The Penetration Testing Execution Standard Logo

The Penetration Testing Execution Standard

0
Free
Updated 11 March 2025
Offensive Security
Penetration Testing
Vulnerability Research
Exploitation
Reporting
Visit Website

The penetration testing execution standard consists of seven main sections, covering everything related to a penetration test, from initial communication to reporting. The standard is divided into seven main sections: 1. Introduction and Planning 2. Intelligence Gathering and Threat Modeling 3. Vulnerability Research 4. Exploitation and Post-Exploitation 5. Reporting This version can be considered a v1.0, with a v2.0 in the works, providing more granular work in terms of 'levels' - as in intensity levels at which each of the elements of a penetration test can be performed at.

FEATURES

EXPLORE BY TAGS

Penetration Testing

Vulnerability Research

Exploitation

Reporting

SIMILAR TOOLS

Dendrobate Logo
Dendrobate

A managed code hooking template for .NET assemblies, enabling API hooking, code injection, and runtime manipulation.

Free
Offensive Security
x8 Logo
x8

Hidden parameters discovery suite

Free
Offensive Security
MagSpoof Logo
MagSpoof

A credit card/magstripe spoofer that can emulate any magnetic stripe or credit card wirelessly.

Free
Offensive Security
Ebowla Logo
Ebowla

Ebowla is a tool for generating payloads in Python, GO, and PowerShell with support for Reflective DLLs.

Free
Offensive Security
CredMaster Logo
CredMaster

CredMaster enhances password spraying tactics with IP rotation to maintain anonymity and efficiency.

Free
Offensive Security
SigThief Logo
SigThief

Stealing Signatures and Making One Invalid Signature at a Time.

Free
Offensive Security
OfficePurge Logo
OfficePurge

A tool to remove malicious artifacts from Microsoft Office documents, preventing malware infections and data breaches.

Free
Offensive Security
Covert Red Team Attack Infrastructure Logo
Covert Red Team Attack Infrastructure

Back-end component for red team operations with crucial design considerations.

Free
Offensive Security
WayMore Logo
WayMore

A tool that finds more information about a given URL or domain by querying multiple data sources.

Free
Offensive Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy