Skip to content

Penetration tests guide based on OWASP including test cases, resources and examples.

License

Notifications You must be signed in to change notification settings

Aalapsec/pentest-guide

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Penetration Test Guide based on the OWASP + Extra

This guide is for the penetration testers seeking for the appropriate test cases required during a penetration test project. I rearranged the OWASP Testing Guide v4 from my point of view including 9 Test Classes and each class has several Test Cases to conduct against the target. Each Test Case covers several OWASP tests which also is useful for the report document. I've also added 15 extra Tests Cases marked by the EXTRA-TEST. I hope it will be useful in both penetration test projects and bug-bounty.

TODO:

  1. Add resources for each test.

Information Gathering

Configuration and Deployment Management

    • Enumerate Infrastructure and Application Admin Interfaces
    • Enumerate Infrastructure and Application Admin Interfaces (OTG-CONFIG-005)
    • Test Network/Infrastructure Configuration (OTG-CONFIG-001)
    • Hidden Resources Discovery
    • Review Old, Backup and Unreferenced Files for Sensitive Information (OTG-CONFIG-004)
    • HTTP Security Headers
    • Testing for Lack of HTTP Security Headers (EXTRA-TEST-002)

Identity Management and Authentication

Authorization and Boundary Test

Cookie and Session Management

    • Secure Session Management
    • Testing for Bypassing Session Management Schema (OTG-SESS-001)
    • Testing for Session Fixation (OTG-SESS-003)
    • Testing for Exposed Session Variables (OTG-SESS-004)
    • Testing for Logout functionality (OTG-SESS-006)
    • Test Session Timeout (OTG-SESS-007)
    • Testing for Session puzzling (OTG-SESS-008)

Accessibility

    • Denial of Service
    • Test for Denial of Service (EXTRA-TEST-008)

Input/Output Validation

Testing for weak Cryptography

    • Testing for Weak SSL/TLS Ciphers, Insufficient Transport Layer Protection
    • Testing for Weak SSL/TLS Ciphers, Insufficient Transport Layer Protection (OTG-CRYPST-001)
    • Testing for Sensitive Information Sent via Unencrypted Channels
    • Testing for Sensitive Information Sent via Unencrypted Channels (OTG-CRYPST-003)
    • Testing for Padding Oracle (OTG-CRYPST-002)

Workflow/Dataflow Tests

About

Penetration tests guide based on OWASP including test cases, resources and examples.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published