GeekInterview.com
   Home |  Tech FAQ  |   Interview Questions |  Placement Papers |  Tech Articles |  Learn |  Freelance Projects |  Online Testing |  Geeks Talk |  Job Postings |  Knowledge Base | Site Search |  Add/Ask Question

GeekInterview.com  >  Interview Questions  >  Testing  >  Security Testing
Go To First  |  Previous Question  |  
 Security Testing  |  Question 6 of 6    Print  
Security Tools
what sort of security tools or securuty need for Test Analyst when he doing testing.Web online specialy company if has got a on line website and they want toyou test!thank you it urgent as well.


  
Total Answers and Comments: 3 Last Update: September 14, 2008     Asked by: yonca 
  
 Sponsored Links

 
 Best Rated Answer

No best answer available. Please pick the good answer available or submit your answer.
July 31, 2008 08:47:55   #1  
srinivasulub1981 Member Since: December 2005   Contribution: 139    

RE: Security Tools

As per my knowledge below security methods needs to be verified in web testing.

·         Cross-site scripting                                                       

·         SQL Injection

·         Buffer overflows

·         Hidden fields

·         CGI parameters

·         Cookies

·         Forceful browsing

·         URL jumping

·         Automatic Form fillers

·         Known Attacks

·         Crawling



 
Is this answer useful? Yes | No
July 31, 2008 08:48:57   #2  
srinivasulub1981 Member Since: December 2005   Contribution: 139    

RE: Security Tools
And there are so many open source tools to test security vulnerabilities like paros, Acunetix.
 
Is this answer useful? Yes | No
September 13, 2008 07:09:32   #3  
Shilpa0901 Member Since: September 2008   Contribution: 5    

RE: Security Tools
It is a type of testing in which one will concentrate on the following areas.

Authentication
Direct URL testing
Firewall leakage testing

Authentication: in this type of testing usually one will enter different combinations of usernames and passwords and check whether it is allowing only authorised users or not.


Direct URL: In this type of testing one will enter the direct URL's and try to access the unauthorised pages and check whether they are been accessed or not.


Firewall Leakage: In this type of testing one level of users try to access other level of user pages to check whether firewalls are working properly or not.


 
Is this answer useful? Yes | No


 
Go To Top


 Sponsored Links

 




About Us  |   Privacy Policy  |   Terms and Conditions  |   Contact  |   Site Map  |   Add Question  |   Propose Category  |   RSS Feeds  |   Articles Sitemap  |   Site Updates  |   Add Resource

Copyright © 2005 - 2008 GeekInterview.com. All Rights Reserved
Page copy protected against web site content infringement by Copyscape