Join the social network of Tech Nerds, increase skill rank, get work, manage projects...
  • What is Security testing?

    • 0
    • 1
    • 0
    • 0
    • 0
    • 0
    • 0
    • 0
    • 442
    Comment on it

    What is Security testing?

    Security testing is a method by which tester try to find loopholes in the application . The main motive while performing security testing is to make the application secure for public or private use and to make sure that only valid user can excess the application and invalid user should be kept outside . No loopholes should remain in the application which can be exploit by the hackers .

    Tools which can be used for security testing :

    There are many free and paid tools available in the market which are usefull while performing security testing:

    1.Burp Suite : Paid
    2.Wireshark : Free
    3.Zed Attack Proxy (ZAP): Free
    4.sqlmap : Free
    5.Vega : Free

    As per OWASP following are the top ten vulnerability :

    A1: Injection
    A2: Cross-Site Scripting (XSS)
    A3: Broken Authentication and Session Management
    A4: Insecure Direct Object References
    A5: Cross-Site Request Forgery (CSRF)
    A6: Security Misconfiguration
    A7: Insecure Cryptographic Storage
    A8: Failure to Restrict URL Access
    A9: Insufficient Transport Layer Protection
    A10: Unvalidated Redirects and Forwards

 0 Comment(s)

Sign In

Sign up using

Forgot Password
Fill out the form below and instructions to reset your password will be emailed to you:
Reset Password
Fill out the form below and reset your password: