Add test section for Clickjacking

[doverh]

This PR covers issue #183

• [X] This PR handles the issue and requires no additional PRs.
• [X] You have validated the need for this change.

What did this PR accomplish?

• Removes duplicated content available on OWASP Clickjacking Defense Cheat Sheet.

• Removes POC and start to identify tests that can be implemented for Clickjacking.

• Review How to Test section

[github-actions[bot]]

The following links are broken: FILE:document/4-Web_Application_Security_Testing/11-Client-side_Testing/09-Testing_for_Clickjacking.md [✖] 12-Test_for_Content_Security_Policy.md → Status: 400

[github-actions[bot]]

The following issues were identified: document/4-Web_Application_Security_Testing/11-Client-side_Testing/09-Testing_for_Clickjacking.md:37 MD046/code-block-style Code block style [Expected: fenced; Actual: indented]

[github-actions[bot]]

The following mistakes were identified:

/home/runner/work/wstg/wstg/document/4-Web_Application_Security_Testing/11-Client-side_Testing/09-Testing_for_Clickjacking.md 13:423 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 33:17 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 33:53 ✖ Incorrect usage of the term: “html”, use “HTML” instead terminology 48:39 ✖ Incorrect usage of the term: “javascript”, use “JavaScript” instead terminology 66:24 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 66:417 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 114:63 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 118:63 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 119:83 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 131:14 ✖ Incorrect usage of the term: “Website”, use “site” instead terminology 133:91 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 133:164 ✖ Incorrect usage of the term: “website”, use “site” instead terminology 138:60 ✖ Incorrect usage of the term: “website”, use “site” instead terminology

[kingthorin]

Well start with the bot feedback 😉

[github-actions[bot]]

The following issues were identified: document/4-Web_Application_Security_Testing/11-Client-side_Testing/09-Testing_for_Clickjacking.md:37 MD046/code-block-style Code block style [Expected: fenced; Actual: indented]

[kingthorin]

I'll try to lookup some info in that Safari item, just don't know when I'll have a good chance.

[doverh]

Thanks @kingthorin! My initial intention was to allow more contributors to review and add to this review. Should we post on wstg slack channel asking for contributions with the content?

[kingthorin]

Sure, can't hurt to ask for more eyes.