Freelance Cybersecurity Specialists in ToulouseFreelance Cybersecurity Specialists in Toulouse
ProjectsPeople

Results that are similar to your search

Similar results

Jason Smyth's avatar
Jason Smyth
proCopthorne, UK
Cyber expert specialising in Azure Security Services.
$10k+
Earned
4x
Hired
5.0
Rating
19
Followers
Cyber expert specialising in Azure Security Services.
Cover image for Microsoft Sentinel & Splunk ES Engineer for up to 6 months
Microsoft Sentinel & Splunk ES Engineer for up to 6 months
0
2
Cover image for Extended Interview Process for CrowdStrike SIEM Specialist
Extended Interview Process for CrowdStrike SIEM Specialist
0
7
Cover image for Setting up and optimising Microsoft Sentinel
Setting up and optimising Microsoft Sentinel
0
35
Cover image for Configure SIEM Security Operation using Microsoft Sentinel
Configure SIEM Security Operation using Microsoft Sentinel
0
30
Cybersecurity Specialist(7)
Gary Szaszik's avatar
Gary Szaszik
proLondon, UK
B2B Websites for Complex Industrial & Defense Companies
27
Followers
FRAMER_EXPERT

expert

B2B Websites for Complex Industrial & Defense Companies
Cover image for Cybersecurity website hero concept This concept was designed...
Cybersecurity website hero concept This concept was designed to address clarity issues in the existing site. The product and its proprietary technology weren’t coming through clearly, which made it hard for visitors to understand what the platform actually does or why it’s different. Another key challenge was visibility and conversion. Important information was missing, and there was no clear path for interested users to get in touch or take the next step. The goal of this hero was to clearly explain the product, introduce technical depth gradually, surface credibility early, and guide the right users toward action. It didn’t ship in this form as we chose a different visual direction, but it reflects how we approach complex cybersecurity products: clarity first, depth second.
18
164
Cover image for Cybersecurity website hero concept This concept was designed...
Cybersecurity website hero concept This concept was designed to address clarity issues in the existing site. The product and its proprietary technology weren’t coming through clearly, which made it hard for visitors to understand what the platform actually does or why it’s different. Another key challenge was visibility and conversion. Important information was missing, and there was no clear path for interested users to get in touch or take the next step. The goal of this hero was to clearly explain the product, introduce technical depth gradually, surface credibility early, and guide the right users toward action. It didn’t ship in this form as we chose a different visual direction, but it reflects how we approach complex cybersecurity products: clarity first, depth second.
2
30
246
Cover image for Cybersecurity website hero concept This concept was designed...
Cybersecurity website hero concept This concept was designed to address clarity issues in the existing site. The product and its proprietary technology weren’t coming through clearly, which made it hard for visitors to understand what the platform actually does or why it’s different. Another key challenge was visibility and conversion. Important information was missing, and there was no clear path for interested users to get in touch or take the next step. The goal of this hero was to clearly explain the product, introduce technical depth gradually, surface credibility early, and guide the right users toward action. It didn’t ship in this form as we chose a different visual direction, but it reflects how we approach complex cybersecurity products: clarity first, depth second.
22
191
Cover image for Cybersecurity website hero concept This concept was designed...
Cybersecurity website hero concept This concept was designed to address clarity issues in the existing site. The product and its proprietary technology weren’t coming through clearly, which made it hard for visitors to understand what the platform actually does or why it’s different. Another key challenge was visibility and conversion. Important information was missing, and there was no clear path for interested users to get in touch or take the next step. The goal of this hero was to clearly explain the product, introduce technical depth gradually, surface credibility early, and guide the right users toward action. It didn’t ship in this form as we chose a different visual direction, but it reflects how we approach complex cybersecurity products: clarity first, depth second.
2
16
130
Cybersecurity Specialist(4)
Ahmed Khan's avatar
Ahmed Khan
Lahore, Pakistan
Cybersecurity specialist with ability to identify flaws
New to Contra
Cybersecurity specialist with ability to identify flaws
Cover image for I discovered a stored cross-site
I discovered a stored cross-site scripting (XSS) vulnerability in a practice web application's comment section that allowed me to inject malicious JavaScript that would execute in any user's browser. By submitting a comment containing a script payload, I successfully stole session cookies from other users and could have hijacked their accounts, performed actions on their behalf, or defaced the website. This finding was documented in a comprehensive report including proof-of-concept screenshots showing cookie theft, CVSS risk scoring of 6.5 (Medium), and step-by-step remediation guidance including input sanitization and output encoding. This assessment demonstrates my ability to find client-side vulnerabilities that can compromise every user visiting the site.
0
27
Cover image for I discovered a SQL injection
I discovered a SQL injection vulnerability in a practice web application that allowed me to bypass the login system and access the entire user database without any credentials. By inserting a simple payload into the username field, I successfully logged in as the first user in the database and extracted sensitive information including usernames, password hashes, and user email addresses. This finding was documented in a detailed report with proof-of-concept screenshots, risk analysis showing potential data breach impact, and step-by-step remediation guidance including parameterized queries and input validation. This assessment demonstrates my ability to find critical database vulnerabilities that could expose thousands of customer records.
0
26
Cover image for During a security assessment of
During a security assessment of a practice web application, I discovered an exposed FTP directory with directory listing enabled, revealing multiple sensitive files including a password database, backup configurations, compiled source code, and error logs. After finding a clue in robots.txt, I navigated to the /ftp directory and documented over ten exposed files with their associated risks. My final report included an executive summary, detailed findings with screenshots, risk ratings for each exposed file, and step-by-step remediation guidance including disabling directory listing and removing sensitive data. This finding highlights how simple misconfigurations can lead to critical data exposure.
0
28
Cover image for I discovered an Insecure Direct
I discovered an Insecure Direct Object Reference (IDOR) vulnerability in a practice web application that allowed unauthorized users to access other people's private snippets simply by changing a number in the URL. Using whatweb and manual inspection, I identified parameter tampering points and successfully accessed private data for five different users without authentication. The finding was documented in a comprehensive report including executive summary, technical details with screenshots, CVSS risk scoring, and step-by-step remediation instructions. This assessment demonstrates my ability to find broken access controls that automated tools miss and deliver clear, actionable fixes.
0
36
Cybersecurity Specialist(4)
Prateek Pulastya's avatar
Prateek Pulastya
Berlin, Germany
I find your vulnerabilities before attackers do.
New to Contra
I find your vulnerabilities before attackers do.
Cover image for TryHackMe LLM Exploitation Walkthrough
TryHackMe LLM Exploitation Walkthrough
0
0
Cover image for RAG Pipeline Generation
RAG Pipeline Generation
0
0
Cover image for Developed an AI threat detection
Developed an AI threat detection system designed to identify and mitigate risks in Large Language Model (LLM) environments. The platform analyzes user inputs in real time to detect prompt injection, jailbreak attempts, and malicious patterns using rule-based and heuristic techniques. It integrates automated testing workflows to simulate adversarial scenarios and continuously evaluate model behavior. The system includes logging and monitoring capabilities to track suspicious activity and measure performance metrics such as detection accuracy and latency. This solution demonstrates practical implementation of AI security principles, enabling safer deployment of AI systems by proactively identifying vulnerabilities and enforcing guardrails against misuse.
1
14
Cover image for Guardrail Service is a production-grade
Guardrail Service is a production-grade LLM input validation system built to detect prompt injection and jailbreak attacks before they reach a language model. It uses a two-tier pipeline — a sub-millisecond rule engine powered by Aho-Corasick pattern matching, followed by a quantized DeBERTa transformer exported to ONNX for semantic attack detection at ~20ms. The service runs as an internal HTTP API built with FastAPI, containerized with Docker, and monitored via Prometheus and Grafana. It includes an adversarial test suite of 100+ prompts achieving 95%+ detection accuracy with under 5% false positives, and a live dashboard showing real-time validation, pipeline flowchart, and benchmark results.
