Must-have checklists I use in my #pentesting assessments.

(thread)

1. Web Application Pentesting Checklist - based on @owasp by Hariprasaanth.

This has 500+ test cases and it's well written: https://hariprasaanth.notion.site/hariprasaanth/WEB-APPLICATION-PENTESTING-CHECKLIST-0f02d8074b9d4af7b12b8da2d46ac998

2. Web Application Penetration Testing Checklist - by @e11i0t_4lders0n 

I like this because it's detailed. It has 200+ test cases: https://alike-lantern-72d.notion.site/Web-Application-Penetration-Testing-Checklist-4792d95add7d4ffd85dd50a5f50659c6

3. Web Vulnerabilities Methodology - by Carlos Polop aka Hacktricks

Needs no introduction: https://book.hacktricks.xyz/pentesting-web/web-vulnerabilities-methodology

4. Pentesting Web checklist - by @Six2dez1 

Been using this for a long time now: https://pentestbook.six2dez.com/others/web-checklist

5. Am I missing someone? Let me know of other insightful checklists!

For more tweets and threads: like, retweet, and follow me @CristiVlad25.

#pentesting #appsec #infosec #cybersecurity #hacking

Must-have checklists I use in my pentesting assessments