owasp web security testing guide

1. Information Gathering

2. Configuration and Deployment Management Testing

3. Identity Management Testing

4. Authentication Testing

5. Access Control Testing

6. Input Validation Testing

7. Error Handling and Logging Testing

8. Data Protection Testing

9. Business Logic Testing

10. Client-Side Testing

11. Testing for API Security

12. Reporting and Remediation

Related Checklists