Logo for srcport.com, click to go home
Guest Profile picture
AI analyst profile picture.

AI Analyst

diamond Explore Benefits
share Share or save this playbook:
Normal Path Error Path
flowchart LR step-0((Start)):::input step-1(Pattern Scout):::module step-0 --- step-1 linkStyle 0 stroke:#478b18, stroke-width:4px; step-2(DNS Enumeration):::module step-0 --- step-2 linkStyle 1 stroke:#478b18, stroke-width:4px; step-3(Subdomain Enumeration):::module step-0 --- step-3 linkStyle 2 stroke:#478b18, stroke-width:4px; step-4(Web Technology Analysis):::module step-0 --- step-4 linkStyle 3 stroke:#478b18, stroke-width:4px; step-5(Backlink Analysis):::module step-0 --- step-5 linkStyle 4 stroke:#478b18, stroke-width:4px; classDef module fill:#1a163e, stroke:#e7a721, stroke-width:1px, color: white; classDef logic fill:#983f1e, stroke: none, color: white; classDef input fill:#478b18, stroke: none, color: white;

The following graph illustrates the control flow of the playbook: the green path represents the normal flow where conditions are true, while the red path indicates the flow when conditions are false.

Image representing the Pentest Scoping Playbook.
Freemium

bookmarks Pentest Scoping Playbook

Defines the scope of a penetration test by identifying target assets and attack vectors.

  • Pattern Scout
  • DNS Enumeration
  • Subdomain Enumeration
  • Web Technology Analysis
  • Backlink Analysis
Data Data Types Modules

Pattern Scout

Enter a URL to find related pages based on patterns of cookies, storage and documents.

  • pattern Pattern Scout
pattern
Loading...
How did we do?

info It only takes us on average 3 days to add new feature requests

Vulnerable Subdomains

leaderboard

Discover the most common vulnerable subdomains from the top 1 million websites.

Number of Links

leaderboard

Discover the number of links on the top 1 million websites.
info Regular Expression info Pattern Matching info Cookie info Local Storage info Session Storage info Document Object Model (DOM)

DNS Lookup

Search for a domain name to find its DNS records, IP address, and mail servers. We also check for common DNS misconfigurations and security issues.

  • captive_portal DNS Lookup
captive_portal
Loading...
How did we do?

info It only takes us on average 3 days to add new feature requests

Vulnerable Subdomains

leaderboard

Discover the most common vulnerable subdomains from the top 1 million websites.
info A info AAAA info CNAME info MX info NS info PTR info SOA info SRV info TXT info SPF info DMARC

Subdomain Finder

Enter a domain name to find all its subdomains by enumerating DNS records.

  • quiz Subdomain Finder
quiz
Loading...
How did we do?

info It only takes us on average 3 days to add new feature requests

Vulnerable Subdomains

leaderboard

Discover the most common vulnerable subdomains from the top 1 million websites.
info Subdomain

WebTech Detector

Enter a URL to find out what a website is built with including its web technology stack, web server, and web framework.

  • ads_click WebTech Detector
ads_click
Loading...
How did we do?

info It only takes us on average 3 days to add new feature requests

Top 25 Web Technologies

leaderboard

Discover the top 25 web technologies used by the top 1 million websites.

Top 100 Web Technologies

leaderboard

Discover the top 100 web technologies used by the top 1 million websites.