We provide penetration tests, source code audit and vulnerability assessment.
Expertise in Ruby on Rails.
Hourly rate is $150.
Greg Brockman from Stripe:
As a payments company, security is core to everything Stripe does. I've worked with Egor both through his responsible disclosures as well as a contracted penetration test of Stripe. Egor has always been professional and responsible in his work, and Stripe today is more secure due to his efforts.
Ian Robinson from ZZipline:
Our team enjoyed working with you quite a bit and found your insights and advice on web security and to be very valuable. We will definitely keep you in mind for future projects!
Vlad Gurgov from Virool:
He contracted for a few YC companies and did a good job for us too.
Few critical bugs were found in our exchange website, great job.
We used to find various vulnerabilities in popular websites/frameworks just for fun. Let's mention some of them:
Upcoming startup launch: don't rush, make sure bad guys won't screw your bright future up after the launch.
A working website: Stability is a great thing, but it doesn't prove that your app is completely safe. Express audit is the only possible way to always sleep well.
Some critical service: Even if there are no blatant issues, we will find optimizations (e.g. cookies, domains management, authentication flow) to make defense deeper.
A small app (like a blog) takes from 5 to 15 hours, middle size apps will require 20+ hours. "Black-box" pentest or source code audit - up to you.
Upon completion of our audit and pentest results, a comprehensive report (demo) will be provided along with an invoice of the work performed.