Prepare for your Next Interview

• GeekInterview
• Knowledge base
• Interview Questions
• Tech FAQs

Security testing for a web application developed in ASP.NET

This is a discussion on Security testing for a web application developed in ASP.NET within the Web Testing forums, part of the Software Testing category; Can any one explain about security testing for a web application? I need the information about how we will perform security testing for a web application which is developed by ...

Geeks Talk > Software Testing > Web Testing Security testing for a web application developed in ASP.NET

User Name Remember Me? Password

Register

FAQ

Members List

Calendar

Mark Forums Read

Thread Tools

Display Modes

#1 (permalink)   06-04-2007

shivaranjani Junior Member   Join Date: May 2007 Location: hyderabad Posts: 2 Thanks: 0 Thanked 1 Time in 1 Post

Security testing for a web application developed in ASP.NET Can any one explain about security testing for a web application? I need the information about how we will perform security testing for a web application which is developed by asp.net?

The Following User Says Thank You to shivaranjani For This Useful Post:

neelima_sandy

Sponsored Links

#2 (permalink)   06-16-2007

vijenjoy2k2 Contributing Member   Join Date: May 2007 Location: India Posts: 94 Thanks: 2 Thanked 5 Times in 5 Posts

security testing for a web application? Explain about security testing for a web application? How we will perform security testing for a web application which is developed by asp.net? Last edited by jainbrijesh : 06-16-2007 at 03:46 AM.

#3 (permalink)   08-17-2007

rodger Junior Member   Join Date: Aug 2007 Location: India Posts: 1 Thanks: 0 Thanked 0 Times in 0 Posts

Re: Security testing for a web application developed in ASP.NET Check whether the text field is allowing script tags.. If this is allowed then the hacker can pass any script in the textfield itself.. Then use filters in passing the variables through post method..coz hackers can easily knows the logic of the functionality which ur using.

#4 (permalink)   08-18-2007

jainbrijesh Moderator   Join Date: Sep 2006 Location: Delhi (India) Posts: 866 Thanks: 12 Thanked 81 Times in 65 Posts

Re: Security testing for a web application developed in ASP.NET In security testing one and most important thing is that no-one should allowed to see restricted pages, whether it is hacker or guest or other user by any mean. __________________ Brijesh Jain brijesh.tester@yahoo.co.in http://softwaretestingexpertise.blogspot.com

#5 (permalink)   09-11-2007

kunals Contributing Member   Join Date: Feb 2006 Posts: 73 Thanks: 0 Thanked 3 Times in 3 Posts

Re: Security testing for a web application developed in ASP.NET One more thing to look for is the Cookies... Often ignored by ppl thisis a vital source for leaking information. any web based application should have their cookies encrypted and it should not be readable at all for normal people. Thanks, Kunal

#6 (permalink)   11-07-2007

jainbrijesh Moderator   Join Date: Sep 2006 Location: Delhi (India) Posts: 866 Thanks: 12 Thanked 81 Times in 65 Posts

Re: Security testing for a web application developed in ASP.NET Quote: Originally Posted by kunals One more thing to look for is the Cookies... Often ignored by ppl thisis a vital source for leaking information. any web based application should have their cookies encrypted and it should not be readable at all for normal people. Thanks, Kunal As kunal say's, the information under cookies should be encrypted, I want to add few words, the cookie should not only encrypted but there should not be any sensitive information saved in cookie, other than session information, as human can't read encrypted but bot or other crawlers may do that. __________________ Brijesh Jain brijesh.tester@yahoo.co.in http://softwaretestingexpertise.blogspot.com

Geeks Talk > Software Testing > Web Testing

« Discus effective testing vs efficient testing | Load Testing »

Thread Tools

Show Printable Version Email this Page

Display Modes

Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Testing PHP – Security Testing	RyanJames	Testing Issues	5	02-15-2008 05:32 AM
Security Testing	rose	Testing Issues	1	06-20-2007 02:56 AM
Top 10 Application Security Vulnerabilities	Lokesh M	ASP.NET	1	05-04-2007 01:31 AM
Security issues in testing	JobHelper	Testing Issues	2	02-27-2007 08:53 AM
Testing for Security in the Age of Ajax Programming	Lokesh M	Testing Issues	0	09-29-2006 01:23 AM

All times are GMT -4. The time now is 01:33 PM.