Methodology & Academy

Checklist

Web Application Pentesting Checklist | HowToHuntkathan19.gitbook.io

OWASP-Testing-Guide/OWASP-Checklist at main · h4cks1lv3r/OWASP-Testing-GuideGitHub

Methodology

https://lostsec.xyz/?s=03lostsec.xyz

Academy

Integriti

HackademyIntigriti

BugCrowd

GitHub - bugcrowd/bugcrowd_university: Open source education content for the researcher communityGitHub

Burp

Web Security Academy: Free Online Training from PortSwiggerWebSecAcademy

Interesting Books

Interesting Books

Disclaimer: As an Amazon Associate, I earn from qualifying purchases. This helps support this GitBook project at no extra cost to you.

• The Web Application Hacker’s Handbook The go-to manual for web app pentesters. Covers XSS, SQLi, logic flaws, and more

• Bug Bounty Bootcamp: The Guide to Finding and Reporting Web Vulnerabilities Learn how to perform reconnaissance on a target, how to identify vulnerabilities, and how to exploit them

• Real-World Bug Hunting: A Field Guide to Web Hacking Learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery.