Session tracking maintains the state of users between HTTP requests in servlets. Common techniques include cookies, hidden form fields, URL rewriting, and HTTP sessions. Cookies store data on the client side in the browser cache while HTTP sessions store data on the server side. Cookies have limitations on size and security while sessions can store unlimited data securely on the server but end when the browser closes. Both techniques allow servlets to identify returning users and maintain state across requests.