Ted Husted, profile picture
Uploaded byTed Husted
1,587 views

Testing Web Application Security

The document discusses the increasing importance of integrating security testing into web application testing processes. It highlights methods for incorporating security assessment into various testing phases, such as unit, integration, and acceptance tests. Additionally, it references Selenium as a tool suite for automating testing across multiple platforms.

Embed presentation

Downloaded 184 times
Testing Web Application Security Integrating and automating security testing Rochester Security Summit Thu, 29 Oct 2009, 2p-3p
Testing Web Application Security Web applications are commonly used to transmit, accept and store data that is personal, company confidential and sensitive. More enterprises are spending more time testing web applications, but many still do not integrate security testing into an application's overall test plan. In this session, we will explore ways to integrate security testing into an end-to-end test plan, exercise security features in unit tests integration tests acceptance tests
http://www.slideshare.net/ted.husted
http://www.slideshare.net/RafalLos/creating-practical-security-testcases-for-web-applications
http://www.slideshare.net/RafalLos/creating-practical-security-testcases-for-web-applications
http://www.slideshare.net/RafalLos/creating-practical-security-testcases-for-web-applications
Bridging the Divide Client-Side Capabilies Server-Side Capabilities Length Filters Input value Numeric Limits Input transfer Character patterns Data access (email, URLs, SKUs) Input field selection Control flow
Open QA Selenium http://selenium.openqa.org/documentation/
Open QA Selenium Selenium is a suite of tools http://selenium.openqa.org/documentation/
Open QA Selenium Selenium is a suite of tools Selenium IDE records and runs tests http://selenium.openqa.org/documentation/
Open QA Selenium Selenium is a suite of tools Selenium IDE records and runs tests Selenium Remote Control runs across multiple platforms http://selenium.openqa.org/documentation/
Open QA Selenium Selenium is a suite of tools Selenium IDE records and runs tests Selenium Remote Control runs across multiple platforms Selenium Grid runs across multiple machines http://selenium.openqa.org/documentation/
f: cd "F:optselenium-remote-control-1.0-beta-2selenium-server-1.0- beta-2" java -jar selenium-server.jar
> java -jar hudson.war
Time for a Test Drive ...
Please complete an evaluation.
Questions?

More Related Content

PPS
Security testing
byTabăra de Testare
 
PPTX
Security testing
byRihab Chebbah
 
PPT
Get Ready for Web Application Security Testing
byAlan Kan
 
PPTX
Security Testing for Web Application
byPrecise Testing Solution
 
PDF
we45 - Web Application Security Testing Case Study
bywe45
 
PPTX
Security Testing
byQualitest
 
PDF
The Complete Web Application Security Testing Checklist
byCigital
 
PDF
Web Application Security Testing Tools
byEric Lai
 
Security testing
byTabăra de Testare
 
Security testing
byRihab Chebbah
 
Get Ready for Web Application Security Testing
byAlan Kan
 
Security Testing for Web Application
byPrecise Testing Solution
 
we45 - Web Application Security Testing Case Study
bywe45
 
Security Testing
byQualitest
 
The Complete Web Application Security Testing Checklist
byCigital
 
Web Application Security Testing Tools
byEric Lai
 

What's hot

PPT
Web Application Security Testing
byMarco Morana
 
PPT
Web Application Security
byAbdul Wahid
 
PDF
Web Application Security 101
byCybersecurity Education and Research Centre
 
PPTX
Web application vulnerability assessment
byRavikumar Paghdal
 
PDF
Security testing presentation
byConfiz
 
PPT
Security Testing
byKiran Kumar
 
PPT
Introduction to Web Application Penetration Testing
byAnurag Srivastava
 
PDF
Introduction to Application Security Testing
byMohamed Ridha CHEBBI, CISSP
 
PPTX
Web Application Security 101
byJannis Kirschner
 
PPTX
Introduction to security testing raj
byRajakrishnan S, MCA,MBA,MA Phil,PMP,CSM,ISTQB-Test Mgr,ITIL
 
PPTX
Security Testing Training With Examples
byAlwin Thayyil
 
PDF
Web Application Security and Awareness
byAbdul Rahman Sherzad
 
PDF
Owasp top 10
byYasserElsnbary
 
PPTX
Web application security
byKapil Sharma
 
PPTX
Penetration Testing
byRomSoft SRL
 
PPTX
Owasp top 10 2017
byibrahimumer2
 
PPT
Step by step guide for web application security testing
byAvyaan, Web Security Company in India
 
PDF
Web Application Security 101 - 04 Testing Methodology
byWebsecurify
 
PPTX
A new web application vulnerability assessment framework
byMark Jayson Fuentes
 
