OWASP Testing Guide v4.1

03.04.2020

Materials for download

The OWASP Testing Guide provides best practice guidelines for penetration testing, as well as a low-level guide that describes testing techniques for the most common vulnerabilities in web applications and web services.

The following sections describe 12 sub-categories of penetration testing methodology in web applications:

  • Introduction and Objectives
  • Information Gathering
  • Configuration and Deployment Management Testing
  • Identity Management Testing
  • Authentication Testing
  • Authorization Testing
  • Session Management Testing
  • Input Мalidation testing
  • Testing for Error Handling
  • Testing for Weak Cryptography
  • Business Logic Testing
  • Client side testing

Link to the source: https://www.owasp.org

Share:

With this article also read:

03.06.2020
OWASP Application Security Verification Standard v 4.0

Over the last 30+ years, penetration testing has proven over and over again to miss critical security issues that…

09.05.2018
PCI DSS v3.2.1 (en,ru)

For the sake of viewer convenience, the content is shown below in the alternative language. You may click the…

05.12.2017
OSSTMM 3

For the sake of viewer convenience, the content is shown below in the alternative language. You may click the…

05.12.2017
Техническое руководство по тестированию и оценке ИБ – NIST SP 800-115 (2008)

For the sake of viewer convenience, the content is shown below in the alternative language. You may click the…

05.12.2017
Модель тестирования на проникновение BSI

For the sake of viewer convenience, the content is shown below in the alternative language. You may click the…