Awesome Open Source
Awesome Open Source

Security Assessment Mindset


I did this to help me on my security assessments (pentest, bug bounty, red-team, kung foo, you name it) and to keep my work well organized.

Each time I finished a task, I marked it with a check icon using XMind. If you don't have this tool, print the image version and use your pencil to mark it as done.

Included in this mindset is WAHH Methodology, OWASP API Security Top 10 and IOT PenTesting Guide from @adi1391.


OPML is the main file because it would be the source to import to almost all mindmap software. I also exported xmind and PNG version for Xmind users and others that don't really have mindmap tools. If you need other format, please let me know so I can start exporting it in future versions.

How to contribute

New tasks, tools, typos and other things you think it would help this mindmap, please Add a new Pull Request with your OPML file on this repo for discussion and validation. Remember that tis is open to ALL infosec community so let us all keep things rolling 👍. Any question, feel free to ping me at Twitter.


To do

  • Mobile applications mindmap (iOS and Android)
  • Networking mindmap (work in progress)
  • Wifi mindmap
  • IoT mindmap (work in progress)

Get A Weekly Email With Trending Projects For These Topics
No Spam. Unsubscribe easily at any time.
infosec (181
bugbounty (160
mindmap (39
methodology (18

Find Open Source By Browsing 7,000 Topics Across 59 Categories