Testing for Weak Lock Out Mechanism
OWASP Web Security Testing Guide 4.2 > 4. Authentication Testing > 4.3. Testing for Weak Lock Out Mechanism
ID | Link to Hackinglife | Link to OWASP | Description |
---|---|---|---|
4.3 | WSTG-ATHN-03 | Testing for Weak Lock Out Mechanism | - Evaluate the account lockout mechanism's ability to mitigate brute force password guessing. - Evaluate the unlock mechanism's resistance to unauthorized account unlocking. |