گراف | Graph

تاسیس در ۱۳۹۴ کامپیوتر، فناوری اطلاعات و اینترنت ۵۱ تا ۲۰۰ نفر graph-inc.ir

استخدام کارشناس تست نفوذ

این آگهی منقضی شده است

دسته‌بندی شغلی

وب،‌ برنامه‌نویسی و نرم‌افزار
موقعیت مکانی

تهران ، تهران
نوع همکاری

تمام وقت
حداقل سابقه کار

مهم نیست
حقوق

توافقی

شرح موقعیت شغلی

Greetings and good day wishes from Graph Inc.
Here, in the knowledge-based Graph Inc., We strive to accomplish wonderful and principled targets in a dynamic and professional environment; through tasks which gather us everyday with full energy and make us enjoy our time spent in learning and creating! We do our bests in order to have pleasant working conditions as we discuss and explain them during our introductory face to face meeting.
Do you want to pursue your career by tackling with amazing challenges as part of a full-time job, managing your floating working times as you wish, and cooperating with a team in person? If you are interested and can ascertain the following attributes, please apply by sharing your CV with us.

Responsibilities:

- Blackbox testing of assigned (web) applications

* You will receive the URLs of assigned (web) applications and proper access protocols (e.g., proxies)

* You are expected to manually identify appropriate HTTP request/responses and/or implement required scripts in order to locate and demonstrate existing vulnerabilities

* You can also use open source testing programs to automate parts of the testing process

- Graybox testing of assigned (web) applications

* You will receive the source codes of the web applications (which were tested with blackbox access)

* You are expected to review the given source codes in order to identify the potential vulnerabilities (which might or might not be exploitable)

* For exploitable vulnerabilities, you might be asked to implement PoC scripts to demonstrate their exploitability

Abilities (including but not limited to):

- Familiarity with common web vulnerabilities (e.g., SQL injection, XSS, etc.)

- Familiarity with common native application vulnerabilities (e.g., stack overflow, integer overflow, etc.)

- Experience with C, C++, and Python languages for sake of PoC implementations

- Experience with PHP and ASP languages for sake of web application code reviews

- Self-motivated to research about new technologies in order to obtain appropriate knowledge and resolve issues as required

General conditions:
- Eager to Learn More
- Possess the Spirit of Teamwork
- Effective Problem Solving Abilities
- Ready to Overcome the New Problems Ahead

Hope to have you as our next colleague

معرفی شرکت

"گراف" شرکتی نرم‌افزاری فعال در حوزه امنیت اطلاعات است که فعالیت خود را در سال ۱۳۹۴ آغاز نمود.
توسعه نرم‌افزارهای امنیتی و ارائه راه‌کارهای حوزه امنیت در اطلاعات و ارتباطات بخش عمده فعالیت‌های ما در گراف را تشکیل می‌دهند.