Read books.
These teach you:
- The kind of Exploratory testing you need to know in modern environments
- How to get started in web testing for the complete neophyte
Alexey Solovyev AlexeySolovyev
AlexeySolovyev
/ gist:04217c124f6348ebcdd0a784c15c163e
Created
January 9, 2023 03:20
— forked from jaredsburrows/gist:9e121d2e5f1147ab12a696cf548b90b0
full English translation of Phineas Fisher's account of how he took down HackingTeam - https://www.reddit.com/r/netsec/comments/4f3e6p/full_english_translation_of_phineas_fishers/
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| _ _ _ ____ _ _ | |
| | | | | __ _ ___| | __ | __ ) __ _ ___| | _| | | |
| | |_| |/ _` |/ __| |/ / | _ \ / _` |/ __| |/ / | | |
| | _ | (_| | (__| < | |_) | (_| | (__| <|_| | |
| |_| |_|\__,_|\___|_|\_\ |____/ \__,_|\___|_|\_(_) | |
| A DIY Guide | |
AlexeySolovyev
/ PowerView-3.0-tricks.ps1
Created
January 23, 2022 23:32
— forked from HarmJ0y/PowerView-3.0-tricks.ps1
PowerView-3.0 tips and tricks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # PowerView's last major overhaul is detailed here: http://www.harmj0y.net/blog/powershell/make-powerview-great-again/ | |
| # tricks for the 'old' PowerView are at https://gist.github.com/HarmJ0y/3328d954607d71362e3c | |
| # the most up-to-date version of PowerView will always be in the dev branch of PowerSploit: | |
| # https://github.com/PowerShellMafia/PowerSploit/blob/dev/Recon/PowerView.ps1 | |
| # New function naming schema: | |
| # Verbs: | |
| # Get : retrieve full raw data sets | |
| # Find : ‘find’ specific data entries in a data set |
AlexeySolovyev
/ qa_beginner_reading_list.md
Created
August 27, 2019 14:57
— forked from smariapena/qa_beginner_reading_list.md
Small Book List: Required Reading For The Absolute Test Beginner
AlexeySolovyev
/ tester-questions.md
Created
August 27, 2019 14:56
— forked from smariapena/tester-questions.md
Questions I Like To Ask Testers In Interviews, Mostly Exploratory, Mostly Mobile, Mostly Agency Work
- Do you have a smartphone, what’s your favorite app? How would you test it?
- Tell me about your favorite bug that you found and reported.
- What are the benefits of an exploratory approach to software testing? Downsides?
- Where do test cases fit into your typical project lifecycle in an agile project in the client services world?
- Where does design fit into your test coverage strategy? How do you work with designers?
- Do you have any view on QA versus QC versus Test nomenclature?
AlexeySolovyev
/ all.txt
Created
April 20, 2018 14:25
— forked from jhaddix/all.txt
all wordlists for every dns enumeration tool... ever.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @ | |
| * | |
| 0 | |
| 00 | |
| 0-0 | |
| 000 | |
| 0000 | |
| 00000 | |
| 000000 |
AlexeySolovyev
/ WAHH_Task_Checklist.md
Created
April 20, 2018 14:24
— forked from jhaddix/Testing_Checklist.md
The Web Application Hacker's Handbook - Task Checklist - Github-Flavored Markdown
Web Application Hacker's Handbook Task checklist as a Github-Flavored Markdown file
AlexeySolovyev
/ cloud_metadata.txt
Created
April 20, 2018 14:23
— forked from jhaddix/cloud_metadata.txt
Cloud Metadata Dictionary useful for SSRF Testing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## AWS | |
| # from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories | |
| http://169.254.169.254/latest/user-data | |
| http://169.254.169.254/latest/user-data/iam/security-credentials/[ROLE NAME] | |
| http://169.254.169.254/latest/meta-data/iam/security-credentials/[ROLE NAME] | |
| http://169.254.169.254/latest/meta-data/ami-id | |
| http://169.254.169.254/latest/meta-data/reservation-id | |
| http://169.254.169.254/latest/meta-data/hostname | |
| http://169.254.169.254/latest/meta-data/public-keys/0/openssh-key |