This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

OWASP Testing Guide v3 Table of Contents

From OWASP

Revision as of 13:52, 26 April 2008 by Mmeucci (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

26th April 2008 This is the draft of table of content of the New Testing Guide. You can download the stable version here or read it on line here

The new OWASP testing Guidev3:

1) Authorization testing missing. (new category)
2) Information gathering is not a vulnerability  not in report  Passive mode
3) Business logic testing  not in report  Passive mode
4) Infrastructural test  (new category)
5) Web Services section needs improvement
6) AJAX Testing section needs improvement
7) New category: Client side Testing

Proposed new category for the OTG v3:

Passive Mode
Information Gathering
Business logic testing
Web Application Penetration Testing
Infrastructural testing
Authentication Testing
Authorization Testing (new)
Session Management Testing
Data Validation Testing
Denial of Service Testing
Web Services Testing
Client-Side Testing
AJAX Testing
Flash Testing (new)

Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_Testing_Guide_v3_Table_of_Contents&oldid=28455"

OWASP Testing Project