Good Morning Sir,
Here is Michele Cimmino from Italy, I'm a graduated full stack web developer, full stack software architect, owner of an individual firm and an expert of web security.
I can provide you an object oriented, modular, cross-browser/platform and cutting-edge approach according to the principles of the software engineering, in the software architecture and in all solutions delivered for your project.
The intervention that i usually perform to significantly increase the security of web applications, starts with a deep analysis on how the user agent interacts with your server side business logic: ajax requests, web sockets, database interaction ( selects, updates, deletes, insertions ).
This way I'm able to find many well known bad practices that you are still using and solve them with the current best provided solution by the scientific community on information security.
What I usually solve is: SQL injection by performing only prepared statements and no free SQL run, SSL hashing of the password using the salt, not using only MD5, preventing this way the usage of rainbow tables and finally all the part related to DDOS and cross site scripting, using unique tokens making an user agent validation.
Then we will analyze the server in order to understand if ports are safely listening, if only user with an ssh key access can perform the authentication etc.
As you can understand Sir, performing a well done security test is not a joke.
Let's schedule a chat!
-Michele