how we conduct security testing in realtime,for every
project we conduct security testig or not
Answer / js_sabharwal
No, we dont conduct security testing for every project. For
example , I am developing Software for Primary Rimes or
Small Game.. I dont need to perform security testing.
Security Testing depends on the Risk of you project.
For example, Airplane Software, Health Care Softwares,
Banking Domains ..etc
How do we conduct ?
There are several ways to perform it again entirely depends
on your project/product, methods for web security testing
can be :
- Check for session hijacking.
- Check for session time out.
- Check for cross site scripting
- SQL Injection
- Http/Https
- Attempt of breach should log in 'Server Logs'
- Cookies Testing - Accepting/rejecting, invalid, decrypting
- Unauthorized access
- Multiple user login at same time
..etc
Is This Answer Correct ? | 15 Yes | 1 No |
Iam searching for a job in manual testing(2.9yrs exp) i faced no.of interviews they r asking me to tell me about ur project iwant to know, for any type of the project what are the steps,contents we have to tell about. so pls send the detailed description of copies to my email id.
Explain about "Compatibility Testing" in Web based Application?
Give me examples for high severity and low priority defects?
WHAT IS COMPATABILITY TESTING
What is defect clustering
what are the add-ins needed to test .net and c# projects?
What are the key challenges of testing?
what is dib format?
what is a functionality
what is static and dynamic testing.
what is agile testing?
which sanity testing is performed?