurityTrails, DomainTools, ViewDNS, WhoisXML, Wayback-powered DNS snapshots, or similar investigative resources will probably be required; feel free to use any method that can produce verifiable results. Deliverable • A clear report showing t...

I need an experienced PHP/OpenCart malware cleanup specialist to help fix an infected OpenCart ecommerce store. Site details: * OpenCart version: 3.0.3.3 * Dedicated server * SSH and SFTP access available * OpenCart admin access available * No recent extensions or major changes added * Store will be migrated to Shopify in 1–2 months, so this is cleanup/stabilization only Issue: * Visitors are randomly redirected to suspicious/malicious pages * Redirect does not happen every time * Redirect happens more often when users visit the cart or add products to cart * Admin area appears normal * Antivirus/browser security tools are showing dangerous site warnings * Issue first appeared around late April, stopped for a while, and has now returned Required work: * Identify the exact redir...

We need an independent third-party penetration test of our production SaaS platform to satisfy a SOC 2 control. We're looking for an experienced, certified penetration tester (OSCP / OSWE / GWAPT / CREST or equivalent) who can start immediately and deliver a professional, audit-ready report. TIMELINE — TIME-SENSITIVE: We need the testing performed and the final report delivered within 1 week of kickoff. Please only bid if you have current availability. ABOUT THE SYSTEM (full details and credentials shared under NDA with the selected tester): - Customer-facing web application: / React / TypeScript - Backend: Python / Django / Django REST Framework API - Authentication: Keycloak (OIDC) — username/password, social login, TOTP/MFA - Two supporting Python/Django microservices ...

My site has started throwing form-submission errors and overall page speed has dipped, so I need a focused cleanup. The first priority is to get every form submitting reliably again. While you’re inside the form logic, please switch the date field to the new format I’ll supply, introduce a couple of new data fields, and strip out any obsolete ones I point out. Loading time is the next pain point. I’m looking for pragmatic optimisation—compressing heavy assets, tweaking queries, improving caching—whatever brings the site back to a snappy response without a full rebuild. Finally, the WhatsApp button needs a quick tweak: change the pre-filled message text so that it pulls a short template I’ll provide. The button’s position and core functionality ca...

My site is showing a few stubborn functionality errors—most notably a date that refuses to update correctly—so the first task is to track those down and put them right. After the front-end is behaving, I want a thorough look at the database to confirm everything is healthy and consistent before we move on. While you have access, please harden the security of the entire installation. I’m already running over HTTPS, but I’d like you to double-check certificates, permissions, and any obvious gaps that could expose user data. Deliverables • Functionality errors fixed (including the date issue) • Database health report with any corrective actions applied • Security hardening completed and documented (SSL verified, permissions tightened) I’...