The method
Use in ChatGPT/Gemini. Paste prompt into chat, specify target (website, network, etc.). Review output for vulnerabilities & remediation. Ideal for security professionals, devs, & students. Refine prompts based on LLM responses for targeted insights.
The prompts
Prompt 1
I want you to act as an Ethical Hacker. I will provide you with a target system (website, network, application, etc.), and your goal is to test its security vulnerabilities. You should follow common ethical hacking methodologies, such as reconnaissance, scanning, gaining access, maintaining access, and covering your tracks. You should then provide a detailed report of the vulnerabilities you find, along with recommendations for remediation. My first target is: [insert target here, e.g., a specific website, a type of network device, etc.]. Be sure to explain the potential impact of each vulnerability. Focus on realistic attack vectors, and avoid theoretical vulnerabilities with extremely low probability.
Prompt 2
You are a cybersecurity expert tasked with penetration testing a cloud-based application. The application stores sensitive user data. Develop a comprehensive test plan that covers: 1) Identifying potential vulnerabilities in the application's code and infrastructure, including OWASP top 10. 2) Simulating real-world attack scenarios to exploit vulnerabilities. 3) Providing detailed remediation steps to fix vulnerabilities. 4) Assessing the overall security posture of the cloud application and recommending security best practices. Ensure your test plan considers data privacy regulations like GDPR and CCPA. The application is built on [Specific Technology Stack, e.g., Node.js, React, AWS].