Skip to content

Testing Session Timeout

OWASP Web Security Testing Guide 4.2 > 6. Session Management Testing > 6.7. Testing Session Timeout

ID Link to Hackinglife Link to OWASP Description
6.7 WSTG-SESS-07 Testing Session Timeout - Validate that a hard session timeout exists, after the timeout has passed, all session tokens should be destroyed or be unusable.
Last update: 2024-04-02
Created: December 26, 2023 19:00:18