Testing Tools. Categories of testing tools Black box testing, or functional testing Testing performed via GUI. The tool helps in emulating end-user actions.

Slides:



Advertisements
Similar presentations
Webgoat.
Advertisements

Performance Testing - Kanwalpreet Singh.
Attie Naude 14 May 2013 Windows Azure Mobile Services.
Executional Architecture
DETAILED DESIGN, IMPLEMENTATIONA AND TESTING Instructor: Dr. Hany H. Ammar Dept. of Computer Science and Electrical Engineering, WVU.
Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.
Test Automation An Approach to Automated Software Regression Testing Presented by Adnet, Inc Feb 2015.
Automation Testing Presentation Phil Hunter Phil Hunter - Automation Presentation 1.
Static code check – Klocwork
Abirami Poonkundran 2/22/10.  Goal  Introduction  Testing Methods  Testing Scope  My Focus  Current Progress  Explanation of Tools  Things to.
® Rational Power-Up Program © 2008 IBM Corporation IBM Rational’s Solutions to Ensure Quality Susann Ulrich –
Application Security: What Does it Take to Build and Test a “Trusted” App? John Dickson, CISSP Denim Group.
It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.
Fast Track to ColdFusion 9. Getting Started with ColdFusion Understanding Dynamic Web Pages ColdFusion Benchmark Introducing the ColdFusion Language Introducing.
Information Networking Security and Assurance Lab National Chung Cheng University The Ten Most Critical Web Application Security Vulnerabilities Ryan J.W.
1 Classic ASP vs. ASP.NET Technical Information and Market Adoption Lance Welker University of San Diego Dr. Rebman MSIT 526 December 20, 2005.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Leveraging User Interactions for In-Depth Testing of Web Applications Sean McAllister, Engin Kirda, and Christopher Kruegel RAID ’08 1 Seoyeon Kang November.
Yet another Service Management Automation Session
09/18/06 1 Software Security Vulnerability Testing in Hostile Environment Herbert H. Thompson James A. Whittaker Florence E. Mottay.
Types and Techniques of Software Testing
Understanding and Managing WebSphere V5
Presenter: Chi-Hung Lu 1. Problems Distributed applications are hard to validate Distribution of application state across many distinct execution environments.
Web Application Security
By: Razieh Rezaei Saleh.  Security Evaluation The examination of a system to determine its degree of compliance with a stated security model, security.
- Chaitanya Krishna Pappala Enterprise Architect- a tool for Business process modelling.
Load Test Planning Especially with HP LoadRunner >>>>>>>>>>>>>>>>>>>>>>
Project Manager Developer Tester Infrastructure Architect Solution Architect Business Stakeholder.
.NET, and Service Gateways Group members: Andre Tran, Priyanka Gangishetty, Irena Mao, Wileen Chiu.
Automation Testing Tools
Smart Test ServicesSoftware Test Methodology - An Introduction1 Software Test Methodology – An Introduction By: Girish Krishna K STS.
Submitted by: Madeeha Khalid Sana Nisar Ambreen Tabassum.
HTTP and Server Security James Walden Northern Kentucky University.
Approaches to Application Security – DSM
A Framework for Automated Web Application Security Evaluation
Enticy GROUP THE A Framework for Web and WinForms (Client-Server) Applications “Enterprise Software Architecture”
Capture and Replay Often used for regression test development –Tool used to capture interactions with the system under test. –Inputs must be captured;
Using QuickTest Professional USINGQTP65-STUDENT-01A.
What’s New in Automated Software Testing and ClearQuest Shmuel Bashan IBM Rational
Overview Abstract Vulnerability: An Overview Cloud Computing Cloud-Specific Vulnerabilities Architectural Components and Vulnerabilities Conclusion.
Enhancing - Vuser Scripts In HP LoadRunner >>>>>>>>>>>>>>>>>>>>>>
OWASP Top Ten #1 Unvalidated Input. Agenda What is the OWASP Top 10? Where can I find it? What is Unvalidated Input? What environments are effected? How.
16 October Reminder Types of Testing: Purpose  Functional testing  Usability testing  Conformance testing  Performance testing  Acceptance.
October 3, 2008IMI Security Symposium Application Security through a Hacker’s Eyes James Walden Northern Kentucky University
nd Joint Workshop between Security Research Labs in JAPAN and KOREA Marking Scheme for Semantic- aware Web Application Security HPC.
Apache JMeter By Lamiya Qasim. Apache JMeter Tool for load test functional behavior and measure performance. Questions: Does JMeter offers support for.
What is WinRunner ► WinRunner is Mercury’s legacy automated testing tool ► It is similar to QTP in functionality ► WinRunner integrates with other Mercury.
© 2006, National Research Council Canada © 2006, IBM Corporation Solving performance issues in OTS-based systems Erik Putrycz Software Engineering Group.
Securing Java Applications
OWASP Building Secure Web Applications And the OWASP top 10 vulnerabilities.
Testing in Android. Methods Unit Testing Integration Testing System Testing Regression Testing Compatibility Testing Black Box (Functional) White Box.
Chapter 1 The Software Security Problem. Goals of this course Become aware of common pitfalls. Static Analysis and tools.
IBM Software Group ® Managing Reusable Assets Using Rational Suite Shimon Nir.
Software Testing Mehwish Shafiq. Testing Testing is carried out to validate and verify the piece developed in order to give user a confidence to use reliable.
Performance Testing Test Complete. Performance testing and its sub categories Performance testing is performed, to determine how fast some aspect of a.
Understanding Performance Testing Basics by Adnan Khan.
1 Copyright © 2011 Tata Consultancy Services Limited PERFORMANCE TESTING.
LOAD RUNNER. Product Training Load Runner 3 Examples of LoadRunner Performance Monitors Internet/Intranet Database server App servers Web servers Clients.
Copyright © New Signature Who we are: Focused on consistently delivering great customer experiences. What we do: We help you transform your business.
IV&VS Capabilities. 2 V IRTUAL USER GENERATOR 3 V IRTUAL U SER T ECHNOLOGY AND ADVANTAGES  Simulates a real user  Requires less resources – machines.
Performance Testing - LR. 6/18/20162 Contents Why Load Test Your Web Application ? Functional vs. Load Web Testing Web-Based, Multi-Tiered Architecture.
Fuzzing Machine By Nikolaj Tolkačiov.
Content Coverity Static Analysis Use cases of Coverity Examples
Platform as a Service.
Marking Scheme for Semantic-aware Web Application Security
CodePeer Update Arnaud Charlet CodePeer Update Arnaud Charlet
CodePeer Update Arnaud Charlet CodePeer Update Arnaud Charlet
Modern cloud PaaS for mobile apps, web sites, API's and business logic apps
Lecture 34: Testing II April 24, 2017 Selenium testing script 7/7/2019
Testing, Inspection, Walkthrough
Presentation transcript:

