title | permalink |
---|---|
Security Testing Cheat Sheet |
/Security_Testing_Cheat_Sheet/ |
This page intends to provide quick basic security tips for quality assurance specialists. The goal of the cheat sheet is to act as a starting point for a comprehensive QA Test Plan for security of web applications.
Testing web applications is difficult without tools. The following tools are the common set for QA professionals to accomplish all of the test cases in the security test plan.
- Zed Attack Proxy
- WebScarab
Each major security surface in a web application has a known set of vulnerabilities that can be tested for using a set of test cases.
Bill Sempf - bill.sempf [at] owasp.org User:Bill Sempf