The network for creativity
Join 1.25M professional creatives like you
Connect with clients, get discovered, and run your business 100% commission-free
Creatives on Contra have earned over $150M and we are just getting started
Back to feedPost
Web Application Pentest — Insurance Portal
Conducted a full black-box web application penetration test on an insurance client portal. Identified 11 vulnerabilities including 3 critical findings: unauthenticated access to customer PII (CPF, phone, address), broken authentication allowing account takeover, and exposed debug endpoints with Facelets stack traces.
Delivered a structured report with CVSS scoring, PoC for each finding, and prioritized remediation guidance. All critical findings were reproduced and confirmed in a retest cycle.
Stack targeted: Java EE, REST APIs, JWT auth, LGPD-sensitive data.
The network for creativity
Join 1.25M professional creatives like you
Connect with clients, get discovered, and run your business 100% commission-free
Creatives on Contra have earned over $150M and we are just getting started
Related posts
SMALL MOCKUP TEST. BIG DIFFERENCE. 👀
Same AI Travel App UI.
I changed only the background.
Not the UX.
Not the flow.
Not the product logic.
Just the visual context.
And the darker version instantly made the app feel more premium, focused, and easier to read.
That is why presentation matters in mobile app design.A weak frame can make good UI look average.
A strong frame can make the product feel more valuable before the user even taps anything.Expected impact:`
+35-45% first-screen engagement
+25-30% trip card interaction
+20-28% faster package discovery
+30-40% perceived product value
Sometimes design is not about adding more.Sometimes it is about removing what steals attention.
🟢 Book a Mobile App Strategy Session
https://calendly.com/asol_design/book-diagnostic-call-linkedin-clone
26 voted
67%
13 voted
33%
39 votes
Closed
Love this approach. It's fascinating how design can completely change how people feel while using a product.
Build the website whose conversion rates are through the roof! Attracting Millions of organic traffic, all thanks to the well optimized SEO.
The website is small and to the point when it comes to conversion.
Meet Hex Security, a YC backed cybersecurity company.
Here's a small case study:
The restrained approach for a cybersecurity brand makes sense. SEO-focused landing pages for YC companies tend to work best when the copy does the heavy lifting, not the visuals. Curious how the conversion rate compares before and after.
Title: The Hospital Test
A founder once told me:
"The company survived
because I wasn't the only person
holding it together."
When his son was hospitalized
after a serious accident,
he stayed at the hospital
with his family.
Years earlier, he would
have chosen work.
This time, he didn't have to.
The business continued running
because he had built systems,
delegated responsibility,
and trusted capable people.
That's the difference between
building a company
and building a dependency.
A business that collapses
without you isn't freedom.
It's another form of captivity.
Trending
Claude
Claude has entered the design space. How are you using Claude Design?
Contra University
Learn from expert creatives how to earn more using next-gen AI tools.
MagicPath
The canvas is infinite, and exploration is becoming the workflow. How are you using MagicPath?
creativeaiflow
Creative AI workflows are evolving. What tools do you use, and what are their strengths and weaknesses?
freelancerlife
Freelancer life is wins, pivots, and everything in between. What’s yours right now?
