harshinsecurity/web-pentesting-checklist external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

harshinsecurity/web-pentesting-checklist

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/harshinsecurity/web-pentesting-checklist)

Close

harshinsecurity / web-pentesting-checklistView on GitHubMore

• External links
• Readme badge

checklist for testing the web applications

☆285Feb 25, 2023Updated 3 years ago

Alternatives and similar repositories for web-pentesting-checklist

Users that are interested in web-pentesting-checklist are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• infinite-omicron / pentesting-checklist

  View on GitHub
  Penetration Testing Checklist
  ☆37May 14, 2020Updated 5 years ago
• Hari-prasaanth / Web-App-Pentest-Checklist

  View on GitHub
  A OWASP Based Checklist With 500+ Test Cases
  ☆861Oct 26, 2022Updated 3 years ago
• sderosiaux / checklists

  View on GitHub
  All checklists
  ☆27Mar 26, 2019Updated 6 years ago
• D3n0Duz / WebPentestChecklist

  View on GitHub
  Workflow for pentesting web applications.
  ☆21Feb 19, 2019Updated 7 years ago
• initstring / pentest-methodology

  View on GitHub
  Short checklists for penetration testing methodology
  ☆201Sep 5, 2023Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• chennylmf / OWASP-Web-App-Pentesting-checklists

  View on GitHub
  ☆72Sep 18, 2020Updated 5 years ago
• PeterSufliarsky / pentesting-cheat-sheet

  View on GitHub
  Useful commands for pentesting Linux and Windows systems
  ☆14Jul 18, 2020Updated 5 years ago
• anirudh3171 / SSL-pinning-bypass

  View on GitHub
  SSL Pinning bypass using frida server for Mobile Application Penetration Testing
  ☆15Jan 6, 2021Updated 5 years ago
• e11i0t4lders0n / Web-Application-Pentest-Checklist

  View on GitHub
  ☆535Jul 16, 2021Updated 4 years ago
• MahdiMashrur / Awesome-Application-Security-Checklist

  View on GitHub
  Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application
  ☆645Apr 10, 2020Updated 5 years ago
• netbiosX / Checklists

  View on GitHub
  Red Teaming & Pentesting checklists for various engagements
  ☆2,646Jul 27, 2025Updated 7 months ago
• everythingBlackkk / Youtube_C2

  View on GitHub
  ☆12Apr 20, 2025Updated 11 months ago
• gokulapap / submax

  View on GitHub
  All in one subdomain Enumeration tool
  ☆21Jan 1, 2023Updated 3 years ago
• 0xmaximus / Galaxy-Bugbounty-Checklist

  View on GitHub
  Tips and Tutorials for Bug Bounty and also Penetration Tests.
  ☆1,776Oct 7, 2025Updated 5 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• citybasebrooks / XSS-Filter-Evasion

  View on GitHub
  XSS payloads to bypass various XSS filters
  ☆13May 1, 2019Updated 6 years ago
• Cyb3rC3lt / OSCP-Exercise-Checklist

  View on GitHub
  A checklist to help students track their OSCP exercise progress.
  ☆145Aug 10, 2022Updated 3 years ago
• daffainfo / AllAboutBugBounty

  View on GitHub
  All about bug bounty (bypasses, payloads, and etc)
  ☆6,672Sep 8, 2023Updated 2 years ago
• devanshbatham / Awesome-Bugbounty-Writeups

  View on GitHub
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆5,581Aug 6, 2023Updated 2 years ago
• omkar-ukirde / api-pentesting

  View on GitHub
  API Pentesting notes.
  ☆96Nov 4, 2024Updated last year
• s-index / poc-list

  View on GitHub
  PoC List
  ☆10Sep 4, 2022Updated 3 years ago
• TakSec / XSS-PoCs

  View on GitHub
  XSS PoCs to elevate your alert()
  ☆22May 18, 2023Updated 2 years ago
• brosck / Metafind

  View on GitHub
  「📖」Tool created to extract metadata from a domain
  ☆14Dec 7, 2024Updated last year
• HolyBugx / HolyTips

  View on GitHub
  A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
  ☆1,985Sep 5, 2021Updated 4 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• six2dez / pentest-book

  View on GitHub
  ☆1,987Feb 25, 2026Updated last month
• KathanP19 / HowToHunt

  View on GitHub
  Collection of methodology and test case for various web vulnerabilities.
  ☆7,057Jun 25, 2025Updated 9 months ago
• EdOverflow / bugbounty-cheatsheet

  View on GitHub
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆6,399Sep 14, 2023Updated 2 years ago
• Akokonunes / Private-Nuclei-Templates

  View on GitHub
  ☆173Nov 20, 2025Updated 4 months ago
• 0xRadi / OWASP-Web-Checklist

  View on GitHub
  OWASP Web Application Security Testing Checklist
  ☆2,106Aug 18, 2022Updated 3 years ago
• JoasASantos / OSCE3-Complete-Guide

  View on GitHub
  OSWE, OSEP, OSED, OSEE
  ☆3,786Jan 2, 2026Updated 2 months ago
• kennbroorg / iKy-POC

  View on GitHub
  Proof of Concept OSINT visualization
  ☆12Dec 29, 2017Updated 8 years ago
• C0nd4 / OSCP-Priv-Esc

  View on GitHub
  Mind maps / flow charts to help with privilege escalation on the OSCP.
  ☆394Dec 19, 2020Updated 5 years ago
• rabakuku / ADVULNLAB

  View on GitHub
  ☆11Aug 18, 2023Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• latortuga71 / YoutubeAsAC2

  View on GitHub
  Poc of using youtube comments for C2 communications
  ☆10Jul 6, 2021Updated 4 years ago
• wariv / OSCP-Practice-Exam-Generator

  View on GitHub
  ☆14Nov 18, 2021Updated 4 years ago
• machevalia / OSWA

  View on GitHub
  Offensive Security Web Assessor Resources Repo
  ☆37Oct 30, 2023Updated 2 years ago
• stark0de / ocr-recon

  View on GitHub
  This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities
  ☆31Jan 17, 2022Updated 4 years ago
• AutoRecon / AutoRecon

  View on GitHub
  AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
  ☆5,943Jan 28, 2026Updated last month
• hardw00t / ai-security-arsenal

  View on GitHub
  A collection of skills, agents, commands, and workflows for security researchers. Compatible with Claude Code, Claude Desktop, OpenCode, …
  ☆33Feb 25, 2026Updated last month
• panch0r3d / nuclei-templates

  View on GitHub
  ☆90Oct 28, 2021Updated 4 years ago