Web Pentest Checklist

Otamatize

• Acunetix

• Burp Active Scan

• Nessus

• Qualys

Server

• Missing Security Headers

• IIS Tilde

• Version Disclosure

• Directory Listing

• Unsafe HTTP Methods

• Dirsearch

• Burp Find Comments

• SSL/TLS

Input Zafiyetleri

• SQL Injection

• NoSQL Injection

• XSS

• OS Command Injection

• SSTI

• XXE Injection

• SSRF

• CSRF

• LFI/RFI

• Directory Traversal

• Insecure Deserialization

• HTTP Paramater Pollution

• File Upload

• Open Redirect

Mantıksal Zafiyetler

• HTTP Request Smuggling

• Race Condition

• Web Cache Poisoning

• Detaylı Hata Mesajları

• Type Juggling

• CRLF Injection (%0D%0A)

• UUID Version 1 Kullanımı

• Business Logic

Authantication (Kimlik Doğrulama)

• Captcha Bypass

• Rate Limit (Login, MFA, Password Reset vb kritik işlemler)

• Rate Limit Bypass Headers (X-Forwarded-For gibi)

• Response Code Manipulation

• Username Enumeration

• Response Time (Cok uzun parola ile username bruteforce)

• OAUTH Zafiyetleri

• Password Reset Host Header Poisoning

• Password Reset Tahmin Edilebilir Token

• Password Reset Expire Oluyor Mu

Authorization (Yetkilendirme)

• IDOR

• Anonim Erişilebilen Kritik Endpointler

• Broken Access Control

• 403 Bypass

• CORS

Session

• JWT

• Session Çerezlerinde HTTP Only ve Secure Flaglari

• Session bilgisi URL de gözükmesi