I am new to security testing . What should be the best approach to test the web applications security vulnerabilities. I need to cover below scenarios in security Testing:
- Static Analysis
- Dynamic Analysis
- Authentication and Session Management
- Network Communication
- Check for client side injection (XSS).
- Username enumeration
- SQL injection
- Malicious file upload.
- Check for session management (cookie flaws, session overriding, session fixation etc.).
Please share the information and if anybody knows any tools to be use to achieve the same.
Aucun commentaire:
Enregistrer un commentaire