OWASP Developer Guide

Verification Guides

6.1 Verification guides

Verification is one of the business functions described by the OWASP SAMM. The verification activities are wide ranging, and will include:

  • Testing of security controls
  • Review of controls and security mechanisms
  • Evaluation and assessment of the security architecture
  • and others

Given the breadth of techniques and knowledge required, guides are an important resource for verification activities.


6.1.1 Web Security Testing Guide
6.1.2 Mobile Application Security
6.1.3 Application Security Verification Standard

The OWASP Developer Guide is a community effort; if there is something that needs changing then submit an issue or edit on GitHub.