1
18
Cybersecurity Specialist(4)
Guilherme Farinassi's avatar
Guilherme Farinassi
São Paulo, Brazil
Penetration Tester & Security Researcher | Web, Mobile & API
New to Contra
Penetration Tester & Security Researcher | Web, Mobile & API
Cover image for Bug Bounty Research - Web
Bug Bounty Research - Web Vulnerability Discovery Conducted independent bug bounty research on public VDP and paid programs (Bugcrowd/HackerOne). Discovered and reported multiple valid vulnerabilities including IDOR exposing PII, stored XSS in user-controlled fields, SSRF via internal metadata endpoint, authentication bypass via JWT manipulation, and sensitive data exposure through misconfigured S3 buckets. Findings spanned government agencies, SaaS platforms, and financial services targets. Documented all findings with full reproduction steps, CVSS scoring, and business impact analysis following responsible disclosure guidelines.
1
11
Cover image for API Security Assessment - REST
API Security Assessment - REST and GraphQL Endpoints Performed a black-box API security assessment covering REST and GraphQL endpoints for a fintech platform. Identified BOLA/IDOR vulnerabilities allowing unauthorized access to other users financial data, mass assignment flaws exposing admin-only fields, broken function-level authorization on privileged endpoints, and GraphQL introspection exposing internal schema. Also found SSRF via webhook URL parameter and JWT algorithm confusion (RS256 to HS256). Delivered OWASP API Top 10 aligned report with curl-based PoC for each finding and remediation guidance.
1
11
Cover image for Mobile Application Pentest - Android
Mobile Application Pentest - Android Banking App Conducted a full black-box mobile penetration test on an Android banking application following OWASP MASTG methodology. Identified 17 vulnerabilities including 5 critical findings: hardcoded AES encryption keys in SharedPreferences, SSL pinning bypass via Frida instrumentation, root detection bypass via LIEF binary patching, exported Activities without permission checks, and sensitive data exposed in Logcat. Delivered MASTG-aligned report with CVSS scoring and PoC code for all critical findings.
1
17
Cover image for Web Application Pentest — Insurance
Web Application Pentest — Insurance Portal Conducted a full black-box web application penetration test on an insurance client portal. Identified 11 vulnerabilities including 3 critical findings: unauthenticated access to customer PII (CPF, phone, address), broken authentication allowing account takeover, and exposed debug endpoints with Facelets stack traces. Delivered a structured report with CVSS scoring, PoC for each finding, and prioritized remediation guidance. All critical findings were reproduced and confirmed in a retest cycle. Stack targeted: Java EE, REST APIs, JWT auth, LGPD-sensitive data.
1
29
Cybersecurity Specialist(4)
Amatullah Campbell's avatar
Amatullah Campbell
proLondon, UK
Cybersecurity GRC Consultant | Ex-Accenture
Cybersecurity GRC Consultant | Ex-Accenture
Cover image for Business Analyst for a Government
Business Analyst for a Government client on behalf of Accenture. Supported the delivery of a data warehouse programme aimed at centralising data, improving reporting capabilities and enabling data-driven decision-making across multiple departments. Worked closely with business and technical stakeholders to define data requirements and ensure alignment with strategic objectives. My duties included the following: ▪ Led requirement gathering activities to capture data, reporting, and analytics needs through stakeholder interviews, workshops, and process analysis. ▪ Facilitated workshops with business users, data engineers and architects to define data sources, data flows and reporting requirements. ▪ Produced detailed documentation including business requirements documents (BRDs), data requirements, data mapping specifications, and user stories. ▪ Collaborated with technical teams to translate business needs into data models, ensuring clarity on data definitions, transformations, and quality rules. ▪ Translated business needs into structured user stories and acceptance criteria, supporting agile delivery and ensuring traceability from requirements through to implementation. ▪ Managed RAID logs and supported programme governance by tracking risks, dependencies, and data-related issues. ▪ Supported UAT by defining acceptance criteria, validating outputs, and ensuring delivered data aligned with business expectations. Key outcomes included: Key outcomes included: ▪ Delivered clearly defined data and reporting requirements, enabling the successful design and implementation of the data warehouse. ▪ Improved data consistency and trust by standardising data definitions and aligning stakeholders on a single source of truth. ▪ Strengthened delivery alignment by linking use cases and user stories directly to technical outputs, reducing ambiguity and rework.
