Talent.com
This job offer is not available in your country.
Origin / IP Bypass Specialist

Origin / IP Bypass Specialist

Saas Tube private LimitedCoimbatore, IN
16 hours ago
Job description

Codename : IPSniper

Department : Advanced Infrastructure Exploitation Unit

Location : Remote – Classified Operations

Employment Type : Mission-Based Contract

Reports To : Strategic Exploitation Strategist (Internal Command Chain)

Team Size : Part of a 4-Member Offensive Cyber Cell

Company : SaaS Tube – Software and Network Security Engineering Agency

About SaaS Tube

SaaS Tube is a cutting-edge offensive security firm specializing in covert penetration of full-

stack infrastructures, web environments, cloud assets, and token-based communication systems.

We operate under strict non-disclosure, engage in zero-day level logic exploitation, and work on

high-risk, high-stakes targets, often under government and confidential directives.

Role Overview

As the Origin / IP Bypass Specialist , your mission is to identify the true server endpoints

behind services protected by Cloudflare , Imperva , or custom reverse proxy setups . You will

dissect infrastructure maps, trace server headers, and craft requests that circumvent WAFs, DNS

masking, and CDN cloaking to uncover real attack surfaces .

Core Responsibilities

  • Discover real IP addresses behind Cloudflare and other CDNs
  • Execute WAF bypasses using header injection, DNS rebinding, or outdated caching

endpoints

  • Analyze SSL fingerprints , ASN history, and subdomain misconfigurations
  • Utilize manual and hybrid techniques for bypassing reverse proxies
  • Break cPanel, DirectAdmin, or WHM-based protections on obfuscated endpoints
  • Bypass Apache / Nginx layer filtering through crafted request splitting
  • Generate network behavior maps using passive and active recon (manual preferred)
  • Coordinate with Web and Token teams to open deeper attack paths

    • Essential Skills & Experience

  • Deep understanding of DNS enumeration , ASN tracking , IP history tools
  • Proficient in using manual WHOIS traces , netcraft , and historical SSL lookup
  • Experience in defeating Cloudflare and similar WAF / CDN mechanisms
  • Familiarity with server misconfiguration chaining (e.g., bad DNS rules + weak

    • firewall)

  • Knowledge of header-based bypasses (X-Forwarded-For, True-Client-IP, etc.)
  • Working experience with server fingerprinting techniques and traffic correlation

    • Preferred Tools (Used only if needed – not primary mode)

  • Shodan, Censys, ZoomEye (for IP correlation only)
  • Manual DNS zone walking (via dig, nslookup, curl)
  • Header-based cache poisoning and fingerprinting

    • Mindset Requirements

  • Think like a CDN
  • Exploit misalignments between DNS → Webserver → Application stack
  • Maintain stealth and OPSEC at all times
  • Perform fingerprinting without alerting target

    • Example Use Case

    Target runs behind Cloudflare. You identify an old subdomain pointing to a

    forgotten AWS IP, trace ASN logs from 2022, find a match with current headers,

    access / admin / upload.php directly — bypassing all firewalls."

    Operational Framework

  • No need for reporting or documentation
  • Pure tactical execution – results matter, not methods used
  • Works in silent sync with Web Exploiter and Cloud Payload Team
  • Remote, encrypted communication environment for all collaboration

    • Engagement Type

  • Stealth-based contract
  • Pay-per-success (based on full IP trace or endpoint breach)
  • Optional long-term tactical deployment

    • How to Apply

    Submit examples of real IP bypass attempts , or a short explanation of your manual technique

    in identifying unprotected services behind WAFs. Include screenshots or step logs if possible.