Today's web application security is something that needs to be monitored because it involves the important infrastructure of an organization or agency. There are many problems on the internet. Based on the Open Web Application Security Project (2017), vulnerabilities in an application can be in the form of Cross-Site Scripting (XSS), Broken Access Control, etc. Therefore the website must implement hardening as early detection of vulnerabilities of a website. By using the OWASP Web Security Testing Guide as standardization of testing assisted by tools found in Kali Linux. After testing, a risk rating is carried out using the OWASP Risk Rating Methodology to determine the risk of the vulnerabilities found in the test also provide the recommendations to close the vulnerabilities that found on the website. The result of the testing is found three vulnerabilities on the website, all of the vulnerabilities is categorized as high vulnerabilities.
Keywords: Owasp Testing Guide, Vulnerability Assessment, Penetration Testing