This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Test Ability to forge requests (OTG-BUSLOGIC-002)"
From OWASP
David Fern (talk | contribs) (Created page with "== Brief Description == == Issue == == Example == == Testing Method == == Test Tools == == Related Test Cases == == References == == Remediation ==") |
David Fern (talk | contribs) |
||
| Line 13: | Line 13: | ||
== Test Tools == | == Test Tools == | ||
| + | ''OWASP Zed Attack Proxy (ZAP)'' - https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project | ||
| + | |||
| + | ZAP is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually. | ||
== Related Test Cases == | == Related Test Cases == | ||
| + | In Progress | ||
== References == | == References == | ||
| + | |||
| + | |||
== Remediation == | == Remediation == | ||
Revision as of 15:09, 16 October 2013
Brief Description
Issue
Example
Testing Method
Test Tools
OWASP Zed Attack Proxy (ZAP) - https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
ZAP is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.
Related Test Cases
In Progress
