Interested to Buy Any Domain ? << Click Here >> for more details...
Explain about Security Testing in webbased application?
- 2 Answers
- 8410 Views
- Crea, I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
Answer / ramyab.mca@gmail.com
Hai...
Security Testing:
Following are some test cases for web security testing:
Test by pasting internal url directly into browser address
bar without login. Internal pages should not open.
If you are logged in using username and password and
browsing internal pages then try changing url options
directly. I.e. If you are checking some publisher site
statistics with publisher site ID= 123. Try directly
changing the url site ID parameter to different site ID
which is not related to logged in user. Access should
denied for this user to view others stats.
Try some invalid inputs in input fields like login
username, password, input text boxes. Check the system
reaction on all invalid inputs.
Web directories or files should not be accessible directly
unless given download option.
Test the CAPTCHA for automates scripts logins.
Test if SSL is used for security measures. If used proper
message should get displayed when user switch from non-
secure http:// pages to secure https:// pages and vice
versa.
All transactions, error messages, security breach attempts
should get logged in log files somewhere on web server.
K,Byeee...
Thanks & Regards
B.Ramyasri
| Is This Answer Correct ? | 8 Yes | 2 No |
Answer / jyoti
Security Testing involves below points
1) Authorization Testing : Testing of different users
authority to view specific information.
i.e. Specific authority to enter in administration area
2) Access control testing : Access allocation to users
i.e. team members cannot access TL or PM data
PM can access TL's data.
| Is This Answer Correct ? | 6 Yes | 0 No |
What is meant by gui testing?
How to explain the project? (banking)
what is ur favourite bug?
1.write test cases for bangle 2.what is difference between defect and bug life cycle 3.what are the inputs for writing test cases 4.how to map requirements to test cases 5.where to attached the test cases 6.what is sdlc 7.what are the difference between sanity and smoke testings 8. user accaptance testing types 9.what is the mail module in qc 10.why are u changing ur job
2 Answers Cap Gemini, Synechron,
Hi, I got an offer with maveric systems and I have around 3.5 years of work experience. But inspite of that they are asking to sign a bond for 2 years and to pledge all the original certificates for that bond. Can anybody please advice me whether its a good company or not and can i go ahead with this?
how to distinguish between session cookies and persistent cookies while doing cookies testing??
What usually indicates that your virtual user script has dynamic data that is dependent on you parameterized fields?
what is master review and peer review
How to arrive Testcase? and how to write testcase for email address? please any one of the write answer send my id
what is database testing?
What disabilities are affect on software usability?
Could Login Id field accept special characters?
Automation Testing 
