This is an article about Broken Authentication and Session Security. I think this article can be used by penetration tester who want to test user identities, passwords or session mechanisms.
You can refer to full article:
http://www.hackerscenter.com/archive/view.asp?id=27269
hackers school guide
ReplyDeletehttp://www.hackers-dna.ws