|
|
| (114 intermediate revisions by 10 users not shown) |
| Line 1: |
Line 1: |
| − | = DRAFT CHEAT SHEET - WORK IN PROGRESS = | + | __NOTOC__ |
| | + | <div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:Cheatsheets-header.jpg|link=]]</div> |
| | | | |
| − | = Introduction =
| + | The Cheat Sheet Series project has been moved to [https://github.com/OWASP/CheatSheetSeries GitHub]! |
| | | | |
| − | This cheat sheet provides a checklist of tasks to be performed when performing a blackbox security test of a web application.
| + | An [https://github.com/OWASP/CheatSheetSeries/issues/13 open discussion] is pending about to exclude or not this cheat sheet of the V2 of the project. |
| − | | |
| − | = Purpose =
| |
| − | | |
| − | This checklist is intended to be used as an aide memoire for experience pentesters and should be used in conjunction with the [[:Category:OWASP Testing Project|OWASP Testing Guide]]. It will be updated as the [[OWASP_Application_Testing_guide_v4|Testing Guide v4]] is progressed.
| |
| − | | |
| − | The intention is that this guide will be available as an XML document, with scripts that convert it into formats such as pdf, Media Wiki markup, HTML etc.
| |
| − | | |
| − | This will allow it to be consumed within security tools as well as being available in a format suitable for printing.
| |
| − | | |
| − | It is currently at a very early stage, but any feedback or offers of help will be appreciated.
| |
| − | | |
| − | = The Checklist =
| |
| − | | |
| − | == Information Gathering ==
| |
| − | * Manually explore the site
| |
| − | * Spider/crawl for missed or hidden content
| |
| − | * Check for files that expose content, such as robots.txt, sitemap.xml, .DS_Store
| |
| − | * Check the caches of major search engines for publically accessible sites
| |
| − | * Perform Web Application Fingerprinting
| |
| − | * Identify technologies used
| |
| − | * Identify application entry points
| |
| − | == Configuration Management ==
| |
| − | * Check for commonly used application and administrative URLs
| |
| − | * Check for old, backup and unreferenced files
| |
| − | * Check HTTP methods supported and Cross Site Tracing (XST)
| |
| − | * Test file extensions handling
| |
| − | == Secure Transmission ==
| |
| − | * Check SSL Version, Algorithms, Key length, Digital Cert. Validity
| |
| − | * Check credentials only delivered over HTTPS
| |
| − | * Check session tokens only delivered over HTTPS
| |
| − | * Check if HTTP Strict Transport Security (HSTS) in use
| |
| − | == Authentication ==
| |
| − | * Test for user enumeration
| |
| − | * Test for authentication bypass
| |
| − | * Test for bruteforce protection
| |
| − | * Test password quality rules
| |
| − | * Test remember me functionality
| |
| − | * Test password reset
| |
| − | * Test CAPTCHA
| |
| − | * Test multi factor authentication
| |
| − | * Test logout and cache management
| |
| − | == Session Management ==
| |
| − | * TBA
| |
| − | == Authorization ==
| |
| − | * TBA
| |
| − | == Data Validation ==
| |
| − | * TBA
| |
| − | == Denial of Service ==
| |
| − | * TBA
| |
| − | == Business Logic ==
| |
| − | * TBA
| |
| − | | |
| − | = Authors and primary contributors =
| |
| − | | |
| − | [[User:Simon Bennetts|Simon Bennetts]]
| |
| − | | |
| − | = Related articles =
| |
| − | | |
| − | OWASP [[:Category:OWASP Testing Project|Testing Guide]]
| |
| − | | |
| − | Mozilla [https://wiki.mozilla.org/WebAppSec/Web_Security_Verification Web Security Verification]
| |
| − | | |
| − | {{Cheatsheet_Navigation}}
| |
| − | | |
| − | [[Category:Cheatsheets]] [[Category:OWASP_Breakers]]
| |
