By name: pt-gaining-access description: Guides controlled exploitation of validated vulnerabilities to measure real-world impact. Use when the user requests proof-of-concept validation, privilege escalation testing, or attack path confirmation in an authorized environment.
Pen Test Gaining Access
Authorized Use Only
Only perform controlled exploitation on explicitly approved targets. Avoid destructive actions, production instability, and unnecessary data access. Stop immediately if impact exceeds rules of engagement.
Objectives
- Validate whether identified weaknesses are exploitable.
- Demonstrate business-relevant impact with minimum disruption.
- Capture reproducible evidence for remediation.
Workflow
- Select candidates:
- Use only prioritized, in-scope findings from scanning
- Confirm preconditions and rollback/safety plan
- Define proof-of-concept boundaries:
- Minimal payloads to prove exploitability
- No persistence unless separately authorized
- Execute controlled validation:
- Record each step, command, and response
- Confirm exploit chain and resulting access level
- Assess blast radius:
- Determine reachable systems/data from obtained access
- Validate privilege boundaries and segmentation controls
- Package evidence:
- Reproduction steps
- Impact statement in business terms
- Immediate containment recommendations
Output Template
# Gaining Access Output
## Tested Vulnerability
- Identifier:
- Target:
- Preconditions:
## Validation Result
- Exploitable: Yes/No/Partial
- Access achieved:
- Impact observed:
## Evidence
- Reproduction steps:
- Logs/screenshots/artifacts:
## Risk Statement
- Technical impact:
- Business impact:
- Likelihood:
## Handoff
- Needed remediation owners:
- Retest criteria:
Quality Checks
- PoCs are non-destructive and scoped.
- Evidence is enough for independent reproduction.
- Impact is clearly tied to business risk.