Fellow H4x0rs! As title says, tomorrow i will have an assessment for a pentester position.
This corporate has its own DVWA which i am supposed to test and write a report.
Based on my performace, they will define my seniority.
I am supposed to find at least 3 vulnerabilities to pass the test and have 48 hrs.
I really want to perform well and beside studying i am trying to guess which vulns i should hunt for. My plan for now, would be finding the XSS (also a reflected one to get two points?), and the SQLi, which i suppose will be there almost certainly. What other vulns should i prepare for (inb4 OWASP top10)?
Can you report on similar assessments and share your experience?
Thanks in advance for your time!