Web Security Researcher

  • | Full-time
  • | Bucharest, Romania
Characters illustration

Job description

We are looking for a web security specialist to help us improve our Website Security Scanner. This is a custom scanner built from scratch by our team and your role will be to research and add new detection modules to it in order to improve its capabilities.

You will have to research known vulnerabilities (like XSS, SQLi, LFI, XXE, etc.) and new web vulnerabilities (like HTTP Cache Poisoning, HTTP Request Smuggling, etc.) and create detection modules and test cases for our scanner.

Our Website Security Scanner is a live project, with thousands of active users every day and this gives you a great opportunity to mix your security research and development skills.

Experience requirements

The ideal candidate should have the following:

  • Knowledge of how to manually detect and exploit common web vulnerabilities (XSS, SQLi, XXE, etc.)

  • Deep understanding of web protocols, web languages and web architectures

  • Fluency in writing Python code

  • Familiarity with common web security scanners like OWASP ZAP, Burp Suite, etc.

  • Participation in CTFs and Bug Bounty programs is a big plus

We have won

  • Product of the Year Award at ANIS Gala

    2021

  • Best Innovation Award at How to Web

    2018

  • Grand Prize at Innovation Labs

    2017

Achievements

  • More than 1 million users last year

  • Clients from 45 countries around the Globe

  • Countless security vulnerabilities found

  • We were Gold Sponsors at Black Hat Europe 2020

Join us

Please send your CV at contact@pentest-tools.com with your CV attached and we will get back to you as soon as possible.
Character with goggles that can see vulnerabilities