harshinsecurity/web-pentesting-checklist external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

harshinsecurity/web-pentesting-checklist

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/harshinsecurity/web-pentesting-checklist)

Close

harshinsecurity / web-pentesting-checklistView on GitHubMore

• External links
• Readme badge

checklist for testing the web applications

☆291Feb 25, 2023Updated 3 years ago

Alternatives and similar repositories for web-pentesting-checklist

Users that are interested in web-pentesting-checklist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• infinite-omicron / pentesting-checklist

  View on GitHub
  Penetration Testing Checklist
  ☆36May 14, 2020Updated 6 years ago
• Hari-prasaanth / Web-App-Pentest-Checklist

  View on GitHub
  A OWASP Based Checklist With 500+ Test Cases
  ☆889Oct 26, 2022Updated 3 years ago
• sderosiaux / checklists

  View on GitHub
  All checklists
  ☆27Mar 26, 2019Updated 7 years ago
• D3n0Duz / WebPentestChecklist

  View on GitHub
  Workflow for pentesting web applications.
  ☆21Feb 19, 2019Updated 7 years ago
• initstring / pentest-methodology

  View on GitHub
  Short checklists for penetration testing methodology
  ☆200Sep 5, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• chennylmf / OWASP-Web-App-Pentesting-checklists

  View on GitHub
  ☆72Sep 18, 2020Updated 5 years ago
• PeterSufliarsky / pentesting-cheat-sheet

  View on GitHub
  Useful commands for pentesting Linux and Windows systems
  ☆14Jul 18, 2020Updated 5 years ago
• anirudh3171 / SSL-pinning-bypass

  View on GitHub
  SSL Pinning bypass using frida server for Mobile Application Penetration Testing
  ☆15Jan 6, 2021Updated 5 years ago
• e11i0t4lders0n / Web-Application-Pentest-Checklist

  View on GitHub
  ☆535Jul 16, 2021Updated 4 years ago
• iAnonymous3000 / awesome-pentest-checklist

  View on GitHub
  A comprehensive, step-by-step penetration testing checklist for ethical hackers. Covers pre-engagement, information gathering, analysis, …
  ☆136Nov 19, 2024Updated last year
• netbiosX / Checklists

  View on GitHub
  Red Teaming & Pentesting checklists for various engagements
  ☆2,651Jul 27, 2025Updated 9 months ago
• MahdiMashrur / Awesome-Application-Security-Checklist

  View on GitHub
  Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application
  ☆649Apr 10, 2020Updated 6 years ago
• everythingBlackkk / Youtube_C2

  View on GitHub
  ☆12Apr 20, 2025Updated last year
• 0xmaximus / Galaxy-Bugbounty-Checklist

  View on GitHub
  Tips and Tutorials for Bug Bounty and also Penetration Tests.
  ☆1,943Oct 7, 2025Updated 7 months ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• gokulapap / submax

  View on GitHub
  All in one subdomain Enumeration tool
  ☆21Jan 1, 2023Updated 3 years ago
• citybasebrooks / XSS-Filter-Evasion

  View on GitHub
  XSS payloads to bypass various XSS filters
  ☆14May 1, 2019Updated 7 years ago
• daffainfo / AllAboutBugBounty

  View on GitHub
  All about bug bounty (bypasses, payloads, and etc)
  ☆6,742Sep 8, 2023Updated 2 years ago
• Cyb3rC3lt / OSCP-Exercise-Checklist

  View on GitHub
  A checklist to help students track their OSCP exercise progress.
  ☆146Aug 10, 2022Updated 3 years ago
• omkar-ukirde / api-pentesting

  View on GitHub
  API Pentesting notes.
  ☆96Nov 4, 2024Updated last year
• devanshbatham / Awesome-Bugbounty-Writeups

  View on GitHub
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆5,856Aug 6, 2023Updated 2 years ago
• HolyBugx / HolyTips

  View on GitHub
  A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
  ☆2,007Sep 5, 2021Updated 4 years ago
• s-index / poc-list

  View on GitHub
  PoC List
  ☆10Sep 4, 2022Updated 3 years ago
• 0xRadi / OWASP-Web-Checklist

  View on GitHub
  OWASP Web Application Security Testing Checklist
  ☆2,135Aug 18, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• EdOverflow / bugbounty-cheatsheet

  View on GitHub
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆6,482Sep 14, 2023Updated 2 years ago
• TakSec / XSS-PoCs

  View on GitHub
  XSS PoCs to elevate your alert()
  ☆23May 18, 2023Updated 3 years ago
• KathanP19 / HowToHunt

  View on GitHub
  Collection of methodology and test case for various web vulnerabilities.
  ☆7,114Jun 25, 2025Updated 11 months ago
• brosck / Metafind

  View on GitHub
  「📖」Tool created to extract metadata from a domain
  ☆14Dec 7, 2024Updated last year
• six2dez / pentest-book

  View on GitHub
  ☆2,031Feb 25, 2026Updated 3 months ago
• Akokonunes / Private-Nuclei-Templates

  View on GitHub
  ☆177Nov 20, 2025Updated 6 months ago
• JoasASantos / OSCE3-Complete-Guide

  View on GitHub
  OSWE, OSEP, OSED, OSEE
  ☆3,825Jan 2, 2026Updated 4 months ago
• kennbroorg / iKy-POC

  View on GitHub
  Proof of Concept OSINT visualization
  ☆12Dec 29, 2017Updated 8 years ago
• C0nd4 / OSCP-Priv-Esc

  View on GitHub
  Mind maps / flow charts to help with privilege escalation on the OSCP.
  ☆392Dec 19, 2020Updated 5 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• rabakuku / ADVULNLAB

  View on GitHub
  ☆11Aug 18, 2023Updated 2 years ago
• wariv / OSCP-Practice-Exam-Generator

  View on GitHub
  ☆14Nov 18, 2021Updated 4 years ago
• Probely / security_checklist

  View on GitHub
  Web Application Security Checklist
  ☆134Apr 10, 2025Updated last year
• machevalia / OSWA

  View on GitHub
  Offensive Security Web Assessor Resources Repo
  ☆39Oct 30, 2023Updated 2 years ago
• stark0de / ocr-recon

  View on GitHub
  This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities
  ☆31Jan 17, 2022Updated 4 years ago
• AutoRecon / AutoRecon

  View on GitHub
  AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
  ☆5,995Jan 28, 2026Updated 3 months ago
• panch0r3d / nuclei-templates

  View on GitHub
  ☆90Oct 28, 2021Updated 4 years ago