TM
Do You Have Your Own Web Application
Penetration Test Checklist? 5 Tips to Get You Started
1. Create Testing Categories
Grouping tests into logical categories can make it easier
to build and maintain checklists over time. Many people
look to the OWASP Top 10 for guidance, but NetSPI
recommends you choose categories that will help meet
your goals.
Common categories that NetSPI recommends:
• Authentication Bypass
• Injections Issues
• Sensitive Data Exposure
• Application Functionality and Business Logic Checks
• 3rd Party Components Checks
• Session Management
• Weak Application Configuration Checks
• Weak Server Configuration Checks
• Weak Platform Configuration Checks
2. Create Test Baselines
No checklist will cover every scenario for all applications
but creating tests that cover core technologies and
processes used during most web application penetration
tests will save you time and ensure that you and your
organization are covering the most common
vulnerabilities. Online resources to get you started:
• OWASP Testing Guide
• Web Application Hackers Handbook Checklist
Project Specific Information
A checklist serves as a place to store required
procedures for engagements. It can also be a valuable
place to store information discovered before, during, and
after a test. A dynamic checklist creates a single source
of information related to the test. This information can
also include:
• Connection Information
• Application Overviews Notes
• Application Contacts
• Application-Specific Testing Requirements
• Why Certain Procedures Were Skipped/Modified
• Relevant Notes for Future Testers
To learn more about NetSPI’s security testing and vulnerability assessment services,
visit www.netspi.com
[email protected] 888.270.0317
3. Link to External Content
Trying to fit every verbose testing procedure into your
checklist may not be plausible but including links to
relevant information can help you. NetSPI recommends
limiting procedures to the most common scenarios and
linking to the outliners. Including a small summary with
resources and any troubleshooting that occurred during
the first use can greatly increase the speed with which
they can be used.
4. Choosing a Testing Checklist Platform
Choosing the right checklist solution can help free up
more time for digging into vulnerabilities and issues not
covered in your baseline checklist process.
There are several checklist platforms available on the
internet that can be leveraged to create and maintain a
list of common tasks. NetSPI recommends using one that
has the capability to tie the tests to the findings that
will ultimately turn into the report or ticket for the
business owner. This will help reduce redundant tasks
and increase the speed at which your team can get
results to the people who need them.
For more information on our software platform, check
out NetSPI Resolve™.
5. Track and Remediate
The whole point of testing for web application
vulnerabilities is to fix them before someone else can
take advantage of them. Having an established process
for delivering identified vulnerabilities to the right
people should be your first step at the end of your test.
Bug Bounty Hunters
channel – or work through a broker like HackerOne and
Bugcrowd.
Internal Penetration Testers
Make sure to work with internal business units to ensure
the vulnerability is reported and remediated in accordance
with the company’s policy. NetSPI recommends having a
checklist and a reporting process that integrates into
ticketing systems – like NetSPI Resolve.
netspi.com Minneapolis, MN