At TSARO LABS, we have adopted a hybrid approach combined with the OWASP methodology for penetration testing. It helps us build custom test cases around the business logic of an application, which varies from application to application. As a result, we ensure thorough end-to-end web application security.