Glossary - U (part 1)

Usability Testing: Testing the ease with which users can learn and use a product.


Use Case: The specification of tests that are conducted from the end-user perspective. Use cases tend to focus on operating software as an end-user would conduct their day-to-day activities.


User Acceptance Testing: A formal product evaluation performed by a customer as a condition of purchase.


Unit Testing: Testing of individual software components.





Software Testing Training


Software testing institute


corporate training software testing



For More Visit Site

http://www.qacampus.com
http://www.adactin.com

Performance Concepts

Performance Concepts
Course Code : CTQPC 103 Source : CresTech Course Length : 2 days


Course outline :

Overview of Performance Testing
Performance Testing Life Cycle
Types of Performance Testing
Performance Goals
Effort Estimation for Performance Testing
Simulating Realistic scenarios for Load Testing Web Sites
Client Side emulations while conducting load tests
Administering Load Tests
Performance Monitoring and Tuning
Locating Performance Bottlenecks
Performance Testing Tools
Sample Performance Test Plan
Sample Performance Report


Course Code : CTQXT 102 Source : CresTech Course Length : 2 days


This course is designed to provide software testing and quality assurance professionals with the knowledge necessary to plan, design and execute tests for applications that involve XML technologies. It covers the basics of XML, its implementation to support application programming interfaces and specifically web services, ways to validate the format and the contents of XML messages and methods to test XML-based applications.

Prerequisites:

The principal vocabulary of XML technologies
Fundamentals of XML files, Document Type model and XML schema
Definition and applications of Web Services
Basics of the Web Services Description Language (WSDL)
XML validation: the meaning of Well-formed and Valid XML
Common tools for XML validation
Methods of testing XML-based applications
Where to look for additional resources
What the course is about :

Scope: what do we cover in depth, what do we glance over, what we do not cover
Goals: what will we learn
Administrative items
XML Basics
Markup languages
XML vs HTML
XML elements and attributes
Document Type model
XML schema
Web Services
Web services as a ubiquitous form of the application programming Interface
Offering and consuming web services
Web Services Definition language (WSDL)
Testing XML
Validating XML
Well-formed XML
Valid XML
XML validators
Testing XML-based applications
Accessing applications through XML web services
Analyzing results
Where the defects lurk, or where XML break


Software Testing Training


Software testing institute


corporate training software testing



For More Visit Site

http://www.qacampus.com
http://www.adactin.com

VuGen 9.0 Scripting for Web

VuGen 9.0 Scripting for Web
Course Code : CTMLR502 Source : CresTech Course Length : 2 days


The Virtual User Generator (VuGen) is a scripting tool used to record and run user actions on the application to be load tested. This course focuses on planning, creating and enhancing Virtual User (Vuser) scripts using VuGen in the Web environment. All topics are supported by hands-on labs designed to provide you with the knowledge necessary to create scripts in the Web environment.

Intended Audience

Quality Assurance Engineers
Performance Engineers
Users of LoadRunner who need to create scripts to load test their Web applications.
Course Objectives

At the end of the course, you will be able to:

Record scripts in the Web environment using VuGen
Measure steps and business processes using transactions
Parameterize scripts to vary user input data
Customize scripts by adding VuGen and basic C functions
; Correlate scripts to process server-generated data
Prerequisites

Working knowledge of:

Windows
Web sites and browsers
Fundamental understanding of C programming is helpful, but not required
Course Outline

Introduction to LR VuGen Contents
Recording for the Web
Replay
Transactions
Parameters
Auto Correlation After Recording
Verification
Actions
Introduction to Script View


Software Testing Training


Software testing institute


corporate training software testing



For More Visit Site

http://www.qacampus.com
http://www.adactin.com

SOA Testing Simplified (Series-II)

SOA Testing Simplified (Series-II)

By Pallavi Sharma

In the last article ‘Series-I’ we got familiar with SOA architecture, and its some components. We saw how a web service ‘wsdl’ file looks like and learnt how we decipher the complex information present in the file, so that we understand the web service better. In this series we will dig deeper into SOA architecture and try to figure out how exactly the various components of SOA architecture communicate with each other to solve the complex business need.



http://www.qacampus.com
http://www.adactin.com

Sending Mail from QTP using OutLook

Sending Mail from QTP using OutLook

By Navneesh Garg
As a generic Automation requirement most of the projects look at automatic emails being sent after QTP script executes or ends in a failure. Generally, outlook is configured on the systems on whissing Outlook from QTP.

