Web Application Penetration Testing
Web application penetration testing is the process of using penetration testing techniques on a web application to detect its vulnerabilities.
Overview
Web applications play a vital role in business success and are an attractive target for cyber criminals. Web application penetration testing is the process of proactively identifying applications for vulnerabilities, such as those that could lead to the loss of sensitive user and financial information.
It is similar to a penetration test and aims to break into the web application using any penetration attacks or threats.
Web application vulnerabilities
SQL Injection
Cross Site Scripting
Broken Authentication and Session Management
Insecure Direct Object References
Cross Site Request Forgery
Security Misconfiguration
Insecure Cryptographic Storage
Failure to restrict URL Access
Insufficient Transport Layer Protection
Unvalidated Redirects and Forwards
