HTTP Verb Tampering
OWASP
OWASP Web Security Testing Guide 4.2 > 2. Configuration and Deploy Management Testing> 2.6. Test HTTP Methods
ID | Link to Hackinglife | Link to OWASP | Description |
---|---|---|---|
2.6 | WSTG-CONF-06 | Test HTTP Methods | - Enumerate supported HTTP methods using OPTIONS. - Test for access control bypass (GET->HEAD->FOO). - Test HTTP method overriding techniques. |