Pentest Methodology

The phases of a penetration test from scoping to retest. Expand a phase to see its objective, the key activities, and what it should produce.

About

How a professional pentest runs end to end, aligned with the PTES and NIST SP 800-115 methodologies. Eight phases from pre engagement scoping through reporting and retest.

Authorised testing only. Every activity here, especially exploitation and post exploitation, must stay strictly within an agreed scope and rules of engagement, backed by written authorisation. Without that, it is not a pentest, it is a crime.

Aligned with the Penetration Testing Execution Standard (PTES) and NIST SP 800-115. Phase descriptions written in our own words.

UniCybers Labs · Offensive Security Back to Offensive Security tools

Unlock the Labs toolkit

Free for learners. Tell us who you are once and every tool opens after that. It helps us keep the tools working and build what you actually need.

Full name

Phone (optional)

College or organisation

You are a

I confirm I am 18 years of age or older. I agree to the Privacy Policy and Terms.

One time only. We never sell your data.