Website mapping
A penetration tester will have to list every feature of the website along their route. For instance,
- "list all products":
/products, - "list a product":
/products?id=x
This is automatically done by tools such as Burp if you are redirecting requests through the proxy, even if you don't intercept them.
Anyway, it's a good practice to test the website features as a user before trying to look for vulnerabilities.
π Don't forget the 404 page!
π Don't forget special pages, such as the password reset page.
π» To-do π»
Stuff that I found, but never read/used yet.
Try testing the page under different contexts (logged or anonymous, correct cookies vs poisonous cookies, etc.).