Tamamlanmış

Java Application Code review & resolve the security related vulnerabilities

I'm looking for freelancer who will support in reviewing the application code with best practices (written in Java). This is very small application having only below functionality

1) Secured Login

2) Create new record, Update record

3) Close the record once issue is closed

4) Reporting

Need to follow best practice w.r.t coding & security standards.

Provide guidance & help in resolving the security related issues highlighted by application security scanning tools.

Some is issues highlighted are

1) Cross-Site Request Forgery => Validate the value of the "Referer" header, and use a one-time-nonce for each submitted form

2) Do not accept body parameters that are sent in the query string => Re-program the application to disallow handling of POST parameters that were listed in the Query

3) Verify that parameter values are in their expected ranges and types. Do

not output debugging error messages and exceptions

Technology Used in the Project
1) Spring Boot
2) Angular JS
3) Database : RDS

Beceriler: Angular.js, Java, Javascript, Yazılım Mimarisi, Web Güvenliği

Daha fazlasını gör: web page, website, web application, responsible website, any web related work, i make it., youtube video download java application code, receive send sms java application code, secure code review methodology, source code review methodology, source code review checklist, secure code review checklist for java, owasp code review guide 2017, owasp security code review checklist, secure code review best practices, source code security review checklist, java, application code review, kiosk application java source code, security code review, java web based sms application code, application code review compliance j2ee rfp, java video application code red5, source code java application sharing, java midlet sample sms receive application code

İşveren Hakkında:
( 0 değerlendirme ) Pune, India

Proje NO: #16224873

Seçilen:

akshayatm

Hi Sir, I am an experienced software developer expert in java ,j2ee , spring,   hibernate orm, webservices,xml xslt, db like technolgies. I can do this. pls contact for further progress.

%selectedBids___i_period_sub_7% gün içinde 12500%project_currencyDetails_sign_sub_9% %project_currencyDetails_code_sub_10%
(39 Değerlendirme)
5.0

Bu iş için 17 freelancer ortalamada ₹12029 teklif veriyor

in %bids___i_period_sub_35% gün içinde8000%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(34 Değerlendirme)
4.9
anish424

I can surely help you in security related issues. I have worked in past on related issues. I have 8 yrs of exp. We will have to write interceptors to intercept each request with each intercept performing a defined r Daha Fazla

in %bids___i_period_sub_35% gün içinde8000%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(30 Değerlendirme)
4.4
durwinjey

A proposal has not yet been provided

in %bids___i_period_sub_35% gün içinde13333%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(9 Değerlendirme)
3.5
mulama1991

Hi, I have reviewed your requirement and I can do this job as per your requirement. We have huge expertise in Java, WORDPRESS , Laravel, Node.Js , React.Js, CakePHP, Codeigniter, Angular.js, Bootstrap, API Integration Daha Fazla

in %bids___i_period_sub_35% gün içinde27777%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(1 Yorum)
1.7
CodeDecodeLabs

Hello, I have a strong back-ground in website Security Audit and Penetration testing..Just went through your requirement, Features and technology used in the given project of JAVA based application..I'm having 7 years Daha Fazla

in %bids___i_period_sub_35% gün içinde16666%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(2 Değerlendirme)
1.8
srinivas10051

hi i am currently working for bank of america related the security issues and i having strong knowledge on CROSS SITE SCRIPTING,REQUEST FORGERY,X-FRAME OPTIONS,LOG FORGING,FRAME BUSTING,HARD CODED PASSWORD MANAGEMENT e Daha Fazla

in %bids___i_period_sub_35% gün içinde7777%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(3 Değerlendirme)
1.0
Mexi2705

A proposal has not yet been provided

in %bids___i_period_sub_35% gün içinde12500%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
sgtanmoy

I am a student of Computer Science and Engineering and I think I am the perfect one for this because I am well enough patient

in %bids___i_period_sub_35% gün içinde7777%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
kannanrbkr

I worked as a security researcher in Zoho corporation for 5 years. To find the frequent occurring vulnerabilities, 1. XSS 2. SQL Injection 3. XML entity attack 4. Resource leak Can be easily identified by r Daha Fazla

in %bids___i_period_sub_35% gün içinde6666%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
in %bids___i_period_sub_35% gün içinde6950%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
in %bids___i_period_sub_35% gün içinde22222%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
in %bids___i_period_sub_35% gün içinde11111%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
vasilyalevizos

A proposal has not yet been provided

in %bids___i_period_sub_35% gün içinde14444%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
prashantkhare001

Hello, Prashant has 7+ years experience working in the information security consulting field. He holds a ISTQB, IBM APPS SCAN, CEH Certifications and a Graduation(B.E.) in Computer Science from Rajiv Gandhi Univer Daha Fazla

in %bids___i_period_sub_35% gün içinde11111%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
vaptsolutions

Have 5+ years of experience in both black box and white box testing penetration testing. Perform VAPT(Vulnerability and penetration testing) services like Web-Application penetration testing; System Application penetra Daha Fazla

in %bids___i_period_sub_35% gün içinde11111%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0
in %bids___i_period_sub_35% gün içinde6555%project_currencyDetails_sign_sub_37% %project_currencyDetails_code_sub_38%
(0 Değerlendirme)
0.0