I have almost a year of experience of web bug hunting. I constantly train to keep up to date on the newer technlogies and techniques, following a carefully crafted guide to not miss any security issue. I'll do an extensive test of your website. Test authentication, authorization/access control and accounting/logging, detect insecure configurations, search for XSS, insecure direct object reference, insecure file upload, XXE.