This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Web Application Penetration Testing
From OWASP
In the following paragraphs, it is described the Web Application Penetration Testing Methology, split into the 10 subcategories:
4.1 Introduction and Objectives
4.3 Configuration Management Testing
4.6 Session Management Testing