Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/dsopas/assessment-mindset

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
https://github.com/dsopas/assessment-mindset

bugbounty infosec methodology mindmap

Last synced: about 1 month ago
JSON representation

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

Host: GitHub
URL: https://github.com/dsopas/assessment-mindset
Owner: dsopas
License: mit
Created: 2018-03-12T10:40:41.000Z (almost 7 years ago)
Default Branch: master
Last Pushed: 2022-04-12T11:52:20.000Z (over 2 years ago)
Last Synced: 2024-08-01T09:21:53.481Z (4 months ago)
Topics: bugbounty, infosec, methodology, mindmap
Homepage:
Size: 16.3 MB
Stars: 726
Watchers: 55
Forks: 117
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-security-collection - **392**星 - teamassessments (<a id="8c5a692b5d26527ef346687e047c5c21"></a>收集)
awesome-hacking-lists - dsopas/assessment-mindset - Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments. (Others)
awesome-starred - dsopas/assessment-mindset - Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments. (others)

README

        # Security Assessment Mindset

## Why

I did this to help me on my security assessments (pentest, bug bounty, red-team, kung foo, you name it) and to keep my work well organized.

Each time I finished a task, I marked it with a check icon using [XMind](https://www.xmind.net/). If you don't have this tool, print the image version and use your pencil to mark it as done.

Included in this mindset is [WAHH Methodology](http://mdsec.net/wahh/tasks.html), [OWASP API Security Top 10](https://www.owasp.org/index.php/OWASP_API_Security_Project) and [IOT PenTesting Guide](https://www.gitbook.com/book/adi0x901/iot-pentesting-guide/details) from [@adi1391](https://twitter.com/adi1391).

## Formats

OPML is the main file because it would be the source to import to almost all mindmap software. I also exported xmind and PNG version for Xmind users and others that don't really have mindmap tools.

If you need other format, please let me know so I can start exporting it in future versions.

## How to contribute

New tasks, tools, typos and other things you think it would help this mindmap, please **Add a new Pull Request with your OPML file** on this repo for discussion and validation. Remember that tis is open to ALL infosec community so let us all keep things rolling  :thumbsup:. Any question, feel free to ping me at [Twitter](https://www.twitter.com/dsopas).

## Thanks

+ Zezadas [@0xz3z4d45](https://twitter.com/0xz3z4d45)

+ Mentsh [@M3n7sh](https://twitter.com/M3n7sh)

## To do

- Mobile applications mindmap (iOS and Android)

- Networking mindmap (work in progress)

- Wifi mindmap

- IoT mindmap (work in progress)