Freelance Security Managers in LahoreFreelance Security Managers in Lahore
ProjectsPeople
Ahmed Khan's avatar
Ahmed Khan
Lahore, Pakistan
Cybersecurity specialist with ability to identify flaws
New to Contra
Cybersecurity specialist with ability to identify flaws
Cover image for I discovered a stored cross-site
I discovered a stored cross-site scripting (XSS) vulnerability in a practice web application's comment section that allowed me to inject malicious JavaScript that would execute in any user's browser. By submitting a comment containing a script payload, I successfully stole session cookies from other users and could have hijacked their accounts, performed actions on their behalf, or defaced the website. This finding was documented in a comprehensive report including proof-of-concept screenshots showing cookie theft, CVSS risk scoring of 6.5 (Medium), and step-by-step remediation guidance including input sanitization and output encoding. This assessment demonstrates my ability to find client-side vulnerabilities that can compromise every user visiting the site.
0
3
Cover image for I discovered a SQL injection
I discovered a SQL injection vulnerability in a practice web application that allowed me to bypass the login system and access the entire user database without any credentials. By inserting a simple payload into the username field, I successfully logged in as the first user in the database and extracted sensitive information including usernames, password hashes, and user email addresses. This finding was documented in a detailed report with proof-of-concept screenshots, risk analysis showing potential data breach impact, and step-by-step remediation guidance including parameterized queries and input validation. This assessment demonstrates my ability to find critical database vulnerabilities that could expose thousands of customer records.
0
4
Cover image for During a security assessment of
During a security assessment of a practice web application, I discovered an exposed FTP directory with directory listing enabled, revealing multiple sensitive files including a password database, backup configurations, compiled source code, and error logs. After finding a clue in robots.txt, I navigated to the /ftp directory and documented over ten exposed files with their associated risks. My final report included an executive summary, detailed findings with screenshots, risk ratings for each exposed file, and step-by-step remediation guidance including disabling directory listing and removing sensitive data. This finding highlights how simple misconfigurations can lead to critical data exposure.
0
11
Cover image for I discovered an Insecure Direct
I discovered an Insecure Direct Object Reference (IDOR) vulnerability in a practice web application that allowed unauthorized users to access other people's private snippets simply by changing a number in the URL. Using whatweb and manual inspection, I identified parameter tampering points and successfully accessed private data for five different users without authentication. The finding was documented in a comprehensive report including executive summary, technical details with screenshots, CVSS risk scoring, and step-by-step remediation instructions. This assessment demonstrates my ability to find broken access controls that automated tools miss and deliver clear, actionable fixes.
0
14
Security Manager(4)
SYED ALI 's avatar
SYED ALI
Lahore, Pakistan
Full Stack Developer - Artificial Intelligence -
New to Contra
Full Stack Developer - Artificial Intelligence -
Cover image for The platform provides a holistic solution, offering improved...
The platform provides a holistic solution, offering improved asset management, user visibility, risk assessment, security maturity, and streamlined data management. Ultimately, the project aims to empower SMBs with the tools and insights needed to protect their assets from cyber threats effectively. http://app.assetcurve.io
0
57
Cover image for Voice-to-Voice AI Receptionist Assistant for
Voice-to-Voice AI Receptionist Assistant for Businesses My role. AI Agent (Voice-to-Voice AI bot Developer) Project description. Stella AI app, which is a voice-to-voice solution for businesses to manage orders, reservations, and FAQs. I walked through the app's features, including SMS marketing, 24/7 availability, and the ability to customize greeting messages and voice selections. We also explored how to set up a business profile and input a knowledge base and menu through JSON uploads. I demonstrated a live call interaction with Stella AI, showcasing its capabilities in booking appointments. I would love to hear your thoughts on the system and any feedback you might have! Skills and deliverables AI Agent Development AI Bot Artificial Intelligence Natural Language Processing Python
0
28
Cover image for AI Voice Agent for Car
AI Voice Agent for Car Dealerships (Manages Inbound phone calls) My role. AI Voice Agent Expert (Voice-to-Voice AI bot) Developer Project description. I demonstrate Dealer Voice, a voice-to-voice agent designed specifically for car dealerships. The system automates call handling, providing summaries and call recordings, and allows for agent management and voice selection. I walk you through creating an agent for a dealership, including setting up the phone number, operating hours, and context for the calls. I also show a live call example where I inquire about available cars, highlighting the system's efficiency. Please test the bot by calling the assigned dealership number to experience its capabilities firsthand. Skills and deliverables Bot Development Natural Language Processing AI Bot Artificial Intelligence Python
0
40
Cover image for AI based Session Replay Analysis
AI based Session Replay Analysis Tool Built on PostHog My role. Full-Stack Developer / AI Developer Project description. I walk you through the Autoplay app, a session replay analysis tool built on PostHog. We leverage AI to analyze thousands of sessions each week, providing session summaries, user flows, and key insights. I also demonstrate features like our chatbot for communication and the golden path analysis for user flows. I encourage you to explore the filtering options and the recommended issues generated weekly. Your feedback and engagement with the app would be greatly appreciated! Skills and deliverables Session Recording AI Development Full-Stack Development Python Large Language Model
0
48
Security Manager(1)
Zirgham Hassan's avatar
Zirgham Hassan
Lahore, Pakistan
Expert Web & AI Developer
Expert Web & AI Developer
Cover image for Password Retriever
Password Retriever
0
3
Cover image for Konfor
Konfor
0
3
Cover image for Quality Handmade Carpet and Antiques
Quality Handmade Carpet and Antiques
0
2
Placeholder project card media
View more →
Security Manager(1)