This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Test HTTP Methods (OTG-CONFIG-006)"
From OWASP
(→Short Description of the Issue (Topic and Explanation)) |
|||
| Line 2: | Line 2: | ||
== Short Description of the Issue (Topic and Explanation) == | == Short Description of the Issue (Topic and Explanation) == | ||
| − | + | In this test we check that the web server is not configured to allow potentially dangerous HTTP commands (methods) and that Cross Site Tracing (XST) is not possible<br> | |
== Black Box testing and example == | == Black Box testing and example == | ||
Revision as of 23:37, 30 October 2006
OWASP Testing Guide v2 Table of Contents
[hide]
Short Description of the Issue (Topic and Explanation)
In this test we check that the web server is not configured to allow potentially dangerous HTTP commands (methods) and that Cross Site Tracing (XST) is not possible
Black Box testing and example
Testing for Topic X vulnerabilities:
...
Result Expected:
...
Gray Box testing and example
Testing for Topic X vulnerabilities:
...
Result Expected:
...
References
Whitepapers
...
Tools
...
OWASP Testing Guide v2
Here is the OWASP Testing Guide v2 Table of Contents OWASP Testing Guide v2 Table of Contents
This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.
