Interested to Buy Any Domain ? << Click Here >> for more details...
how to perform security testing manualy.I given the answer
but interviwer not satisfeid from my answer
- 5 Answers
- 15598 Views
- BS, HCL, Honeywell, I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
1) Check if the sensitive data such as password, credit
card, CVV numbers are getting encrypted or not.
2) Check browser navigation after logout
3) Check direct URL access for the both secured and non
secured pages.
4) Check for session expiry
5) Check view source code option for secured pages.
6) Check for Authorization
7) Check for Authentication
8) Check cookies
| Is This Answer Correct ? | 10 Yes | 0 No |
Answer / uday kumar
Security Testing mainly deals with Authorization and
authentication
Authentication: Users need to be user accts to enter into
App
Authorization: Users must have permissions to view the pages
| Is This Answer Correct ? | 9 Yes | 2 No |
Answer / narendra
Apart from these, security testing can be done using
1.Cookies verification
2. URL injection
3. X-SS(Cross Site Scripting)
| Is This Answer Correct ? | 5 Yes | 1 No |
Answer / guest
In security testing we usually to test manually
1. Authorization
2. Authentication
3. Accesscontrol
Murali Krishna
9990272568
| Is This Answer Correct ? | 4 Yes | 4 No |
What is the difference between defect tracking tool and QC?
Differences between waterfall and V model
Why we have to do manual testing?
What is a day's work in a QA Tester's life?
What is Resprint and Patch?
what is system testing? as test eng, what do u do in sys testing? who invoves in sys testing?
explain the ISO standard ( more explanation about the ISO
10. Would you recommend this Web site to a colleague? To a friend?
You need to plan a test project to qualify an application composed of many individual components. Referring to the scenario above, which phases do you expect to take longer than usual?
What criteria would you use to select Web transactions for load testing?
when will update and modify the test object properties in the repository?
Tracability matrix? what are test metrics?what is the use? scope of testplan? Estimation? Test stratagy? Entry ,Exit ,Suspention,Resumption criteria? Diff b/w web server and appli server? diff b/w web app and client server app? diff b/w brs,srs? what is Sla time? Exp defect life cycle? types of defects? how do u decide project is 100% bug free? How u send defect reports? Testing Environments? testbed? what is differed testing? what is differed defects? what r the base documents are recovered for test case design? what r the base documents are recovered for test case execution?
Automation Testing 
