TurboWindX
  • Welcome
  • Hacking Methodologies
    • Known Tools & Technologies
    • Kill Chain
    • Phyisical and hardware
      • Full Screen Escape
  • Checklist - WebApps
  • Checklist - Windows
  • External Recon
    • Ports & services scanning
    • Web Recon
      • CMS
        • Wordpress
      • Path traversal & LFI/RFI
      • XSS - Cross site scripting
      • XML External Entity - XXE
  • Internal Recon
    • Active Directory
  • Post Exploitation
    • Container/Sandbox Breakout
    • Privilege Escalation
      • Hashing & Cracking
    • Persistence
      • Windows
    • Data Exfiltration
      • Steganography
      • Pivot & Tunneling
  • Shells
  • Protocols
    • FTP
    • SSH
    • DNS
    • IPP
  • Binary Exploitation
    • Linux - Simple reverse & crack
  • Memory Analysis
  • Forensics
  • Android & iOS
  • Database Injection & Exploitation
  • DDoS
  • Kubernetes & Docker
  • Phish
Powered by GitBook
On this page
  • Web Application
  • Network
  • User management
  • Registration
  • Authentication
  • Session
  • Profile/Account details
  • Forgot/reset password
  • Input handling
  • Error handling
  • Application Logic
  • Other checks
  • Infrastructure
  • CAPTCHA
  • Security Headers

Was this helpful?

Checklist - WebApps

Quick checklist for penetration test

PreviousFull Screen EscapeNextChecklist - Windows

Last updated 2 years ago

Was this helpful?

Web Application

Network

User management

Registration

Authentication

Session

Profile/Account details

Forgot/reset password

Input handling

Error handling

Application Logic

Other checks

Infrastructure

CAPTCHA

Security Headers

Check DMARC/SPF policies ()

Open ports with

Check UDP ports ( or nmap)

Test SSL ()

If got creds, try password for all the services discovered

Check for password wordlist ( and )

Try login with common

File upload: , No Size Limit, File extension, Filter Bypass, burp extension, RCE

Check profile picture URL and find email id/user info or

of all downloadable files (Geolocation, usernames)

Try to discover hidden parameters (or )

Check for test credit card number allowed like 4111 1111 1111 1111 ( )

Virtual hosting misconfiguration ()

Bypass with OCR tool ()

wafw00f
githound
gau
waybackurls
hakrawler
gf-patterns
paramspider
dalfox
bfac
blc
subjs
linkfinder
secretfinder
JSParser
JSFScan
JSScanner
jshole
nuclei
CORScanner
corsy
subfinder
assetfinder
amass
sudomy
crobat
SubDomainizer
dnsgen
shuffledns
subbrute
httpx
SubOver
cloudenum
cloudscrapper
cloudlist
Transfer zone
altdns
flydns
goaltdns
gowitness
webscreenshot
aquatone
amass
asnlookup
metabigor
bgp
acquisitions
spoofcheck
Shodan
udp-proto-scanner
testssl
spraying
cewl
burp-goldenNuggets
credentials
eicar
EXIF Geolocation Data
Metadata
arjun
parameth
sample1
sample2
VHostScan
easy one