PPTX
Secure Coding 2013
byThe eCore Group
 
Web Application Security Testing
byMarco Morana
 
Web Application Security
byAbdul Wahid
 
Web Application Security 101
byCybersecurity Education and Research Centre
 
Web application vulnerability assessment
byRavikumar Paghdal
 
Security testing presentation
byConfiz
 
Security Testing
byKiran Kumar
 
Introduction to Web Application Penetration Testing
byAnurag Srivastava
 
Introduction to Application Security Testing
byMohamed Ridha CHEBBI, CISSP
 
Web Application Security 101
byJannis Kirschner
 
Introduction to security testing raj
byRajakrishnan S, MCA,MBA,MA Phil,PMP,CSM,ISTQB-Test Mgr,ITIL
 
Security Testing Training With Examples
byAlwin Thayyil
 
Web Application Security and Awareness
byAbdul Rahman Sherzad
 
Owasp top 10
byYasserElsnbary
 
Web application security
byKapil Sharma
 
Penetration Testing
byRomSoft SRL
 
Owasp top 10 2017
byibrahimumer2
 
Step by step guide for web application security testing
byAvyaan, Web Security Company in India
 
Web Application Security 101 - 04 Testing Methodology
byWebsecurify
 
A new web application vulnerability assessment framework
byMark Jayson Fuentes
 
Secure Coding 2013
byThe eCore Group
 

Viewers also liked

PPTX
Testing web application
byjayashreesaravanan
 
PPTX
Getting Ready for UAT
byProject Management Solutions
 
PPTX
Web Application Testing
byRicha Goel
 
PPTX
Testing strategy for agile projects updated
byTharinda Liyanage
 
PDF
Lab 7b) test a web application
bytechbed
 
PDF
Testing Web Applications
bySeth McLaughlin
 
PDF
Building a Test Automation Strategy for Success
byLee Barnes
 
PPTX
Test Strategy
byZbyszek Mockun
 
DOC
Niyati_Manual_Testing_ISTQB_Certified_Resume
byNiyati Madad
 
PPT
Methods to test an e-learning Web application.
bytelss09
 
PPT
AJRA Test Strategy Discussion
byajrhem
 
PPTX
Agile tour ncr test360_degree - agile testing on steroids
byVipul Gupta
 
PPT
Test strategy for web development
byalice yang
 
PPTX
The Three Pillars Approach to Your Agile Test Strategy
byBrian Estep
 
PPTX
Experience Report in #DEWT5: Where is test strategy with an agile team
byMaaret Pyhäjärvi
 
PPT
Jarian van de Laar - Test Policy - Test Strategy
byTEST Huddle
 
PDF
Agile 2012 the 0-page agile test plan - paul carvalho
bydrewz lin
 
PPTX
Designing Agile Test Strategy for Mobile Apps By Parimala Hariprasad
byAgile Testing Alliance
 
PDF
Database Web Application User Test 2
byTim Broadwater
 
PDF
How to brew a tasty agile test strategy
byDr. Alexander Schwartz
 
Testing web application
byjayashreesaravanan
 
Getting Ready for UAT
byProject Management Solutions
 
Web Application Testing
byRicha Goel
 
Testing strategy for agile projects updated
byTharinda Liyanage
 
Lab 7b) test a web application
bytechbed
 
Testing Web Applications
bySeth McLaughlin
 
Building a Test Automation Strategy for Success
byLee Barnes
 
Test Strategy
byZbyszek Mockun
 
Niyati_Manual_Testing_ISTQB_Certified_Resume
byNiyati Madad
 
Methods to test an e-learning Web application.
bytelss09
 
AJRA Test Strategy Discussion
byajrhem
 
Agile tour ncr test360_degree - agile testing on steroids
byVipul Gupta
 
Test strategy for web development
byalice yang
 
The Three Pillars Approach to Your Agile Test Strategy
byBrian Estep
 
Experience Report in #DEWT5: Where is test strategy with an agile team
byMaaret Pyhäjärvi
 
Jarian van de Laar - Test Policy - Test Strategy
byTEST Huddle
 
Agile 2012 the 0-page agile test plan - paul carvalho
bydrewz lin
 
Designing Agile Test Strategy for Mobile Apps By Parimala Hariprasad
byAgile Testing Alliance
 
Database Web Application User Test 2
byTim Broadwater
 
How to brew a tasty agile test strategy
byDr. Alexander Schwartz
 

Similar to Testing Web Application Security

PPT
Selenium
bySun Technlogies
 
PPT
selenium.ppt
byrajnexient
 
PPT
selenium.ppt
byAmenSheikh
 
PPTX
4&5.pptx SOFTWARE TESTING UNIT-4 AND UNIT-5
byhemasubbu08
 
KEY
Website Testing Practices
bydeseomar
 
PDF
Web Test Automation Framework - IndicThreads Conference
byIndicThreads
 
PPT
Automating testing with open source tools (1)
byRohit Biradar
 
PDF
Webapp Automation Testing of performance marketing and media platform
byKnoldus Inc.
 
