This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Testing Guide Table of Contents"

From OWASP
Jump to: navigation, search
m (added Frontispice)
Line 1: Line 1:
 +
==[[Frontispiece]]==
 +
#Copyright and License
 +
#Endorsements
 +
#Trademarks
 +
 
==[[Introduction]]==
 
==[[Introduction]]==
 
#Performing An Application Security Review
 
#Performing An Application Security Review
Line 23: Line 28:
 
#Requirements Analysis
 
#Requirements Analysis
 
#Developer Interviews and Interaction
 
#Developer Interviews and Interaction
 
  
 
==[[Manual testing techniques]]==
 
==[[Manual testing techniques]]==
Line 218: Line 222:
 
#A Typical SDLC Testing Workflow
 
#A Typical SDLC Testing Workflow
 
#* Figure 3: Typical SDLC Testing Workflow.
 
#* Figure 3: Typical SDLC Testing Workflow.
 +
 
==[[Appendix A: Testing Tools]]==
 
==[[Appendix A: Testing Tools]]==
 
#Source Code Analyzers
 
#Source Code Analyzers
Line 229: Line 234:
 
#*Binary Analysis
 
#*Binary Analysis
 
#*Requirements Management
 
#*Requirements Management
 +
 
==[[Appendix B: Suggested Reading]]==
 
==[[Appendix B: Suggested Reading]]==
 
#Whitepapers
 
#Whitepapers
Line 235: Line 241:
 
#Useful Websites
 
#Useful Websites
 
#OWASP — http://www.owasp.org
 
#OWASP — http://www.owasp.org
 +
 
==[[Figures]]==
 
==[[Figures]]==
 
#Figure 1: Proportion of Test Effort in SDLC.
 
#Figure 1: Proportion of Test Effort in SDLC.

Revision as of 11:29, 26 July 2006

Frontispiece

  1. Copyright and License
  2. Endorsements
  3. Trademarks

Introduction

  1. Performing An Application Security Review
  2. Principles of Testing
  3. Testing Techniques Explained

Methodologies Used

  1. Secure application design
  2. Code Review (See the code review project)
    • Overview
    • Advantages and Disadvantages
  3. Penetration Testing
    • Overview
    • Advantages and Disadvantages
  4. The Need for a Balanced Approach
  5. A Note about Web Application Scanners
  6. A Note about Static Source Code Review Tools

Finding Specific Issues In a Non-Technical Manner

  1. Threat Modeling Introduction
  2. Design Reviews
  3. Threat Modeling the Application
  4. Policy Reviews
  5. Requirements Analysis
  6. Developer Interviews and Interaction

