This walks you through the entire penetration testing lifecycle, from scoping and budgeting through execution and remediation. It covers choosing between test types (external, internal, web app, red team), prepping environments without wasting pentest time on obvious vulns, selecting qualified testers with the right creds, and setting up proper monitoring so your SOC doesn't freak out during authorized testing. The checklists are genuinely thorough, covering things people forget like notifying cloud providers and freezing deployments. If you're running your first pentest or trying to standardize how your org handles security assessments, this gives you the framework to avoid common mistakes like inadequate scoping or skipping the remediation phase.
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill pentest-checklist