We want to work with a CEH who has extensive experience of probing and testing web sites. We want to test the security of our sites from two perspectives; 1) The standard brute entry stuff, including mysql injection points and dos attacks 2) The more sophisticated measures that might gain access to the core databases to extract/edit data. We know very little about web site security testing, so we would like the process documented in a list that explains exactly what has been tested, how the web site responded, how severe the possible security weakness might be and what should be done to fix the problem(s) We would like to see examples of previous reports (anonimised) for layout, ease of understanding, clarity and pragmatism. If this project works well, we may have several other projects, so we are looking for someone who can work with on a long term basis. Please only respond to this post if you have at least 5 years experience as a CEH, and appropriate references and documentation to back any claims that you make. Thanks for reading this
## Deliverables
1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done.
2) Deliverables must be in ready-to-run condition, as follows? (depending on the nature? of the deliverables):
a)? For web sites or? other server-side deliverables intended to only ever exist in one place in the Buyer's environment--Deliverables must be installed by the Seller in ready-to-run condition in the Buyer's environment.
b) For all others including desktop software or software the buyer intends to distribute: A software? installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request.
3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement).
## Platform
Word document