Skip to content

Test Accounts

Provide test accounts to enable authenticated testing.

  • Username/password: Test specific roles (e.g., admin, user).
  • Verification URL: A URL that proves authorization, ideally one that is only accessible when authenticated

Guidance: - Create dedicated test accounts with minimal PII. - Do not rotate credentials during the pentest; revoke when testing is complete (but retesting may need the same credentials working).

? SQUR