What penetration testing services does Daniel Ordonez Arango offer?

Daniel Ordonez Arango offers web application penetration testing, network infrastructure assessments, Active Directory security reviews, privilege escalation analysis, AI / LLM security assessments, and detailed remediation reporting. Available remotely for freelance engagements.

Is Daniel Ordonez Arango certified as a penetration tester?

Daniel Ordonez Arango has completed the CPTS, CDSA, CJCA and CWEE paths on HTB Academy. He ranks in the Top 1% globally on Hack The Box with 702 machines pwned.

Where is Daniel Ordonez Arango based and does he work remotely?

Daniel Ordonez Arango is based in Colombia and is fully available for remote penetration testing engagements worldwide. He works in both English and Spanish.

How can I contact Daniel Ordonez Arango for a penetration test?

You can reach Daniel via email at danielordonezarango@gmail.com, through the contact form on danieloa.com, or via LinkedIn at linkedin.com/in/danieloarango. He is currently open to new engagements.

¿Cuánto cuesta un pentest o prueba de penetración?

El costo de un pentest varía según el alcance. Una evaluación de aplicación web básica puede comenzar desde $3,000 USD para startups y PYMEs. Daniel Ordonez Arango ofrece presupuestos personalizados según el tamaño y complejidad del proyecto. Contáctalo en danieloa.com para una cotización.

¿Hay pentester freelance en Colombia?

Sí. Daniel Ordonez Arango es un pentester freelance basado en Colombia, disponible para proyectos remotos en toda Latinoamérica y el mundo. Habla inglés y español. Top 1% global en Hack The Box con más de 702 máquinas pwned en laboratorios.

¿Qué incluye un informe de pentest?

Un informe de pentest profesional incluye: resumen ejecutivo para directivos, hallazgos técnicos detallados con evidencia, clasificación de vulnerabilidades por criticidad (CVSS), pasos de explotación reproducibles y recomendaciones específicas de remediación priorizadas.

¿Qué es una prueba de penetración de aplicaciones web?

Es una evaluación de seguridad ofensiva que simula ataques reales contra una aplicación web. Se evalúa el OWASP Top 10 (inyección SQL, XSS, IDOR, etc.), lógica de negocio, autenticación, APIs y más. El objetivo es encontrar vulnerabilidades antes que un atacante real.

How much does a freelance penetration test cost for a startup?

Freelance pentest costs for startups typically range from $2,000 to $5,000 depending on scope. Daniel Ordonez Arango offers flexible pricing for early-stage companies and SMBs, with clear deliverables and no enterprise overhead. Contact via danieloa.com for a custom quote.

What is network penetration testing?

Network penetration testing is an offensive security assessment that targets your external and internal network infrastructure — servers, firewalls, routers, and services — to identify misconfigurations, open ports, exploitable vulnerabilities, and lateral movement paths. The goal is to find and fix weaknesses before a real attacker does.

Daniel Ordonez Arango | Freelance Penetration Tester

A breach costs more than a pentest.

I find the vulnerabilities in your systems before someone exploits them. Structured methodology, written deliverables, and a report your team can act on.

Start with a free call

Daniel Ordonez Arango — Penetration Tester

[ HACK THE BOX PROFILE ]

12 HTB paths completed
702 HTB machines pwned
Top 1% HTB ranking

[ SERVICES ]

What I do

Web Application Pentest Find exploitable vulnerabilities in your app before a breach does. OWASP-aligned manual testing with a written report your team can act on immediately.

OWASP Top 10 manual testing
Severity-ranked PDF report
Business impact per finding
Remediation guidance included

Active Directory Pentest Identify attack paths through your internal network before a threat actor does. BloodHound mapping, credential attacks, and a clear remediation roadmap.

BloodHound attack path mapping
Credential attack simulation
Domain privilege escalation PoC
Written remediation roadmap

AI / LLM Security Assessment Red-team your AI and LLM integrations against the OWASP LLM Top 10. Covers prompt injection, jailbreaks, model output attacks, data pipeline vulnerabilities and AI abuse vectors.

Prompt injection (direct & indirect)
LLM output & jailbreak testing
AI data pipeline review
OWASP LLM Top 10 coverage

Network Pentest Map your external and internal attack surface, exploit network vulnerabilities, and receive a prioritized remediation report before a real attacker does.

External & internal recon
Vulnerability exploitation & PoC
Lateral movement & segmentation check
Exposed services inventory

All services include a free re-test after fixes are applied.

[ CASE STUDIES ]

Real engagements, real findings

Web Application · Black-Box

E-commerce · Colombia · 2025

1 Critical 3 High 10 findings

SEO Injection & Malware Discovery

PHP backdoor serving casino content to Googlebot Remote injection via attacker-controlled Cloudflare subdomain Unrestricted file write — persistent server-side execution

All critical and high findings remediated. Re-test passed.

