(WEB security test test case (basic) WEB security test test case (basic) establishes an overall threat model, and tests overflow vulnerabilities, information leakage, error management, SQL injection, authentication and authorization errors. 1. Input verification client verification Server-side verification (disable script debugging, disable Cookies) 1. Enter a large number (such as 4,294,967,269), enter a small number (negative number) 2. Enter extra long characters, if there is a limit on the length of the input text, the test exceeds the limit , what's the reaction when the limit is reached 3. Enter special characters, such as: ~!@#$%^
()_ lt;gt;:"{}4. Enter Chinese and English spaces, enter spaces in the middle of the input string, enter spaces at the beginning and end 5. Enter special strings NULL, null, 0x0d0x0a6. Enter normal strings
WEB security test test case (basic).doc)
收藏
