The following sections describe the 12 subcategories of the Web Application Penetration Testing Methodology:
1. Introduction and Objectives 2. Information Gathering 3. Configuration and Deployment Management Testing 4. Identity Management Testing 5. Authentication Testing 6. Authorization Testing 7. Session Management Testing 8. Input Validation Testing 9. Error Handling 10. Cryptography 11. Business Logic Testing 12. Client Side Testing
This article is part of the new OWASP Testing Guide v4. At the moment the project is in the REVIEW phase.
0 comments:
Post a Comment