•

Penetration Testing Findings Repository by Cybersecurity and Infrastructure Security Agency

GitHub - cisagov/pen-testing-findings: A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test.

https://github.com/cisagov/pen-testing-findings

A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test. - GitHub - cisa...

GitHub - cisagov/pen-testing-findings: A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test.

The repository consists of three layers:

Finding Category layer lists the overarching categories

General Finding layer lists high-level findings

Specific Finding layer lists low-level findings

Just an overview of the general findings

General findings

More: https://cmu-sei-podcasts.libsyn.com/a-penetration-testing-findings-repository

0 comments

Rules

Keep related to software engineering

Keep comments on-topic of the post

Try to post free/open access content

Try to post content from reliable sources (ACM, IEEE, SEI, NN/G, ...), or useful content in general

Relevant questions are welcone, as long they are genuine and respectful

Be genuinely respectful, kind, helpful; act in and assume good faith

No discrimination

No personal attacks, no personal questions

No attention stealing: no ads, spam, influencers influencing, memes, trolling, emotional manipulation/advertising (e.g. engagement through enragement or other negative emotions), jokes that dissipate the focus of the topic, ...