PPT
Testing Ajax Web Applications
byTed Husted
 
PPT
selenium.ppt
byssuser7b4894
 
PDF
SVCC 2011 - 0 - 60: QA Automation @ Box
byPeter White
 
PDF
Microsoft power point automation-opensourcetestingtools_matrix-1
bytactqa
 
PDF
Microsoft power point automation-opensourcetestingtools_matrix-1
bytactqa
 
PDF
Implementing Test Automation in Agile Projects
byDominik Dary
 
PPTX
Implementing Test Automation in Agile Projects
byMichael Palotas
 
PPT
Susan windsor soft test 16th november 2005
byDavid O'Dowd
 
PDF
Test Automation and Innovation with Open Source Tools
byMichael Palotas
 
PPTX
Selenium ~ Uncommon but practical use cases
byBipin VK
 
PPTX
Automated integration tests for ajax applications (с. карпушин, auriga)
byMobile Developer Day
 
PDF
What Is New In TestMaker 6.5
byClever Moe
 
Selenium
bySun Technlogies
 
selenium.ppt
byrajnexient
 
selenium.ppt
byAmenSheikh
 
4&5.pptx SOFTWARE TESTING UNIT-4 AND UNIT-5
byhemasubbu08
 
Website Testing Practices
bydeseomar
 
Web Test Automation Framework - IndicThreads Conference
byIndicThreads
 
Automating testing with open source tools (1)
byRohit Biradar
 
Webapp Automation Testing of performance marketing and media platform
byKnoldus Inc.
 
Testing Ajax Web Applications
byTed Husted
 
selenium.ppt
byssuser7b4894
 
SVCC 2011 - 0 - 60: QA Automation @ Box
byPeter White
 
Microsoft power point automation-opensourcetestingtools_matrix-1
bytactqa
 
Microsoft power point automation-opensourcetestingtools_matrix-1
bytactqa
 
Implementing Test Automation in Agile Projects
byDominik Dary
 
Implementing Test Automation in Agile Projects
byMichael Palotas
 
Susan windsor soft test 16th november 2005
byDavid O'Dowd
 
Test Automation and Innovation with Open Source Tools
byMichael Palotas
 
Selenium ~ Uncommon but practical use cases
byBipin VK
 
Automated integration tests for ajax applications (с. карпушин, auriga)
byMobile Developer Day
 
What Is New In TestMaker 6.5
byClever Moe
 

More from Ted Husted

PDF
Testing Ajax Applications
byTed Husted
 
PDF
Testing Tools
byTed Husted
 
PDF
Testing The Testers
byTed Husted
 
PDF
API Doc Smackdown
byTed Husted
 
PDF
Developing java Web Applications Using Google Apps RJUG 2011
byTed Husted
 
PDF
.NET @ apache.org
byTed Husted
 
PDF
Open source-secret-sauce-rit-2010
byTed Husted
 
PDF
Open source secret_sauce_apache_con_2010
byTed Husted
 
PPT
Retrofitting
byTed Husted
 
PDF
Open Source Secret Sauce - Lugor Sep 2011
byTed Husted
 
PDF
Coding Ajax
byTed Husted
 
PDF
Coding Ajax
byTed Husted
 
PPTX
Ship It!
byTed Husted
 
PDF
Drupal kickstart-workshop
byTed Husted
 
PDF
Open Source Secret Sauce
byTed Husted
 
PDF
The secret life_of_open_source
byTed Husted
 
PDF
Agile Analysis with Use Cases: Balancing Utility with Simplicity
byTed Husted
 
