Prompt Templates
12 expert templates + custom template creation for focused vulnerability testing.
Overview
Templates are structured AI prompts that shape how VISTA analyzes HTTP requests. Instead of generic analysis, templates provide deep, methodology-driven testing guidance for specific vulnerability classes.
Why Use Templates?
| Without Template | With Expert Template |
|---|---|
| “This parameter might be vulnerable to XSS” | “Based on reflection analysis, use these 5 payloads targeting the unquoted attribute context. If Cloudflare WAF is detected, apply double-encoding bypass…” |
| Generic vulnerability scan | PortSwigger-grade methodology with step-by-step exploitation |
| Basic payload suggestions | WAF-aware, context-specific payloads with bypass techniques |
Template Types
Standard Mode
Basic templates with simple system/user prompts. Good for general analysis.
Expert Mode
Advanced templates with comprehensive methodology, exploitation techniques, and structured output requirements. Recommended for bug bounty hunting.
Quick Reference
| Template | Vulnerability | Mode |
|---|---|---|
| XSS - DOM Based | DOM XSS | Standard |
| Traffic - Bug Bounty | Traffic Analysis | Standard |
| SQL Injection Expert | SQLi | Expert |
| XSS - Reflected Expert | Reflected XSS | Expert |
| SSRF Expert | SSRF | Expert |
| IDOR / BOLA Expert | IDOR/BOLA | Expert |
| SSTI Expert | SSTI | Expert |
| Auth Bypass Expert | Auth Bypass | Expert |
| File Upload Expert | File Upload | Expert |
| Race Condition Expert | Race Conditions | Expert |
| JWT / OAuth Expert | JWT/OAuth | Expert |
| API Security Expert | API Top 10 | Expert |
→ See Built-in Templates for detailed descriptions of each template. → See Custom Templates to create your own.