This is the attempt to develop a more structured methodology to perform web applications pentests.

Based on the OWASP Web Security Testing Guide in combination with my own experiences.

Author: Andreas Wienes - Hack Like Demons - https://twitter.com/AndreasWienes First draft: 2021-11-08