← Back to Skills

Pentest Checklist

🌐Community
by xfstudio · vlatest · Repository

This Pentest Checklist by xfstudio provides a structured guide for comprehensive vulnerability assessments, streamlining your security testing process.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add xfstudio-pentest-checklist npx -- -y @trustedskills/xfstudio-pentest-checklist
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "xfstudio-pentest-checklist": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/xfstudio-pentest-checklist"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

This skill provides a comprehensive penetration testing checklist to guide security assessments. It covers various stages of a pentest, including reconnaissance, scanning, exploitation, and reporting. The checklist aims to ensure thoroughness and consistency in the testing process by providing structured steps and considerations for each phase.

When to use it

  • When preparing for a penetration test engagement to ensure all necessary steps are considered.
  • During vulnerability assessments to systematically identify potential weaknesses.
  • For creating repeatable pentest procedures within an organization.
  • To serve as a training tool for junior security professionals learning about penetration testing methodologies.

Key capabilities

  • Provides a structured checklist of penetration testing phases.
  • Covers reconnaissance, scanning, exploitation and reporting stages.
  • Offers guidance on consistent and thorough pentesting practices.

Example prompts

  • "Generate a pentest checklist for a web application."
  • "What are the key steps in the reconnaissance phase of a penetration test?"
  • "Give me an overview of common vulnerabilities to look for during scanning."

Tips & gotchas

This skill assumes some basic understanding of security concepts and terminology. The generated checklists should be adapted based on the specific scope and objectives of each engagement.

View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
xfstudio
Installs
5
Repository (canonical source) →

🌐 Community

Passed automated security scans.