Manual testing techniques

  1. Business logic testing - <TBD>
  2. Authentication
    • Default or guessable user accounts
      • Causes
      • Blackbox Testing
      • Manual
      • Suggested Tools - <TBD>
      • Whitebox Testing
      • Further Reading
  3. Cookie manipulation
    • Short Description of Issue
    • How to Test
    • Black Box
    • Cookie reverse engineering
    • Cookie manipulation
    • Brute force
      • Cookie predictability
      • 335697#**
    • Overflow
    • White Box
    • Examples
    • Whitepapers
    • Tools
  4. Weak Session Tokens
    • Blackbox Testing
    • Manual
    • Suggested Tools
    • Whitebox Testing
    • Further Reading
  5. Session riding
    • How to Test
    • Black Box
    • White Box
    • References
    • Examples
    • Whitepapers
    • Tools
  6. Vulnerable remember password implementation
    • Blackbox Testing
    • Manual
    • Suggested Tools:
    • Whitebox Testing
    • Further Reading
  7. Weak Password Self-Reset Testing
    • Blackbox Testing
    • Manual
  8. Default or Guessable User Accounts and Empty Passwords
    • Blackbox Testing
    • Manual
    • Suggested Tools
    • Whitebox Testing
    • Further Reading
  9. Application Layer Denial of Service (DoS) Attacks
  10. DoS: Locking Customer Accounts
    • Black Box Testing
    • White Box Testing
  11. DoS: Buffer Overflows
    • Code Example
    • Testing Black Box
    • Testing White Box
  12. DoS: User Specified Object Allocation
    • Code Example
    • Testing Black Box
    • Testing White Box
  13. DoS: User Input as a Loop Counter
    • Code Example
    • Testing Black Box
    • Testing White Box
    • DoS: Writing User Provided Data to Disk
    • Testing Black Box
    • Testing White Box
  14. DoS: Failure to Release Resources
    • Code Example
    • Testing Black Box
    • Testing White Box
  15. DoS: Storing too Much Data in Session
    • Testing Black Box
    • Testing White Box
    • Other References
  16. Buffer Overflow
    • Buffer Overflow – Heap Overflow Vulnerability
      • How to Test
      • Black Box
      • White Box
    • Buffer Overflow – Stack Overflow Vulnerability
    • How to Test
    • Black Box
    • White Box
    • References
    • Examples
    • Whitepapers
    • Tools
    • Buffer Overflow – Format String Vulnerability
      • Black Box
      • White Box
      • References
      • Whitepapers
      • Tools
  17. Test and debug files
    • How to Test
    • Black Box
    • White Box
    • References - <TBD>
    • Examples
    • Whitepapers
    • Tools
  18. File extensions handling
    • How to Test
    • Black Box
    • White Box
    • References
    • Examples
    • Whitepapers
    • Tools
  19. Old, backup and unreferenced files
    • Threats
    • Countermeasures
    • How to Test
    • Black Box
    • White Box
      • Tools
  20. Defense from Automatic Attacks
    • Blackbox Testing
    • Manual
    • Suggested Tools
    • Whitebox Testing
    • Further Reading
    • SSL usage during whole session (see recent post on Webappsec regarding this) [Yvan Boily ([email protected]) ]
  21. Configuration Management Infrastructure
    • Review of the application architecture
    • Known server vulnerabilities
    • Administrative tools
    • Authentication back-ends
    • Configuration Management Application
    • Sample/known files and directories
    • Comment review
    • Configuration review
    • Logging
    • Log location
    • Log storage
    • Log rotation
    • Log review
  22. Sensitive data in URL’s
    • Hashing sensitive data
  23. SSL / TLS cipher specifications and requirements for site
    • How to Test
    • Black Box
    • White Box
      • References
    • Examples
    • Whitepapers
  24. Tools
  25. How to Test
    • Black Box
    • White Box
  26. References
    • Examples
    • Whitepapers
  27. Tools
    • Language/Services/Application Specific Testing
  28. Web Services Security Testing
    • Notes
    • How to Test
    • Transport Layer Security
    • Message Layer Security
    • Application Layer Security
    • References
    • Examples
    • Whitepapers
    • Analyzing Results

The OWASP Testing Framework

  1. Overview
  2. Phase 1 — Before Development Begins
    • Phase 1A: Policies and Standards Review
    • Phase 1B: Develop Measurement and Metrics Criteria (Ensure Traceability)
  3. Phase 2: During Definition and Design
    • Phase 2A: Security Requirements Review
    • Phase 2B: Design an Architecture Review
    • Phase 2C: Create and Review UML Models
    • Phase 2D: Create and Review Threat Models
  4. Phase 3: During Development
    • Phase 3A: Code Walkthroughs
    • Phase 3B: Code Reviews
  5. Phase 4: During Deployment
    • Phase 4A: Application Penetration Testing
    • Phase 4B: Configuration Management Testing
  6. Phase 5: Maintenance and Operations
    • Phase 5A: Conduct Operational Management Reviews
    • Phase 5B: Conduct Periodic Health Checks
    • Phase 5C: Ensure Change Verification
  7. A Typical SDLC Testing Workflow
    • Figure 3: Typical SDLC Testing Workflow.

Appendix A: Testing Tools

  1. Source Code Analyzers
  2. Open Source / Freeware
    • Commercial
  3. Black Box Scanners
    • Open Source
    • Commercial
  4. Other Tools
    • Runtime Analysis
    • Binary Analysis
    • Requirements Management

Appendix B: Suggested Reading

  1. Whitepapers
  2. Books
  3. Articles
  4. Useful Websites
  5. OWASP — http://www.owasp.org

Figures

  1. Figure 1: Proportion of Test Effort in SDLC.
  2. Figure 2: Proportion of Test Effort According to Test Technique.
  3. Figure 3: Typical SDLC Testing Workflow.