Basic Security Testing Tips

1) URL manipulation through HTTP GET methods: The tester should check if the application passes important information in the query-string. This happens when the application uses the HTTP GET method to pass information between the client and the server. The information is passed in parameters in the query-string. The tester can modify a parameter value in the query-string to check if the server accepts it. Via HTTP GET request user information is passed to server for authentication or fetching data. Attacker can manipulate every input variable passed from this GET request to server in order to get the required information

How to Perform Load Testing?

Step 1 - Identify Objectives The purpose of this step is to identify and write the performance objectives of your application. The key question you should ask yourself is: “How should my application behave under load?” The main parameters we should consider are: Response time- The time that would take the application to display a certain output or perform a certain calculation. Example: the product catalog must be displayed in less than 3 seconds. Throughput– The rate of successful message delivery over a communication channel. Example: the system must support 100 requests per second. Resource utilization- A frequently overlooked aspect,

Selenium Best Practices

1) Use Robust object identification methods: Preferred selector order: id > name >css>xpath To locate an element we can use • the element’s ID e.g- driver.findElement("LinkId")).click(); • the element’s name attribute e.g- driver.findElement("LinkName")).click(); • by CSS statement e.g- driver.findElement(By.cssSelector(“a#LinkId”)).click(); • the element’s CSS statement e.g- driver.findElement(By.css("LinkName")).click(); • an XPath statement e.g- driver.findElement(By.xpath([//div 2/a[text()=’LinkText’]")).click(); • by a links text e.

Jmeter Best Practices

1) Do not use the Console to create your load: You can use the console for debugging purposes or to run a small load from it to make sure the script is running correctly. The GUI consumes a lot of memory under heavy load; therefore the console server by itself cannot sustain a heavy load. 2) Use the remote servers to create the load: Use the “Remote Start All” or “Remote Start” individual servers. 3) Limit the number of threads per engine to 300: This means the total number of threads generated by your test plan should be less than

How to do Performance Testing.

Performance Testing Process Below is a generic performance testing process 1. Identify your testing environment i.Know your physical test environment, production environment and what testing tools are available. ii. Understand details of the hardware, software and network configurations used during testing before you begin the testing process. That will help testers create more efficient tests. It will also help identify possible challenges that testers may encounter during the performance testing procedures. 2. Identify the performance acceptance criteria – i. This includes goals and constraints for throughput, response times and resource allocation. ii. It is also necessary to identify project success

Data Driven script with WebDriver

Example Testcase: Create a script to check login functionality of Gmail. Steps followed: 1) Open Google. 2) Click on Sign in 3) Enter Username and Password. 4) Submit Creds. 5) Check if the user is Signed In Script: import; import; import; import; import java.util.concurrent.TimeUnit; import org.apache.poi.hssf.usermodel.HSSFWorkbook; import; import; import; import org.junit.*; import org.openqa.selenium.By; import org.openqa.selenium.WebDriver;

Webdriver Script basics with sample code

WebDriver Basic Syntax: 1. Creating New Instance of Firefox Driver: WebDriver driver = new FirefoxDriver(); //Above given syntax will create new instance of Firefox driver. 2. Command to Open URL In Browser: driver.get(""); //This syntax will open specified URL in web browser. 3. Clicking on any element or button of webpage: driver.findElement("submitButton")).click(); //Above given syntax will click on targeted element in WebDriver. 4. Store text of targeted element in variable: String dropdown = driver.findElement(By.tagName("select")).getText(); //This syntax will retrieve text from targeted

WebDriver Basics and Setup instructions

WebDriver Basics and Setup instructions A: What is WebDriver? • WebDriver is a web automation framework that allows us to execute our tests against different browsers, not just Firefox (unlike Selenium IDE). WebDriver supports Firefox, Chrome, IE, Safari and Opera. • WebDriver supports web as well mobile application testing so we can also test mobile applications (IPhone or Android). • WebDriver also enables us to use a programming language to create our test scripts (that is not possible in Selenium IDE). • We can now use conditional operations like if-then-else or switch-case. We can also perform looping like do-while. • Following programming languages are supported

How to write testcases ?

In Agile, writing test cases can be little different as compared to other methodologies. We never get entire complete functionality to test because we build the functionalities in iterations and only part of the functionality is delivered in each Sprint (aka iteration). So now whenever any Story is delivered in any Sprint. First thing a Tester must do is request the Programmer for a short Knowledge-Transition (K.T) session regarding this story. And we should cover the following points during the discussion: 1- What should be tested? 2- What should NOT be tested? 3- Any high risk areas? 4- Take