Freelancer logo How It Works Browse Jobs Log In Sign Up Post a Project
EXPLORE
Computer Security Internet Security Penetration Testing Web Security Website Testing
You're now following .
Error following user.
This user does not allow users to follow them.
You are already following this user.
Your membership plan only allows 0 follows. Upgrade here.
Successfully unfollowed user.
Error unfollowing user.
You have successfully recommended
Error recommending user.
Email successfully verified.
User Avatar
$70 USD / hour
Flag of BD
banani, bangladesh
$70 USD / hour
It's currently 10:07 PM here
Joined March 28, 2017
1 Recommendation

Md Shofiur R.

@srmukul2

annual-level-two.svg
4.9 (56 reviews)
6.9
6.9
$70 USD / hour
Flag of BD
banani, bangladesh
$70 USD / hour
97%
Jobs Completed
64%
On Budget
93%
On Time
17%
Repeat Hire Rate

Certified Ethical Hacker and Pentester

✔️Certified at Windows Security & Forensics ✔️Certified at Ethical Hacking ✔️Certified at WEB APP SECURITY FUNDAMENTALS ✔️Certified at Website Hacking / Penetration Testing Main Skills: Penetration Testing, Web Application Security. Social Engineering, Red team assessment, Ethical Hacking & Countermeasures, Vulnerability Assessment, Malware Analysis and server Security Hardening. My core competency lies in performing black and gray box testing, on the live web applications/networks or in lab environments.I am familiar with all common attack vectors and mitigation techniques, as well as finding unknown to public exploits known as 0days in web applications. Even though most of my work is confidential I can share vulnerability assessment sample. I have experience in vulnerability assessment for PCI & HIPAA Compliance.
Freelancer Web Security Experts Bangladesh

Contact Md Shofiur R. about your job

Log in to discuss any details over chat.

Portfolio Items

The table below provides the mapping of the each identified vulnerability with respect to their severity and the number of instances occurred after first, second, third, and fourth rounds of assessment.
Website penetration testing
Fundamentals about the framework
Framework organization
How to install it
How to contribute

Usage
Msfconsole
Msfcli
Msfvenom
Resource Files

Scanning
Port scanning
Vulnerability scanning

Exploitation
Network based exploit
Client side exploit
Browser Autopwn
Local exploits

Post Exploitation
Meterpreter
Meterpreter scripts
Post exploitation modules
Pivoting
Privilege Escalation
Information Gathering
Avoiding Detection

Writing Metasploit Modules
Writing an exploit module
Writing an auxiliary module
Writing a post exploitation module
Meterpreter scripting
Railgun

 

Are you hoping to become a penetration tester? This course could take you one more step down your career path toward your goal. Sign up for Cybrary’s Career Path program today! 

 

What is Metasploit?
Metasploit Framework, created by the Metasploit Project, is the mot popular exploitation tool available for developing, testing, and performing exploits. It allows penetration testers, auditors, and vulnerability assessment
Metasploit Certification
Course Outline:

HTTP and HTTPS basics – these protocols are the foundation of communication for web apps and understanding the various requests, responses, and status codes are fundamental to the course. We also examine packet structure and how packets can be manipulated by attackers.
Why sites get hacked – sites get hack for a number of reasons. The main ones are because websites provide a large attack surface and the technologies that run on them are subject to common vulnerabilities such as SQLI, XSS, LFI, and RFI. These attack vectors are discussed in greater detail later in the course.
Hacker methodology – the steps followed by an attacker which consist of footprinting, scanning, enumeration, gaining access, maintaining access, and covering one’s tracks. A host of essential tools are presented throughout the course that should be in every pentester’s toolbox. Manual and automated approaches are presented for each type of process.
SQLI – structured query language injection is a co
Web Application Penetration Testing Certification
What is a web app?
A web app is a client-server software application in which the client (or user interface) runs in a web browser. Common web applications include webmail, online retail sales, online auctions, wikis, instant messaging services, and many other functions.

