Quick Guide to Web Penetration Testing

(Photo by Kevin Horvat on Unsplash)

Through this article, we will discuss some tests and guidelines that are part of my Web Penetration Testing methodology.

Testing for Username/Email Enumeration

  • through Login Error Message Discrepancy
  • through Forgot/Reset Password Functionality
  • through Registration Form

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Cristian Cornea

🇷🇴 Cyber Security Enthusiast, Freelancer, Researcher, Bug Bounty Hunter and InfoSec Writer | OSEP | OSWE | OSCP | CEH | CPTC | PenTest+ | eWPT | ECIH