imthomas93
commented
3 years ago Hi @Regala.
Thank you for using and your feedback for Autowasp. For the first feature request, I agree that we can do better by adding the Done column into the testing checklist tool for a better user experience. This will be in our product pipeline for upcoming release.
For your second feedback, yes, adding a host column could be tricky as a pen-tester might use be testing an application with multiple different endpoint. Do let us discuss internally and see how can we implement this to make the feature better.
Once again! Thank you for your support!
Regala
Hi folks! First off awesome job with this extension, it solves a gap in the pentesters flow and it's really well documented.
I have a couple of suggestions, which I'd love to be added. The first is adding a "Done" column, equal to the "To Exclude". Basically this would allow us to keep track of what tests have been done and complement the excluded tests very nicely.
The second one would be adding a host column. I assume this is much more tricky and probably not for everyone. But personally, when testing a target I have multiple targets/hosts. As such, for me to cover everything I need to distinguish the tests done in one host for another. With that host tab, I could make sure that all the tests were done and covered in all of the scope. I'm not sure the best way to implement this - e.g. duplicating the checklist items for every host in scope to test, or being able to duplicate only some items, or simply making the host column a text input where we could manually write the targets we tested.
Very crude mockup:
Thanks and keep up the good work!