![]() ![]() If identifiers are used without including the element then they should be assumed to refer to the latest Web Security Testing Guide content. For example: WSTG-v41-INFO-02 would be understood to mean specifically the second Information Gathering test from version 4.1. ![]() The identifiers may change between versions therefore it is preferable that other documents, reports, or tools use the format: WSTG-, where: ‘version’ is the version tag with punctuation removed. For example: WSTG-INFO-02 is the second Information Gathering test. How To Reference WSTG ScenariosĮach scenario has an identifier in the format WSTG-, where: ‘category’ is a 4 character upper case string that identifies the type of test or weakness, and ‘number’ is a zero-padded numeric value from 01 to 99. Previous releases are available as PDFs and in some cases web content via the Release Versions tab. V4.2 is currently available as a web-hosted release and PDF. You can read the latest development documents in our official GitHub repository or view the bleeding-edge content at latest. We are currently developing release version 5.0. ![]() View the always-current stable version at stable. ContributionsĪny contributions to the guide itself should be made via the guide’s project repo. Created by the collaborative efforts of cybersecurity professionals and dedicated volunteers, the WSTG provides a framework of best practices used by penetration testers and organizations all over the world. The WSTG is a comprehensive guide to testing the security of web applications and web services. The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |