Testing for the Circumvention of Work Flows
OWASP Web Security Testing Guide 4.2 > 10. Business logic Testing > 10.6. Testing for the Circumvention of Work Flows
ID | Link to Hackinglife | Link to OWASP | Description |
---|---|---|---|
10.6 | WSTG-BUSL-06 | Testing for the Circumvention of Work Flows | - Review the project documentation for methods to skip or go through steps in the application process in a different order from the intended business logic flow. - Develop a misuse case and try to circumvent every logic flow identified. |