My knowledge list for Pentesting
•
1 min read
I am currently working on a checklist for pentesting. I am not sure if I will ever use it, but I think it’s a good idea to have one.
I will start with the following things to know:
- OSSTMM (The Open Source Security Testing Methodology Manual )
- OWASP (Open Web Application Security Project)
- NIST Cybersecurity Framework 1.1
- NCSC CAF (National Cyber Security Centre Cyber Assessment Framework)
Following tools I will use:
- Nmap
- Burpsuite
- Metasploit
- Wireshark
- Gobuster