Difference between revisions of "Web Application Penetration Testing"

Latest revision as of 15:26, 5 August 2014

This article is part of the new OWASP Testing Guide v4.

Back to the OWASP Testing Guide v4 ToC:
   https://www.owasp.org/index.php/OWASP_Testing_Guide_v4_Table_of_Contents
Back to the OWASP Testing Guide Project:
   https://www.owasp.org/index.php/OWASP_Testing_Project

The following sections describe the 12 subcategories of the Web Application Penetration Testing Methodology:

4.1 Introduction and Objectives

4.2 Information Gathering

4.3 Configuration and Deployment Management Testing

4.4 Identity Management Testing

4.5 Authentication Testing

4.6 Authorization Testing

4.7 Session Management Testing

4.8 Input Validation Testing

4.9 Error Handling

4.10 Cryptography

4.11 Business Logic Testing

4.12 Client Side Testing

@@ Line 1: / Line 1: @@
-.1 [[Introduction and objectives]] (0%, TD) <br>
+{{Template:OWASP Testing Guide v4}}
-.2 [[Information Gathering (spider, google)]] (0%, TD)<br>
-.3 [[Business logic testing]] (50%, TD)<br>
-.4 [[Authentication Testing]] (50%, TD) <br>
+The following sections describe the 12 subcategories of the  Web Application Penetration Testing Methodology:
-.4.1 Default or guessable (dictionary) user account 90% TD
-.4.2 Brute Force 0% TD
-.4.3 Bypassing authentication schema 0% TD
-.4.4 Vulnerable remember password and pwd reset 90% TD
-.4.5 Logout and account expiry 0% TD
-.5 [[Session Management Testing]] (0%, TD) <br>
+[[Testing: Introduction and objectives|'''4.1 Introduction and Objectives''']]
-.5.1 Cookie and Session token Manipulation(reg, forg/brute force) 100% Review
-.5.2 Weak session tokens 70% TD
-.5.3 Session Riding 100% Review
-.5.4 Exposed session variables 0% TD
-.5.5 HTTP Exploit 0% TD
-.6 [[Data Validation Testing]] (0%, TD) <br>
+[[Testing Information Gathering|'''4.2 Information Gathering ''']]
-.6.1 Cross site scripting 0% TD
-.6.1.1 Incubated attacks 0% TD
-.6.1.2 Phishing (using javascript) 0% TD
-.6.1.3 HTTP Methods + XSS (TRACE) 0% TD
-.6.2 SQL Injection 0% TD
-.6.2.1 Oracle, mySQL, SQL Server, TeraData 0% TD
-.6.2.2 Extended stored procedures 0% TD
-.6.2.3 Stored procedure injection 0% TD
-.6.2.4 Oracle +SQLServer ports and attacks 0% TD
-.6.2.5 Listener attacks etc. 1521 1433 1527 0% TD
-.6.3 Orm injection 0% TD
-.6.4 Ldap injection 0% TD
-.6.5 Xml injection 0% TD
-.6.6 Code injection 0% TD
-.6.7 Buffer overflow Testing 100% Review
-.6.7.1 Heap overflow 100% Review
-.6.7.2 Stack overflow 100% Review
-.6.7.3 Format string 100% Review
-.7 [[Denial of Service Testing]] (95%, Review)
+[[Testing for configuration management|'''4.3 Configuration and Deployment Management Testing ''']]
-.7.1 Locking Customer Accounts 100% Review
-.7.2 Buffer Overflows 100% Review
-.7.3 User Specified Object Allocation 100% Review
-.7.4 User Input as a Loop Counter 100% Review
-.7.5 Writing User Provided Data to Disk 100% Review
-.7.6 Failure to Release Resources 100% Review
-.7.7 Storing too Much Data in Session 90% Review
-.8 [[Infrastructure and configuration Testing]] (0%, TD)
+[[Testing Identity Management|'''4.4 Identity Management Testing''']]
-.8.1 Intro and objective 0% TD
-.8.2 Infrastructure configuration management testing 100% TD
-.8.3 Application configuration management testing 100% TD
-.8.4 Old, backup and unreferenced files 100% TD
-.8.5 File extensions handling 90% TD
-.8.6 Analisys of error code 50% TD
-.8.7 SSL/TLS Testing: support of weak ciphers and cert validity 100% TD
-.8.8 Testing defense from Automatic attacks (maybe a duplicate) 10% TD
-.9 [[Web Services Testing]] (0%, TD)
+[[Testing for authentication|'''4.5 Authentication Testing ''']]
-.9.1 XML Structural Attacks 0% TD
-.9.2 XML content-level attacks 0% TD
-.9.3 HTTP GET parameters/REST attacks 0% TD
-.9.4 Naughty SOAP attachments 0% TD
-.9.5 Brute force attacks 0% TD
-.10 [[AJAX Testing]] (0%, TD)
+[[Testing for Authorization|'''4.6 Authorization Testing''']]
-.10.1 Vulnerabilities 0% TD
-.10.2 How to test 0% TD
+[[Testing for Session Management|'''4.7 Session Management Testing''']]
+[[Testing for Input Validation|'''4.8 Input Validation Testing''']]
+[[Error Handling|'''4.9 Error Handling''']]
+[[Cryptography|'''4.10 Cryptography''']]
+[[Testing for business logic|'''4.11 Business Logic Testing ''']]
+[[Client Side Testing|'''4.12 Client Side Testing''']]

Difference between revisions of "Web Application Penetration Testing"

Latest revision as of 15:26, 5 August 2014

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools