Create desktop methodology page

cobalthq · Dec 12, 2023 · 9b9513d · 9b9513d
1 parent b2caeeb
commit 9b9513d
Showing 1 changed file with 30 additions and 0 deletions.
diff --git a/content/en/Methodologies/desktop.md b/content/en/Methodologies/desktop.md
@@ -0,0 +1,30 @@
+---
+title: "Desktop Penetration Testing Methodology"
+linkTitle: "Desktop Methodologies"
+weight: 100
+description: >
+  Review Cobalt pentest methodologies for desktop applications.
+---
+
+{{% pageinfo %}}
+Desktop penetration testing is a process in which a tester uses simulated attacks to identify potential security vulnerabilities in a desktop application.
+{{% /pageinfo %}}
+
+We follow an industry-standard methodology primarily based on the OWASP Desktop Application Security Verification Standard (ASVS) and Testing Guide.
+
+#### Specific categories that are covered as part of the Pentest include:
+
+- Information Gathering
+  - Application Architecture
+  - Platform Mapping
+  - Language and Framework
+- Client-Side Attacks
+  - Binary Analysis
+  - File Analysis
+  - Memory Analysis
+- Network-Side Attacks
+  - Installation Traffic
+  - Run-Time Traffic
+- Server-Side Attacks
+  - TCP/UDP Attacks
+  - Layer7 Attacks