This is an interesting overview but it explains more the process followed by the author when a worked example might be more helpful to others.<p>If you found the author's post interesting and would like to see some practical examples of how to test for application security vulnerabilities, then the following will help get you up to speed:<p><a href="http://www.owasp.org/index.php/Category:OWASP_Testing_Project" rel="nofollow">http://www.owasp.org/index.php/Category:OWASP_Testing_Projec...</a><p><a href="http://www.owasp.org/index.php/Category:OWASP_Code_Review_Project" rel="nofollow">http://www.owasp.org/index.php/Category:OWASP_Code_Review_Pr...</a>