Testing Tools

Categories of testing tools Black box testing, or functional testing Testing performed via GUI. The tool helps in emulating end-user actions and generating data input White box testing, or static analysis The tool scans the source code for logical errors

Functional Testing Tools Advanced Testing Tools Capabilities Produce test scripts via Wizard that allows to Record business processes by emulating a user’s actions Insert checkpoints to compare actual and expected results Verify database value Run test scripts Provide detailed reports of errors Provide the ability to customize test scripts or to program more sophisticated test cases Ensure reusability of test scripts Can test both web applications and regular client/server apps

Functional Testing Techniques The following technique is used to produce test scripts Create the GUI map Create test scripts with Test Script Language Create user-defined functions The following technique is used to run test scripts The engine interprets the script, line by line Verify – compare expected and actual results Debug – record the test traces for analysis Update – runtime changes of the expected results or scripts The following technique is used to analyze the results Review reports Analyze the results Report defects

Functional Testing Tools Demo WinRunner – HP product MO MO QTP (HP)

Functional Testing Tools WinRunner from HP Test Partner from Compuware LoadRunner from HP Rational Functional Tester from IBM A lot of others

Performance and Load Testing Advanced Testing Tools capabilities: Create virtual users Generate load requests Capture runtime settings of the server environment Run load requests Monitoring of servers Produce the log Produce the reports Produce the diagrams to show time and resource consuming diagnostic

Load vs. Functional Testing Load testing tools emulate thousands of users when a functional testing is doing with a single user emulating Load tests do not emulate user’s actions, they produce loading via API calls using the same protocols as the application does Load tests differentiate application from its infrastructure and give specific results for each of them

Load testing tools LoadRunner from HP NRG Performance Management Suite Other

Static analysis Advanced testing tools capabilities: Visualize and re-engineer software architecture Reconstruct the workflow logic Discover inconsistency and errors in regards to the code, such as Initial and late state Looping Race conditions Workflow control Incorrect object references Null pointers

Static analysis Capable to discover security holes: Buffer overflow Memory leak Resource leak Unvalidated Input Broken Access Control Broken Authentication and Session Management Cross Site Scripting Buffer Overflow Injection Flaws Improper Error Handling Insecure Storage Application level Denial of Service

Static Analysis Tools Fortify Klocwork Open source – FindBugs for Java

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.