OWASP Testing Guide

Foreword by Eoin Keary
Frontispiece
Introduction
The OWASP Testing Framework
- The Web Security Testing Framework
- Penetration Testing Methodologies
Web Application Security Testing
Reporting
- Reporting
- Vulnerability Naming Schemes
Appendix
Testing Checklist
Table of Contents
REST Assessment Cheat Sheet
API Testing

Powered by GitBook

On this page

Web Application Security Testing

Information Gathering

PreviousIntroduction and Objectives NextConduct Search Engine Discovery Reconnaissance for Information Leakage (WSTG-INFO-01)

Last updated 2 years ago

4.1.1

4.1.2

4.1.3

4.1.4

4.1.5

4.1.6

4.1.7

4.1.8

4.1.9

4.1.10

Conduct Search Engine Discovery Reconnaissance for Information Leakage

Fingerprint Web Server

Review Webserver Metafiles for Information Leakage

Enumerate Applications on Webserver

Review Webpage Content for Information Leakage

Identify Application Entry Points

Map Execution Paths Through Application

Fingerprint Web Application Framework

Fingerprint Web Application

Map Application Architecture