We are in need of an expert level resource to assist with testing an existing web application that makes heavy use of both SOAP & REST API's. The technologies used consist of a custom ASP.net/C# application, we have some source code but this will largely be black box testing. We are mostly concerned with un-authenticated vulnerabilities which may lead to remote code execution.
The resource must:
1. Be a US Citizen
2. Be willing to sign a NDA
3. Understand & be able to exploit JSON & XML serialization vulnerabilities
4. Provide detailed test plan & final report, based on input from us
5. Be willing to work in an access constrained environment, we must to be involved with all testing
6. Provide all tool output if possible in raw format
We have a quick turn around on this one and need a resource to start immediately if possible. We have done some preliminary testing, and have some ideas where we may be able to exploit the application but do not have a resource experienced enough to execute advanced exploitation.
About the recuiterMember since May 20, 2018 Kamal Deep
from Fyn, Denmark