Archive for category Web Security

Expense Management System

Scope
The scope of this project is to design, build and test a website and online Data Base where employees can create a log in and build an online travel expense report, the report can be submitted to the employees manager who can review and approve the report.

The site will have very similar to the reference site expensify(dot)com

If you are interested in bidding for this project, you must provide the information requested in the section Proposal Format – See below.
Any proposals that do not adhere to this format will not be considered.

Dashboard

Import Credit Card / Bank Details
The employee selects their bank and enters their online banking credentials and the employees bank and credit card statement are imported into their expense report.

Reports
The Employee can create a new expense report. They enterer expenses either manually or using the import feature. The expenses are then assigned to an expense report. The employee can then upload receipt images and attach these to the expenses.

Policy
The administrator can create new travel policy rules where restriction on expenses can be set eg if the expense amount is greater than $5 you must have a receipt.
The administrator can then assign a policy type to each employee.

Mobile App
Mobile App that will allow the employee to take an image of their receipts and attach them to their expense reports.

Customised Categories
The Administrator can create pre-defined expense categories, add new users to the system, assign access levels and rights to employees.

Settings

Adding new expense rules
tips / help
Assign Email Preferences
Add bank account details to receive reimbursement
Connection to other systems not in scope
Billing where the administrator can add a Credit card to pay fees and reimbursements.

Reporting
Report on the expenses created eg expenses paid, not paid, outstanding, expenses by category, by employee, expenditure per month.

Submitting Expense Reports
The employee can submit an expense report and identifies their manager who will approve the expense report. The manager reviews the claim and any policy violations are highlighted in red / yellow. You can hover over the report for pop up windows with further information.

Data Export
Need functionality to be able to export all data and images out of the online data base, in .xls , CSV format.

Testing
The System will be fully tested in all main browsers.

Proposal Format.
The proposal should cover the following key areas:

-Technical
-Financial
-Delivery

Please email your proposal to Eamon Clune at by Thursday 7th April.

Technical

The project has some unique features some of which do not appear in websites very often.

The main technical elements are:

Phase 1
1.Development of an online work flow solution, with multiple roles and levels of access – where an expense form can be passed from the originator; to the approver to the payer. The work flow solution needs to be able to route the claim to the correct person in the flow and have automatic email notifications

2.The solution need to have an invoicing feature, The invoice will be made up of 1) the monthly subscription fee based on the number of users per month. 2) the approved expense amount for each employee.

3.The system will have 2 billing/ payment features, 1)the admin enters their credit card details and the credit card is charged monthly based on the number of users that company has using the system per month. 2) each time an employees expenses are approved by their company, their company credit card is charged and is paid to the employee.

Phase 2
4.An iPhone and Android App will be required. The App will allow the employee to log in and create a new expense, take a photo of their receipt and submit this

Tags: , , , , , , , , , , , , , , , ,

Software Liscence Protection

i need a program that protect my software. if i give the cd for a customer, it should work only for one server. he cant use reflectors to get the code in the dll and exe. now even if u dont have the program, i need to consult with the expert to get ideas and advise

Tags: , , , , , , , , , , , , , ,

Penetration Tester

We are looking for a very experiened penetration test

Tags: , , , , , , , , , , ,

Joomla Security Expert

We require an expert security technician to determine where and when a joomla site has been hacked. This is an immediate project.

The site in question has seen an 80% sales drop on increased traffic and no market changes. When the site was moved to a new server, sales jumped back up for two days before dropping again. Our server logs show daily hack attempts but do not seem to be successful. This project will be based on a project fee and an additional reward of $500 if the source / type of hack can be proven and stopped.

Tags: , , , , , , , , , , , , , , , ,

Website Vulnerability & Penetration Testing For Social Site

We want penetration and vulnerability testing done a social networking website.

We will require a very detailed report and recommendations on how to solve some of the vulnerabilities that may be found. The test would include tests for cross site scripting, man-in-the-middle attacks, SQL code injection and all the other standard tests and more because of the nature of the site (a social networking site).
It could also be helpful, but not necessary if service provider has expertise to help plug the holes or solve the problems that these test bring to the fore.

We would also be more favourably disposed to service provider who would be willing to sing Non-disclosure agreement. This is not a must, but if we receive bids from service providers who would be willing to do, well consider those bids first.

Tags: , , , , , , , , , , , , , , , ,

E-Commerce With Virtual Mirror

Budget: $500 ||| No Upfront Payment ||| Payment per milestone
Payment is broken down into milestones AND ONLY RELEASED when each milestone is completed, It should be uploaded to my server, tested and approved. NO EXCEPTIONS.

