Q
Problem solve Get help with specific problems with your technologies, process and projects.

Is manually testing a software project for flaws too risky?

Security testing expert examines potential issues testers can face in choosing not to automate testing, this type of testing is often referred to as "ethical hacking".

What are the factors affecting a manual testing project and what are the ways to overcome it?

I'm assuming you mean "manual testing" in the context of ethical hacking. Given that you need to consider looking...

at your app from every possible angle as both an untrusted outsider and a trusted user. Look at things using multiple role levels if you have them. You need to consider what can be thrown at the application in the form of input both in forms and URLs. You'll also want to see what can happen when you disable JavaScript, field length maximums, and so on. A malicious mindset a Web browser are two of the best things you can use to test your Web apps for security flaws so practice, practice, practice.

If you are indeed dealing in terms of "ethical hacking," I can certainly point you in some positive directions and to some good resources. Recently, I have written a number of tips and expert responses dealing with hacking one's own application and or software. Here is a list of a few of them I hope you will find useful.

This was last published in October 2009

Dig Deeper on Software Security Test Best Practices

PRO+

Content

Find more PRO+ content and other member only offers, here.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

SearchMicroservices

TheServerSide.com

SearchCloudApplications

SearchAWS

SearchBusinessAnalytics

SearchFinancialApplications

SearchHealthIT

DevOpsAgenda

Close