Vulnerability Assesment

OWASP web application security standards
Vulnerability Assesment v.s. Penetration Tests

OWASP

OWASP stands for the Open Web Application Security Project. They're typically the go-to organization for defining testing standards and classifying risks to web applications.

OWASP maintains a few different standards and helpful guides for assessing various technologies:

• Web Security Testing Guide (WSTG)