1
2
142
Cover image for Cybersecurity Project Manager for a
Cybersecurity Project Manager for a UK Government client on behalf of Accenture. My duties included the following: ▪ Led key projects aligned with the client's strategic goals, showcasing project leadership and strategic alignment capabilities. ▪ Successfully led and managed three major projects, ensuring they met important client milestones and demonstrated effective project coordination and management skills. ▪ Prepared critical documents necessary for the delivery and completion of program milestones, evidencing meticulous organizational skills and attention to detail. ▪ Actively steered discussions with project directors and stakeholders, showcasing skills in strategic communication and influence at senior management levels. ▪ Worked in close collaboration with senior stakeholders, ensuring alignment with strategic goals and successful achievement of key program milestones, reflecting a strong capacity for teamwork and stakeholder management. Key outcomes included: ▪ Successfully delivered three major cybersecurity projects simultaneously for a UK Government client, demonstrating the ability to manage complexity, competing priorities and high-stakes deadlines in a regulated environment. ▪ Ensured all projects met critical client milestones, directly contributing to programme progression and client confidence in delivery. ▪ Produced critical programme documentation that underpinned milestone delivery, ensuring governance, accountability and audit trails were maintained to the standard expected of a UK Government engagement.
2
289
Cover image for Technical Writing for a major
Technical Writing for a major Retail client that was on the verge of going Public on behalf of Accenture. Working with the Cybersecurity Programme Manager to unify and capture the deployment of several cybersecurity tools (Tanium, Crowdstrike, Tenable) across 120+ organisations. My duties included the following: ▪ Supported the programme lead by documenting all SOPs, policies and standards as required by the Cyber team. ▪ Conducted business requirement gathering sessions to develop subsequent documentation such as skills matrix, roles and responsibilities, RACIs and RAID logs. ▪ Supported on project management tasks such as maintaining the RAID logs, overseeing cyber tool deployment and updated status reports. Key outcomes included: ▪ Created a documentation foundation that the team could operate from independently, reducing reliance on tribal knowledge. ▪ Translated stakeholder needs into structured deliverables — moving from raw requirements to tangible outputs like skills matrices, RACIs, and roles & responsibilities. ▪ Supported successful cyber tool deployment by providing oversight and coordination, contributing to the programme's technical execution.
1
132
Cover image for Cybersecurity Strategy Consulting and Project
Cybersecurity Strategy Consulting and Project Management for an airline that was in its start-up phase in the Middle East on behalf of Accenture. My duties included the following: - Leading the Cyber GRC project to build the cybersecurity function for an aviation client, filling a critical security gap and laying groundwork for sustained cyber resilience. - Developing and implementing a cybersecurity strategy and roadmap aligned with ISO 27001 and region-specific regulations. - Executing a specialised threat profiling exercise, developing a unique threat landscape and identifying risks and vulnerabilities specific to the aviation sector. - Creating a detailed cybersecurity strategy and roadmap with an executive summary, ensuring alignment with client objectives and clarity for C-suite stakeholders. Key outcomes included: - Established a cybersecurity function from the ground up, giving the client a formal security posture where none previously existed. - Reduced organisational risk exposure by identifying aviation-specific threats before they could be exploited. - Positioned the client for long-term cyber resilience rather than reactive, ad hoc security responses.
1
137
Cybersecurity Specialist(4)