Checklist - WebApps
Quick checklist for penetration test
Last updated
Was this helpful?
Quick checklist for penetration test
Last updated
Was this helpful?
Check DMARC/SPF policies ()
Open ports with
Check UDP ports ( or nmap)
Test SSL ()
If got creds, try password for all the services discovered
Check for password wordlist ( and )
Try login with common
File upload: , No Size Limit, File extension, Filter Bypass, burp extension, RCE
Check profile picture URL and find email id/user info or
of all downloadable files (Geolocation, usernames)
Try to discover hidden parameters (or )
Check for test credit card number allowed like 4111 1111 1111 1111 ( )
Virtual hosting misconfiguration ()
Bypass with OCR tool ()