AI Checklist Generator

From the makers of Manifestly Checklists

Email address

Home > penetration test

penetration test

Pre-penetration test checklist

Define scope of test

Identify key assets to be tested

Obtain necessary permissions and authorizations

Assign roles and responsibilities to team members

Set timeline for test

Technical assessment checklist

Map network infrastructure

Use tools like Nmap to scan for live hosts and open ports
Create a network map detailing all devices and connections

Identify potential entry points

Look for weak passwords on services like SSH or RDP
Check for misconfigured services that may allow unauthorized access

Scan for vulnerabilities

Use tools like Nessus or OpenVAS to scan for known vulnerabilities
Check for missing patches on servers and applications

Exploit vulnerabilities to gain access

Attempt to exploit identified vulnerabilities using tools like Metasploit
Gain access to a system or application with known security flaws

Test for privilege escalation

Attempt to escalate privileges on compromised systems
Check for misconfigured permissions that may allow privilege escalation

Test for lateral movement within network

Attempt to move laterally across network segments
Check for weaknesses in network segmentation that may allow lateral movement

Test for data exfiltration

Attempt to exfiltrate sensitive data from the network
Check for insecure protocols or misconfigured access controls that may allow data exfiltration

Social engineering assessment checklist

Develop phishing emails and other social engineering tactics

Test employees' susceptibility to social engineering attacks

Document responses and identify areas for improvement

Train employees on how to recognize and respond to social engineering attacks

Post-penetration test checklist

Document findings, including vulnerabilities exploited and data accessed

Recommend mitigation strategies for vulnerabilities

Conduct debrief with stakeholders to discuss findings and next steps

Prepare final report detailing test results and recommendations.

Download CSV Download JSON Download Markdown

Use in Manifestly

Hey there! Here's a little about us or visit our recurring workflow SaaS: Manifestly Checklists

Light Dark