What testing methodologies does it support?

It supports industry-standard approaches including Black Box, Gray Box, and White Box testing across network, web application, and social engineering domains.

Does this skill perform the penetration test automatically?

No, this skill acts as a strategic guide and checklist to help you plan, scope, and manage the penetration testing process effectively rather than executing automated exploits.

How does it help with vulnerability remediation?

It provides a structured workflow for prioritizing findings, allocating resources for fixes, and establishing a verification process to ensure vulnerabilities are closed.

Can I use this for cloud-based applications?

Yes, it includes specific guidance and resource links for penetration testing policies on major providers like AWS, Azure, and Google Cloud Platform.

Pentest Strategy & Checklist

Name: Pentest Strategy & Checklist
Author: claudiodearaujo

byclaudiodearaujo

安全与测试

Guides users through the full lifecycle of penetration testing, from scope definition and environment preparation to monitoring and remediation.

关于

This skill provides a structured methodology for planning and executing security assessments. It offers comprehensive checklists for defining test objectives, selecting the right methodology (Black, Gray, or White box), preparing target environments, and managing post-test remediation. Whether you are a developer preparing for a compliance audit or a security lead scoping an engagement, this tool ensures no critical security steps are missed while providing practical commands for preliminary scanning and monitoring.

主要功能

Post-test cleanup and remediation tracking checklists
Preliminary vulnerability scanning and security monitoring commands
Templates for defining test types and technical boundaries
0 GitHub stars
Cloud provider policy guidance for AWS, Azure, and GCP
Multi-phase penetration testing methodology (Scope, Prep, Monitor, Remediate)

使用场景

Preparing a production or staging environment for authorized external testing
Defining the technical scope and exclusions for an upcoming security audit
Creating a structured remediation plan after receiving a vulnerability report

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/izacenter pentest-checklist

For use in Claude.ai and ChatGPT

Download Skill

GitHub

关于