Master assessment mindmaps

Web Application Pentesting Mindmap

Key areas to assess during web application security testing:

Reconnaissance

• Subdomain enumeration

• Technology fingerprinting

• Hidden content discovery

• API endpoint mapping

Authentication Testing

• Brute force protection

• Password policies

• Session management

• Multi-factor authentication bypass

• Account lockout mechanisms

Authorization Testing

• Horizontal privilege escalation (IDOR)

• Vertical privilege escalation

• Function-level access control

• Insecure direct object references

Input Validation

• SQL Injection (all types)

• XSS (Reflected, Stored, DOM)

• Command Injection

• SSRF / CSRF

• XXE Injection

• Template Injection (SSTI)

Business Logic

• Workflow bypass

• Price manipulation

• Quantity tampering

• Feature abuse

Infrastructure

• Server misconfigurations

• Default credentials

• Exposed admin panels

• Information disclosure

Bug Bounty Methodology

Comprehensive Pentest Methodology

Phase 1: Information Gathering

1. Passive reconnaissance (OSINT)

2. Active scanning and enumeration

3. Vulnerability identification

Phase 2: Exploitation

1. Vulnerability validation

2. Exploit development/selection

3. Initial access

Phase 3: Post-Exploitation

1. Privilege escalation

2. Persistence

3. Lateral movement

4. Data exfiltration

Phase 4: Reporting

1. Finding documentation

2. Risk assessment

3. Remediation recommendations

Additional Resources

• OWASP Testing Guide

• PortSwigger Web Security Academy

• HackTricks

• PayloadsAllTheThings