Software security testing and techniques

MUST READ Web application security -- How to prevent attacks ALL-IN-ONE GUIDES - The battle against hackers is a difficult one. This guide introduces you to popular Web application attacks and provides tips, techniques and advice for keeping the bad guys out. Web application security testing checklist TIP - Testing your Web application security is something that needs be taken seriously. The best way to be successful is to prepare in advance and know what to look for. Creating a secure login page with Java EXPERT ANSWER - How do I create a secure login page using Java? I don't want a Web application security product; I want a solution TIP - The number of Web application security products available can make your head spin. A better option is a total solution that handles all of your Web application security needs. How to create a secure login page using ASP.NET EXPERT ANSWER - What security precautions should we take when creating a login page?

EXPERT TECHNICAL ADVICE: 1 - 3 of 136

SOFTWARE SECURITY TESTING AND TECHNIQUES EXPERTS
			Chris Wysopal co-founder and chief technology officer, Veracode ASK A QUESTION		Caleb Sima chief technologist for the HP Application Security Center ASK A QUESTION

	Free Web proxy security tools software testers should get to know 10 Nov 2009 TIP - Learn which free Web proxy tools work best and how to use ones like, BurpProxy, Paros Proxy and WebScarab to boost rich Internet applications' security.

	How to get management on board with Web 2.0 security issues 05 Nov 2009 TIP - Ways to get management buy-in for Web 2.0 security testing and quality assurance and to bolster application security before deployment are given in this tip.

	Ways to approach application performance testing on a tight budget 22 Oct 2009 TIP - App performance pro explains how to achieve quality performance testing on the cheap in this tip. Being familiar with the tools, processes and original test data is key.

	VIEW ALL EXPERT TECHNICAL ADVICE ON SOFTWARE SECURITY TESTING AND TECHNIQUES

REFERENCE & LEARNING: 1 - 3 of 20

	How to make your software tamperproof Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection | 27 Oct 2009 SURREPTITIOUS SOFTWARE - Learn ways to tamperproof and secure your software app from this chapter of the book, Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection.

	Software security: Removing insecurity from outsourced development SearchSoftwareQuality.com | 31 Mar 2009 PODCAST - In this podcast, software security expert Jack Danahy describes when and when not to outsource application development and why.

	Web application security -- How to prevent attacks 20 Aug 2008 ALL-IN-ONE GUIDES - The battle against hackers is a difficult one. This guide introduces you to popular Web application attacks and provides tips, techniques and advice for keeping the bad guys out.

	VIEW ALL REFERENCE & LEARNING ON SOFTWARE SECURITY TESTING AND TECHNIQUES

NEWS: 1 - 3 of 121

	Software testers facing six big challenges today, StarWest keynoter says SearchSoftwareQuality | 09 Oct 2009 ARTICLE - Software testing guru lists top concerns testers face from managing their test staff to adding quality through monitoring the test phase.

	Lesser-known free software testing tools testers should try SearchSoftwareQuality.com | 08 Oct 2009 ARTICLE - A software testing expert surveys useful free and cheap testing and test management tools, including CTE-XL and Unified TestPro.

	Classic inspiration for modern software test problems in QA SearchSoftwareQuality.com | 28 Sep 2009 INTERVIEW - AmiBug.com president, Robert Sabourin, talks about classic story inspiration in the development of modern software testing solutions and QA practices, tester's top concerns.

	VIEW ALL NEWS ON SOFTWARE SECURITY TESTING AND TECHNIQUES

DOWNLOADS: 1 - 3 of 7

	Testing strategies for complex environments Published by: SearchSoftwareQuality.com | 30 Oct 2009 PDF - In this issue of SoftwareTesting Ezine, the new "places" are a service-oriented architecture (SOA) and an agile software development environment.

	Video: Classification, detection of application backdoor attacks Published by: SearchSoftwareQuality.com | 04 Mar 2008 VIDEOS - Veracode's Chris Wysopal explains static detection methods for finding the four major types of backdoor attacks.

	Black, gray and white box testing explained -- Podcast Published by: SearchSoftwareQuality.com | 23 Mar 2007 PODCAST - Security is critical when operating a Web application. Black, gray and white box tests are three tests you can conduct to ensure an attacker can't get to your application.

	VIEW ALL DOWNLOADS ON SOFTWARE SECURITY TESTING AND TECHNIQUES

BEST WEB LINKS: 1 - 2 of 2

	Web 2.0 application security troubleshooting, testing tutorial SearchSoftwareQuality.com | 18 Aug 2009 SSQ TUTORIAL - From beating login problems to hacking your own applications, this multimedia how-to collection of how-tos covers all security topics in Web 2.0 and rich Internet applications.

	White Papers: How to protect against SQL injection and other application attacks SearchAppSecurity.com | 07 Feb 2006 RESOURCE GUIDE - Fortunately, there are steps you can take now to prevent SQL injection and other attacks on your applications.

	VIEW ALL BEST WEB LINKS ON SOFTWARE SECURITY TESTING AND TECHNIQUES

SEE ALSO - Topics Related to Software security testing and techniques:  Software testing and quality assurance (QA) fundamentals, Software testing models and approaches (Context-driven, Factory, Analytic, Quality, IV&V), Software testing tools and frameworks, Software test design, Functional software testing, User acceptance testing, Software regression testing, Automated software testing, Software integration testing, Software performance, load and stress testing, Software unit testing, Usability testing, Software security testing tools