Test for rate limiting
Username enumeration
Csrf
Host Header Redirect via the Host Header