Server Security Expert

We are going through an RFP process with a client and they have some server security guidelines that we need to follow. They have run a few tests on our server and given us a list of things to fix. We need someone who can fix these things and do it Fast! We need everything done by Monday the 19th!

We are running a 2012 windows server with iiS on an AWS EC2 with ASP .NET applications There is also a front end component that has Java, JQuery, HTML and CSS.

We have a detailed report from IBM's App Scan and also have an SSL set up.

Here us the list of the vulnerabilities that need to be fixed...

1) DOM Based Cross-Site Scripting

Fix:Review client-side code and clear your input sources

2) Encryption not apllied

Fix: Force the use of HTTPS when sending sensitive information

3) Hidden Directory Detected

Fix: Issue a "404 - Not Found" response status code to a prohibited feature or remove it completely

4) Unsafe third party link (target = "_ blank")

Fix: Include the rel = "noopener noreferrer" attribute on each link element with target = "_ blank"

5) Query Parameter in SSL Request

Fix: Always use the SSL and POST (body) parameters when sending sensitive information.

6) Body Parameters Accepted in the Consultation

Fix: Do Not Accept Body Parameters That Are Sent in Query Sequence

7) Verify SRI (Sub-feature Integrity) support

Fix: Include in each third script / link element SRI (Subresource Integrity) support.

8) Browsing Scan Against SSL / TLS (also known as BEAST)

Fix: Supported clusters of change server

9) SHA-1 number sets were detected

Fix: Supported clusters of change server

10) Web Server Transmits Cleartext Credentials

FIX: Make sure that every sensitive form transmits content over HTTPS.

Skills: .NET, Amazon Web Services, ASP, Windows Server

See more: need expert setting up server security compliance, hire a freelance wi dows server security expert, website server security expert, net client server security, linux server security, find mysql security expert, server security assessment, web site security expert mumbai, server security expert, lamp server security, website security expert, profile information security expert, internet security expert, joomla security expert, web security expert needed, php security expert

About the Employer:
( 1 review ) Sao Paulo, Brazil

Project ID: #16507829

18 freelancers are bidding on average $230 for this job


1. In DOM based Cross-Site Scripting, input comes in two main forms: Input written to the page by the server in a way that does not allow direct XSS; Input obtained from Client-side JS objects. So I need to check thi More

$294 USD in 7 days
(110 Reviews)

Hello sir, I am working on Microsoft technologies since last 15 years and can get these things done for you. regards

$235 USD in 7 days
(47 Reviews)

Hi, Greeting !! Helena Recommend us for your project I have read the list of issue present is your based website some issue is from server side setup and few are code level improvement .will help in fixing More

$352 USD in 5 days
(167 Reviews)

Greetings! Thanks for posting such an interesting project. I am a professional system admin and server expert. I have worked on server security and PCI compliance. I can address these issues and make the server comp More

$588 USD in 1 day
(125 Reviews)

Hello, I have read your project REQUIREMENT and UNDERSTOOD IT COMPLETELY. We deal with the ALL TYPE OF SERVER RELATED ISSUE as we have expert team for this. We will be able to do but we need proper details regarding More

$164 USD in 3 days
(48 Reviews)

Hi, I will implement server securities and make sure that it will be protected and will not be attacked by any virus or vulnerabilities. Thank you

$77 USD in 0 days
(32 Reviews)

HI, We will check complete configuration of server as well as cluster and will resolve all the issues regarding SSL, SSH, encryption and all. Thank you.

$100 USD in 1 day
(12 Reviews)

if you accept my bid I can and will do this tonight. (18Mar2018)

$555 USD in 1 day
(1 Review)

Having 13+ IT industry experience in various technologies like Windows Server, VMware, Hyper-V and so on. I would be ideal candidate for this and would delivered project on time.

$166 USD in 1 day
(2 Reviews)
$155 USD in 3 days
(0 Reviews)

We provide a wide range of solutions designed to help protect your business or website from cyber security threats; we have a security solution to help through our team of Certified Cyber Security professionals to keep More

$200 USD in 4 days
(0 Reviews)

A proposal has not yet been provided

$277 USD in 5 days
(0 Reviews)

I have experience in security audit fix. please start chat with me

$138 USD in 1 day
(0 Reviews)

Hello I am certified MVC developer and interested in your project. Kindly initiate the chat to discuss further on the same. Here are some DOT NET websites that I have done - [login to view URL] http More

$250 USD in 5 days
(0 Reviews)
$155 USD in 3 days
(0 Reviews)
$120 USD in 1 day
(0 Reviews)

I can work for you , lets discuss it. i already work related to security. if you can discuss with me .

$155 USD in 3 days
(0 Reviews)
$155 USD in 3 days
(0 Reviews)