Staying Organized

organization is always crucial

  1. Make sure that your project folders are well organized

  2. Have a clear folder structure in your attack machine to save data

Projects/
└── Acme Company
    β”œβ”€β”€ EPT [ external penetration test ]
    β”‚   β”œβ”€β”€ evidence
    β”‚   β”‚   β”œβ”€β”€ credentials
    β”‚   β”‚   β”œβ”€β”€ data
    β”‚   β”‚   └── screenshots
    β”‚   β”œβ”€β”€ logs
    β”‚   β”œβ”€β”€ scans
    β”‚   β”œβ”€β”€ scope
    β”‚   └── tools
    └── IPT [ internal penetration test ]
        β”œβ”€β”€ evidence
        β”‚   β”œβ”€β”€ credentials
        β”‚   β”œβ”€β”€ data
        β”‚   └── screenshots
        β”œβ”€β”€ logs
        β”œβ”€β”€ scans
        β”œβ”€β”€ scope
        └── tools

Keeping penetration testing structured can save time.

  1. Create a folder for each target host and save screenshots within it

  2. Organize notes by host or network and save screenshots directly into the note-taking tool.

Note-taking tools:

build a findings/vulnerability database include a finding title, description, impact, remediation advice, and references.

  1. Aggregating every payload, command

  2. Maintain checklists

  3. Maintain report templates for various assessment types

  4. Build a findings/vulnerability database

Last updated