Security-Oriented Code Review

Standard Code Review & Security Testing

A practical manual code review for most project sizes. Good for internal tools, APIs, and isolated components, and moderate to large projects up to 100,000 lines of code.

What's included

Up to 100,000 lines of in-scope application code (excludes external dependencies)
Additional lines billed at $0.01/line.
Static testing plus dynamic application security testing (DAST) where a runnable target is available
Manual review of high-risk areas including auth, permissions, input handling, and secrets
Verification and triage of findings
Written report with severity, impact, and remediation guidance
Turn-around-time: 14 days

$749

Optional add-ons

Manual penetration test +$1,500 Scoped manual testing against one deployed web application or API, focused on authentication, authorization, business logic, input handling, and exploitable OWASP Top 10 issues.

25% non-refundable deposit due upfront, remainder due on delivery. After payment you will receive an email with a link and a 6-digit verification code. Click the link, enter the code, then submit your project zip or GitHub repository. Your written report will be delivered within 14 business days. If there is a problem, you will be contacted by email.

Have questions first? Contact me