From 7e739b02ad66a07993f6ad9ca473036f8c94d43f Mon Sep 17 00:00:00 2001
From: Swissky <maxropelewski@gmail.com>
Date: Sun, 26 Mar 2017 20:51:40 +0200
Subject: [PATCH] Methodology - The Harvester + Checklist

---
 Methodology_and_enumeration.md | 25 +++++++++++++++++++++++--
 1 file changed, 23 insertions(+), 2 deletions(-)

diff --git a/Methodology_and_enumeration.md b/Methodology_and_enumeration.md
index c90cce5a..63b96a6d 100644
--- a/Methodology_and_enumeration.md
+++ b/Methodology_and_enumeration.md
@@ -60,8 +60,9 @@ git clone https://github.com/ChrisTruncer/EyeWitness.git
 
 ## Passive recon
 ```
-Use shodan to detect similar app
-Use the wayback machine to detect forgotten endpoint
+Using Shodan (https://www.shodan.io/) to detect similar app
+Using The Wayback Machine (https://archive.org/web/) to detect forgotten endpoint
+Using The Harvester (https://github.com/laramies/theHarvester) 
 ```
 
 
@@ -141,6 +142,26 @@ alias set_proxy_burp='gsettings set org.gnome.system.proxy.http host "http://loc
 then launch Burp with : java -jar burpsuite_free_v*.jar &
 ```
 
+* Checklist for Web vulns
+```
+[] AWS Amazon Bucket S3  
+[] Git Svn insecure files   
+[] CVE Shellshock Heartbleed  
+[] Open redirect            
+[] Traversal directory    
+[] XSS injection
+[] CRLF injection  
+[] CSRF injection          
+[] SQL injection            
+[] NoSQL injection                 
+[] PHP include      
+[] Upload insecure files     
+[] SSRF injection         
+[] XXE injections
+[] CSV injection 
+[] PHP serialization   
+```
+
 * Subscribe to the site and pay for the additional functionality to test
 
 * Launch a Nikto scan in case you missed something