We are looking for a high end marketplace & professional ecommerce site for Eyeglasses & Frames.
It must be High resolution and user friendly.
The project will needs to be integrated with Virtual Mirror include prescription order form like the following websites:

http://www.virtualmirror.net/
http://www.glasses4eyes.co.uk/virtual_mirror.php
http://glassestryon.coastalcontacts.com/vm09/?c=us
http://www.zennioptical.com/
http://www.zennioptical.com/227315-plastic-full-rim-frame-with-sparkling-crystals.html

Note: You must be expertise in the following:
* A+ for Innovative Ideas & if have developed, designed & programmed such a website before.
* Strong in programming of PHP, HMTL, XHTML, Java script, Java, CSS, Flash, MySql, etc.
* Search Engine Optimization (SEO) experience, 100% SEO optimized from the start and no cookie cutter sites
* Cross Browsers Compatibility Needed for IE, Mozilla, Chrome, Safari, Macintosh, etc.
* Create CSS for each
* Security consideration

Server: Linux, Apache, cPanel

To be considered you must send your portfolio or any related work that has been done with your bid.

Thanks,

Tags: , , , , , , , , , , , , , , , ,

Create A Full Packages For Error Pages.

You must create full packages for error pages.
Heres the list of error pages you must create :

400 Bad Request – HTTP_BAD_REQUEST
401 Authorization Required – HTTP_UNAUTHORIZED
402 Payment Required – HTTP_PAYMENT_REQUIRED
403 Forbidden – HTTP_FORBIDDEN
404 Not Found – HTTP_NOT_FOUND
407 Proxy Authentication Required – HTTP_PROXY_AUTHENTICATION_REQUIRED
408 Request Time-out – HTTP_REQUEST_TIME_OUT

500 Internal Server Error – HTTP_INTERNAL_SERVER_ERROR
502 Bad Gateway – HTTP_BAD_GATEWAY
503 Service Temporarily Unavailable – HTTP_SERVICE_UNAVAILABLE
504 Gateway Time-out – HTTP_GATEWAY_TIME_OUT
505 HTTP Version Not Supported – HTTP_VERSION_NOT_SUPPORTED

So you only create 12 pages and .htaccess file. Each pages must be stored on separate folder.
If you have any skill to do it, just bid it. Dont ever bid if you dont understand.

Project must be completed on 2-3 days. Payment will be issued after the project is finished.
If you need more detail about this project, or any question, just PM it to me.

Tags: , , , , , , , , , , , , , , , ,

Microsoft Forefront

Need someone to install and configure Forefront from Microsoft on windows 2008 server.

Tags: , , , , , , , , , , , , ,

POS System – Pawnshop

POS System – Pawn Shop

This project will be continually growing. I am a programmer but my abilities are not professional enough to start a project like this from scratch – im more of a hack whom finds a way to get things done. I will offer recommendations for database tables and organization but will expect them to be reviewed and enhanced by you then sent back to me for approval. The software will be tested in my store but built in a way that it can be easily deployed to other businesses. The entire POS system should be accessible from the web browser. There will have to be an optional frontend or some type of browser plugin to access the local printers for paperwork printing and access to local webcam to take snapshots of customers and merchandise. Eventually ID scanners, thumb scanners and other forms of technology will be implemented. Security is VERY important as everything from customers drivers IDs, social security numbers and credit card numbers will be stored in the database. As with most POS systems employees will have logins with varying degrees of access, options for shared cash drawers and individual cash drawers, etc… Reports are also very important as they are with most POS systems. There also needs to be automated reports run daily – schematics for these reports will be supplied. There will also be a customer online payment system for payments on layaways and pawns. Because this will eventually be used in shops around the country the level of customization and settings will be very robust. Pawnshop laws around the country vary dramatically from how much you can charge on a loan, extra fees allowed, length of loan, required papework, digital police reports and so on. The goal for this project is to get the software working in one store but leaving open as much as possible to be built upon later. Before launch a conversion from my current system/database to the new system will have to be automated. I use one of the most widely used pawn software around so this conversion tool will be a key component when implementing in other pawnshops. I am very familiar with the database in use so this should not be overly difficult but it is worth mentioning.

You are bidding on phase 1:
Pawnshop POS System (Master drawer/emp drawers/sales/layaway/pawns/pawn payments/extensive reporting)
Web based (we will discuss how webcam/printers will interact)
Online payments

I would like this to be programmed mainly in PHP but am open if there are good reasons to go another way.

I stress this project will not end when phase 1 is over – please only bid if you plan on sticking with this for the long run.

I have been in the pawn business for over 20 years – I have programmed many extensions on top of the POS system I am currently using (such as online payments, PBX system payments, mobile access, detailed reports, security camera integration, etc..) but have reached a point where I believe a new system from scratch would better serve myself and our industry.

Please provide previous work you have done. Projects dealing with high security a plus.

If you have any questions for me dont hesitate to ask.

Tags: , , , , , , , , , , , , , , , ,

Os Commerce Creloaded Security Fix

We are looking for a simple fix on a current Creloaded site that currently had its main paged redirected to external websites from (hackers)

We need someone to take away this redirection and fix up the Security loophole that they are obviously getting through in one of the PHP Pages.

Please only bid if you have seen this error before and no exactly how to fix up.

Tags: , , , ,