hey folks,
i had been working of a web app and security of that web app is handed to someone. but when testing part come i wanna be ready. so i wanted to know. where to start and where to be guru of it coz i can see if the security of that web app is foolproof or not.