seclens-enterprise-web
Installation
SKILL.md
Pentest Enterprise Web
Purpose
Perform comprehensive vulnerability assessments on web applications and APIs (REST/GraphQL) to identify security flaws, logic errors, and compliance issues.
Prerequisites
Authorization Requirements
- Written authorization (scope document signed by asset owner)
- Target environment classification: Internal / External / Hybrid
- Rules of Engagement: Testing hours, notification procedures, emergency contacts
Evasion Profile Selection
| Profile | Use Case | Characteristics |
|---|---|---|
| Quiet | Production systems, WAF-protected targets | Low request rate, header rotation, timing jitter |
| Standard | Staging environments, time-limited tests | Balanced speed/stealth |
| Aggressive | Internal networks, comprehensive coverage | Maximum parallelism, full payloads |