What will I learn?
Vega web vulnerability scanner.
BurpSuite web vulnerability scanner.
SQLMap automatic SQL injection and database enumeration tool.
Arachni web app attack and audit framework.
W3AF network fuzzer.
Nikto open- source web server scanner.
SearchSploit database exploit tool.
NMAP network discovery and mapping tool.
Web App Security Fundamentals Certification
This is a Penetration testing  result sample
PenTest Result

Reviews

Changes saved
Showing 1 - 5 out of 50+ reviews
Filter reviews by:
5.0
$250.00 USD
Md Shofiur is professional, expert in web security, and delivers on time and within budget. Will not hesitate to hire him again.
System Admin Linux Web Security Computer Security Internet Security
G
Flag of FR Abdelhafid B. @gateway1977
5 days ago
4.8
$400.00 USD
Shofiur had been extremely professional with great knowledge about Web Security... He is a true professional in this field and had the right approach to fix the issues of all the other candidates he had the right approach to fix my web security issues. Would definitely hire him again and highly recommend him to others. We just had a miscommunication about the deliverable which he was enough professional to understand and not charge for the same.
PHP Web Security WordPress Web Hosting Internet Security
User Avatar
Flag of AE Imtiaz T. @imtiaztariq
1 month ago
5.0
$100.00 USD
Good experience. Thank you.
JavaScript Web Security CSS HTML Certified Ethical Hacking
F
Flag of US Keith L. @floridude
3 months ago
5.0
$520.00 USD
Amazing guy in relarionship and very reliable to delivered best.
System Admin Linux Web Security Computer Security Internet Security
S
Flag of GB Obinna E. @skineleo
3 months ago
5.0
€150.00 EUR
To be honest, I didn't really know what pen-testing is. I just had the requirement that it needs to be done. Shofiur did one test for me, and he told me how he did it. I didn't think it involved sooooo much work. I thought it was only automatic tools. But instead, his report showed me that he really understood the details of my project. And all the problems were followed by a Recommendation section that showed how to fix them. Will work with Shofiur again! Thank you!!
Web Security
I
Flag of DE Tom W. @illayni
5 months ago

Experience

Security Engineers And Pentester

Assessment Systems
Mar 2010 - Aug 2018 (8 years, 5 months)
Main Skills: Penetration Testing, Web Application Security. Social Engineering, Red team assessment, Ethical Hacking & Countermeasures, Malware Analysis My core competency lies in performing black and gray box testing, on the live web applications/networks or in lab environments.

Education

Bachelor of Science in Information Technology

University of Information Technology and Sciences, Bangladesh 2006 - 2010
(4 years)

Qualifications

Ethical Hacking

Udemy, Inc.
2017
This course is focused on the practical side of penetration testing without neglecting the theory behind each attack. Before jumping into penetration testing, you will first learn how to set up a lab and install needed software to practice penetration testing on your own machine. All the attacks explained in this course are launched against real devices in my lab.

Website Hacking / Penetration Testing

Udemy, Inc.
2018
This course is focused on the practical side of penetration testing without neglecting the theory behind each attack. Before jumping into penetration testing, you will first learn how to set up a lab and install needed software to practice penetration testing on your own machine.

Contact Md Shofiur R. about your job

Log in to discuss any details over chat.

Verifications

Preferred Freelancer
Identity Verified
Payment Verified
Phone Verified
Email Verified
Facebook Connected

Certifications

preferredfreelancer-1.png Preferred Freelancer Program SLA 1 100% comp_sec.png Computer Security 1 87% php_1.png PHP 1 75%

Top Skills

Web Security 38 Internet Security 31 Computer Security 18 Website Testing 9 Penetration Testing 9

Browse Similar Freelancers

Web Security Experts in Bangladesh
Web Security Experts
Internet Security Experts
Computer Security Consultants

Browse Similar Showcases

Web Security
Internet Security
Computer Security
Website Testing
Previous User
Next User
Invite sent successfully!
Registered Users Total Jobs Posted
Freelancer ® is a registered Trademark of Freelancer Technology Pty Limited (ACN 142 189 759)
Copyright © 2021 Freelancer Technology Pty Limited (ACN 142 189 759)
There is no internet connection
Loading preview