PDF
NU FaceBook 101 JCC 2010
byTed Husted
 
Testing Ajax Applications
byTed Husted
 
Testing Tools
byTed Husted
 
Testing The Testers
byTed Husted
 
API Doc Smackdown
byTed Husted
 
Developing java Web Applications Using Google Apps RJUG 2011
byTed Husted
 
.NET @ apache.org
byTed Husted
 
Open source-secret-sauce-rit-2010
byTed Husted
 
Open source secret_sauce_apache_con_2010
byTed Husted
 
Retrofitting
byTed Husted
 
Open Source Secret Sauce - Lugor Sep 2011
byTed Husted
 
Coding Ajax
byTed Husted
 
Coding Ajax
byTed Husted
 
Ship It!
byTed Husted
 
Drupal kickstart-workshop
byTed Husted
 
Open Source Secret Sauce
byTed Husted
 
The secret life_of_open_source
byTed Husted
 
Agile Analysis with Use Cases: Balancing Utility with Simplicity
byTed Husted
 
NU FaceBook 101 JCC 2010
byTed Husted
 

Recently uploaded

PDF
Mulesoft Meetup Online Portuguese: MCP e IA
byPedro Baroni
 
PDF
[BDD 2025 - Mobile Development] Exploring Apple’s On-Device FoundationModels
byWintari Yasmin
 
PPTX
"Feelings versus facts: why metrics are more important than intuition", Igor ...
byFwdays
 
PPTX
Guardrails in Action - Ensuring Safe AI with Azure AI Content Safety.pptx
byUdaiappa Ramachandran
 
PDF
Cheryl Hung, Vibe Coding Auth Without Melting Down! isaqb Software Architectu...
byCheryl Hung
 
PDF
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
PDF
ODSC AI West: Agent Optimization: Beyond Context engineering
byShashikant Jagtap
 
PDF
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
PDF
How Much Does It Cost to Build an eCommerce Website in 2025.pdf
byPixlogix Infotech
 
PDF
[DevFest Strasbourg 2025] - NodeJs Can do that !!
bymoassiongbon
 
PPTX
MuleSoft AI Series : Introduction to MCP
byMulesoftMunichMeetup
 
PDF
Accessibility & Inclusion: What Comes Next. Presentation of the Digital Acces...
byAssociazione Digital Days
 
PDF
[BDD 2025 - Full-Stack Development] PHP in AI Age: The Laravel Way. (Rizqy Hi...
byWintari Yasmin
 
PDF
Parallel Computing BCS702 Module notes of the vtu college 7th sem 4.pdf
byMatheshVishnu
 
PDF
[BDD 2025 - Mobile Development] Crafting Immersive UI with E2E and AGSL Shade...
byWintari Yasmin
 
PDF
Transcript: The partnership effect: Libraries and publishers on collaborating...
byBookNet Canada
 
PDF
Integrating AI with Meaningful Human Collaboration
byCadabra Studio
 
PDF
Cybersecurity Prevention and Detection: Unit 2
byVICTOR MAESTRE RAMIREZ
 
PPTX
Connecting the unconnectable: Exploring LoRaWAN for IoT
byasasiraarthur
 
PDF
The partnership effect: Libraries and publishers on collaborating and thrivin...
byBookNet Canada
 
Mulesoft Meetup Online Portuguese: MCP e IA
byPedro Baroni
 
[BDD 2025 - Mobile Development] Exploring Apple’s On-Device FoundationModels
byWintari Yasmin
 
"Feelings versus facts: why metrics are more important than intuition", Igor ...
byFwdays
 
Guardrails in Action - Ensuring Safe AI with Azure AI Content Safety.pptx
byUdaiappa Ramachandran
 
Cheryl Hung, Vibe Coding Auth Without Melting Down! isaqb Software Architectu...
byCheryl Hung
 
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
ODSC AI West: Agent Optimization: Beyond Context engineering
byShashikant Jagtap
 
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
How Much Does It Cost to Build an eCommerce Website in 2025.pdf
byPixlogix Infotech
 
[DevFest Strasbourg 2025] - NodeJs Can do that !!
bymoassiongbon
 
MuleSoft AI Series : Introduction to MCP
byMulesoftMunichMeetup
 
Accessibility & Inclusion: What Comes Next. Presentation of the Digital Acces...
byAssociazione Digital Days
 
[BDD 2025 - Full-Stack Development] PHP in AI Age: The Laravel Way. (Rizqy Hi...
byWintari Yasmin
 
Parallel Computing BCS702 Module notes of the vtu college 7th sem 4.pdf
byMatheshVishnu
 
[BDD 2025 - Mobile Development] Crafting Immersive UI with E2E and AGSL Shade...
byWintari Yasmin
 
Transcript: The partnership effect: Libraries and publishers on collaborating...
byBookNet Canada
 
Integrating AI with Meaningful Human Collaboration
byCadabra Studio
 
Cybersecurity Prevention and Detection: Unit 2
byVICTOR MAESTRE RAMIREZ
 
Connecting the unconnectable: Exploring LoRaWAN for IoT
byasasiraarthur
 
The partnership effect: Libraries and publishers on collaborating and thrivin...
byBookNet Canada
 

Testing Web Application Security