pw·handbook
Levels Domain Projects Capstones Search GitHub
level 11 / security-testing

Security Testing Awareness

OWASP Top 10, XSS, CSRF, injection — what automation engineers must catch.

OWASP Top 10 for Testers

Understand the OWASP Top 10 vulnerabilities and how test engineers detect them.

30 min

XSS & CSRF

Test for Cross-Site Scripting and Cross-Site Request Forgery vulnerabilities with Playwright.

30 min

Injection & Auth Vulnerabilities

Test for SQL injection, command injection, and authentication bypass vulnerabilities.

30 min

API Security Testing

Test API endpoints for common security vulnerabilities — rate limiting, mass assignment, and data exposure.

25 min
pw·handbook — production-grade Playwright engineering, level by level.
Home · Playwright Docs · MIT License