Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Software >> Testing >> Manual Testing
  2. Suggest New Category

Explain about Security Testing in webbased application?

Question Posted / ramyab.mca@gmail.com

Answer Posted / ramyab.mca@gmail.com

Hai...

Security Testing:

Following are some test cases for web security testing:

Test by pasting internal url directly into browser address
bar without login. Internal pages should not open.
If you are logged in using username and password and
browsing internal pages then try changing url options
directly. I.e. If you are checking some publisher site
statistics with publisher site ID= 123. Try directly
changing the url site ID parameter to different site ID
which is not related to logged in user. Access should
denied for this user to view others stats.
Try some invalid inputs in input fields like login
username, password, input text boxes. Check the system
reaction on all invalid inputs.
Web directories or files should not be accessible directly
unless given download option.
Test the CAPTCHA for automates scripts logins.
Test if SSL is used for security measures. If used proper
message should get displayed when user switch from non-
secure http:// pages to secure https:// pages and vice
versa.
All transactions, error messages, security breach attempts
should get logged in log files somewhere on web server.

K,Byeee...
Thanks & Regards
B.Ramyasri

Is This Answer Correct ?    8 Yes 2 No



Post New Answer       View All Answers


Please Help Members By Posting Answers For Below Questions

What is the difference between web based application and client server application?

6584

What is mean by incident logging system ?

2519

How do you go about testing a project?

1973

Any one send me sample question for multimedia testing with microsoft access database. I am having interview next week. Please post it or send me my personal e-mail. Thank You

1977

Explain about PET Model?

2611

What are the phases involved in software testing life cycle?

1128

Who are all involved in an inspection meeting?

1036

What is showstopper defect?

1139

What r the sequences that leads to automation?

1969

what is fusion testing and impact analysis???

2258

What are the different strategies for rollout to end users?

1230

Can any body tell me in real time how cookies testing is done. And please tell me the steps.And for cookies testing test cases is needed.

2066

What will be the testcase for a uniquely generated number in the application?? i mean to say is, how will i conform the application is generating a unique value.... please do answer...

2144

in transfer funds module, how you come to know that amount has been transferred successfully or not....explain in detail

1549

How will you determine when to stop testing?

1033