Web Attack Checklist
Common web vulnerabilities to test
Tip: Click on any node to see related information!
Interactive Mind Map
graph TD
A[Web App Testing] --> B[Authentication]
A --> C[Injection]
A --> D[File Attacks]
A --> E[Access Control]
B --> F[Brute Force]
B --> G[Default Creds]
C --> H[SQLi]
C --> I[XSS]
C --> J[Command Injection]
D --> K[LFI/RFI]
D --> L[File Upload]
E --> M[IDOR]
E --> N[Privilege Escalation]
Related Modules
Penetration Testing Process
Understanding the phases of penetration testing: Planning, Information Gathering...
FundamentalsNetwork Enumeration with Nmap
Master Nmap for host discovery, port scanning, service detection, and NSE script...
EnumerationFootprinting
Gather information about target infrastructure including DNS, SMTP, FTP, SMB, NF...
EnumerationWeb Information Gathering
Techniques for web application reconnaissance including subdomain enumeration, d...
WebVulnerability Assessment
Identify and prioritize vulnerabilities using automated scanners and manual test...
FundamentalsFile Transfers
Methods to transfer files between attacker and target systems....
FundamentalsQuick Reference
Click on a node in the mind map to see quick reference information.