Skip to main content

PentestingEverythingStart Pentesting References Learning Paths Contribute

PentestingChecklist
wordlistForger
scan4secrets
Scripting4Hackers
Clickjacking-Poc

clickjacking.m14r41.in
cvss.m14r41.in
sqlmap.m14r41.in
reverse-shell.m14r41.in
csrf.m14r41.in

Tags

A

Active Directory Pentesting1
AI / LLM2
Android Pentesting4
API5
API Pentesting4
Application Logic Flaws1
Arbitrary Cookie Flags1
AWS1
Azure1

B

Back button attack1
Blockchain2
BlockChain Pentesting2
Broken Authentication1
BruteForce Attack1

C

Captcha Bypass1
CI-CD Pentesting2
CI/CD3
Clickjacking2
Cloud6
Cloud Pentesting5
Command Injection1
Config2
Configuration Review2
CORS1
Credential Stuffing1
CRLF1

D

Design2
Desktop2
DevSecOps3
Directory Traversal1

F

Firewall Penetration2
Forensic4
Forensics5

G

GCP1
GraphQL1
GraphQL Injection1

H

Host Header Injection1
HTTP Request Smuggling1

I

IDOR1
Improper Error Handling1
Information Disclosure1
Infrastructure2
Infrastructure Security1
Insecure Object Storage1
iOS Pentesting1
IoT2
IoT Pentesting2

J

JWT Attacks1

K

Kubernetes2

L

LLM Security Assessment1

M

MCP Security Assessment1
Misconfigured HTTP Headers1
Mobile8
Mobile Pentesting6

N

Network7
Network Pentesting3

O

Open File Upload1
Open Redirect1
OSINT2
Outdated TLS Version1
Overview3

P

Path Traversal1
Phishing Assessment2
Privilege Escalation1

R

Race Condition1
References17
Remote Code Execution (RCE)1
Rest API1

S

Secure Code Review6
Security Header Missing1
Server Misconfigurations1
Session Fixation1
Social Eng.2
Source Code7
SQL Injection2
SSRF1

T

tabnabbing1
Thick Client Pentesting1
Threat Modeling1

U

Unrestricted File Upload1
Unsecured API Endpoints1

V

Vulnerabilities52

W

Weak Ciphers1
Web54
Web Application Pentesting53
Web Cache Deception1
Web Cache Poisoning1
Web LLM Prompt Injection1
Wi-Fi Pentesting2
Windows1
Windows / AD2
Wireless3

X

XML External Entity (XXE)1
XSS3

PentestingEverything

An open-source, searchable penetration-testing knowledge base covering methodology, payloads, commands, and field references across 23 security domains.

Project

Start Pentesting
Learning Paths
References

Contribute

GitHub
Contributing Guide
Open an Issue

More

Pentesting Checklist
GitHub Repository
Content & Attribution

© 2026 PentestingEverything · Maintained by m14r41Built for the security community