Before we jump into the core details, let's first understand these two mindsets:
- Bug bounty pentest mindset:
- The aim is to find vulnerabilities that have an impact and fetch a good bounty
- A complete assessment of the application doesn't need to be done
- One bug is enough to qualify for a bounty
- All the vulnerabilities in the application are not reported, only the ones found
- There are no particular timelines; it can be done at the pentester's convenience
- Client-initiated pentest mindset:
- The aim is to ensure that all the application processes and functionalities are tested
- There is a limited timeline in which the whole application needs to be audited
- There is no bounty or rewards
- There is a need to ensure that all the vulnerabilities found by a scanner are validated and reported ...