View redacted report →

WordPress · Static Analysis

Corporate Intranet · Colombia · 2025

5 Critical 6 High 20 findings

WordPress Intranet — Static Code Analysis

Hardcoded HR & payment API credentials — CVSS 9.8 JWT auth bypass via undefined secret key — CVSS 9.3 Stored XSS + path traversal in file handler

20 vulnerabilities documented. Client applied all remediations within 2 weeks.

View redacted report →

WordPress · DB & File Forensics

Automotive Industry · Colombia · 2026

5 Critical 3 High 9 findings

Active SEO Spam Injection & Full Remediation

60 hidden divs — 51 gambling domains, undetected 2.5 months 3.8 GB backup publicly exposed — probable entry point Admin credentials hardcoded in 13 places across codebase

All 9 findings remediated in a single session. 8/8 automated verification checks passed.

View redacted report →

[ ABOUT ]

Background

I started as a full-stack developer. That background changes how I test — I know how applications are built, which means I know exactly where developers leave gaps.

My training covers the full offensive attack surface: web exploitation, Active Directory attacks, network pivoting, privilege escalation and post-exploitation techniques. I don't just find vulnerabilities — I explain why they exist, what a real attacker would do with them, and how to fix them correctly.

I work remotely with startups and SMBs across Latin America, the US and Europe. Fixed-price engagements, bilingual delivery, and a free re-test to confirm your fixes actually hold.

[ CERTIFICATIONS ]

Training & Experience

Completed

Web Penetration Tester

Penetration Tester

SOC Analyst

Junior Cybersecurity Analyst

Exams pending

View HTB Transcript →

In Progress

Active Directory Pentesting Expert

Offensive AI Expert

Wi-Fi Pentesting Expert

Background

Full-Stack Developer · Cybersecurity

Verify on LinkedIn →

[ HOW IT WORKS ]

Simple, end-to-end process

Scoping Call

Free 30-minute call to understand your environment, define targets and agree on rules of engagement. No commitment required.

Proposal & NDA

You receive a written proposal with scope, timeline, methodology and fixed price. NDA signed before any work begins.

Active Testing

Active testing phase. You get progress updates throughout. Any critical findings are reported immediately — no waiting for the final report.

Report & Re-test

Detailed PDF report with risk ratings, proof-of-concept and remediation steps. Free re-test included to verify fixes were applied correctly.

[ PRICING ]

Get an instant estimate

Choose your service

Environment parameters

Scope

Complexity

Testing type

Black-box No prior knowledge of the target. Simulates a real external attacker. Ideal to test your defences from an adversarial perspective. ✓ Most common

Grey-box Partial credentials or context provided. Simulates a compromised account or insider threat. Best coverage-to-cost ratio. ✓ Recommended

White-box Full access + source code provided. Maximum depth and coverage. Best for thorough audits or when regulations require it. ✓ Most thorough

Selected service

Web App Pentest

Estimated range

$2,000 — $5,000 USD

Scope Small · 1–5 targets

Complexity Standard

Testing Black-box

Duration 1–2 weeks

Book a free scoping call →

Automated estimate only — not a binding quote.
A signed authorization agreement is required before any engagement begins.

[ FAQ ]

Common questions

01 How much does a penetration test cost?

Web app from $2,000 · Active Directory from $3,000 · Network from $2,000 · AI/LLM from $4,000. Use the pricing calculator above for an instant estimate, or book a free scoping call.

02 How long does a penetration test take?

1–3 weeks from scoping call to final report. AI/LLM focused assessments can be delivered in 3–5 days. Timeline is fixed in the written proposal before any work begins.

03 Is an NDA signed before work begins?

Yes. A mutual NDA is signed before any scoping call or work begins. All findings and client data are kept strictly confidential and never shared with third parties.

04 Why hire you instead of a larger security firm?

Cost, focus, and direct access. As a LATAM-based independent tester, my rates are significantly lower than US/EU firms without sacrificing methodology or quality. You work directly with the person doing the testing — from scoping to final report.

05 What happens if you find a critical vulnerability?

I report it immediately — you don’t wait for the final report. Critical and high findings are communicated as soon as confirmed so your team can begin remediation while the engagement is still active.

06 Is the first call free?

Yes, free and no commitment. In 30 minutes we define your environment and agree on targets and rules of engagement. You receive a written proposal with a fixed price afterwards.

07 Are you certified as a penetration tester?

I hold CPTS, CDSA, CJCA and CWEE certifications from HTB Academy and rank in the Top 1% on Hack The Box with 702 machines pwned. All credentials are verifiable via my HTB profile.

[ SEND A MESSAGE ]

A breach costs more than a pentest.

What I do

Real engagements, real findings

SEO Injection & Malware Discovery

WordPress Intranet — Static Code Analysis

Active SEO Spam Injection & Full Remediation

Background

Training & Experience

Simple, end-to-end process

Get an instant estimate

Common questions

Direct message