‘*******************************************************************************
‘ Function: Outlook_SendEmail
‘
‘ Sends an email using Outlook.
‘
‘ Input Parameters:
‘
‘ strTo - The email address or Outlook contact to whom the email should be sent.
‘ strSubject - The email’s subject.
‘ strBody - The email’s body (this may of course include newline characters).
‘
‘ Output Parameters:
‘
‘ None.
‘
‘ Returns:
‘
‘ Not applicable. This is a sub, not a function.
‘
Sub Outlook_SendEmail(strTo, strSubject, strBody)
‘TODO: maybe add support for CC, BCC, etc?

‘Create an Outlook object
Dim Outlook ‘As New Outlook.Application
Set Outlook = CreateObject(”Outlook.Application”)

‘Create a new message
Dim Message ‘As Outlook.MailItem
Set Message = Outlook.CreateItem(0)
With Message
‘You can display the message To debug And see state
‘.Display

.Subject = Subject
.Body = TextBody

‘Set destination email address
.Recipients.Add (strTo)

‘Set sender address If specified.
‘Const olOriginator = 0
‘If Len(aFrom) > 0 Then .Recipients.Add(aFrom).Type = olOriginator

‘Send the message
.Send
End With
End Sub



http://www.qacampus.com
http://www.adactin.com

Application Security: OWASP top 10

Application Security: OWASP top 10

By: Avinash K Tiwari

The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software. The OWASP community includes corporations, educational organizations, and individuals from around the world. This community works to create freely-available articles, methodologies, documentation, tools, and technologies. Purpose of OWASP is working for finding and fighting the causes of insecure software.

Official web site: www.owasp.org

OWASP’s most successful projects include the book-length OWASP Guide and the widely adopted OWASP Top 10 awareness document.

In this post, I am going to focus on “What OWASP Top Ten” is all about.

The Open Web Application Security Project (OWASP) Top Ten Project provides a minimum standard for web application security. It lists the top ten most critical web application security vulnerabilities, representing a broad concensus. Project members include a variety of security experts from around the world who have shared their expertise to produce this list. You should consider adopting security standards and begin assessing that your web applications do not contain these security flaws. Addressing the OWASP Top Ten is an effective first step towards changing your software development culture into one that produces secure code for your web applications.

Following are the OWASP top 10 vulnerabilities with a brief description

Cross-site scripting (XSS) flaws:
Hackers can impersonate legitimate users, and control their accounts.
Impact : Identity Theft, Sensitive Information Leakage, …

Injection flaws:
Hackers can access backend database information, alter it or steal it.
Impact: Attacker can manipulate queries to the DB / LDAP / Other system

Malicious File Execution
Execute shell commands on server, up to full control
Impact: Site modified to transfer all interactions to the hacker.

Broken authentication and session management:
Session tokens not guarded or invalidated properly
Impact : Hacker can “force” session token on victim; session tokens can be stolen after logout

Cross-Site Request Forgery
Attacker can invoke “blind” actions on web applications, impersonating as a trusted user
Impact : Blind requests to bank account transfer money to hacker

Information Leakage and Improper Error Handling
Attackers can gain detailed system information
Malicious system inFORMATION may assist in developing further attacks

Insecure storage
Weak encryption techniques may lead to broken encryption
Impact: Confidential information (SSN, Credit Cards) can be decrypted by malicious users

Insecure Communication:
Sensitive info sent unencrypted over insecure channel
Impact: Unencrypted credentials “sniffed” and used by hacker to impersonate user

Failure to Restrict URL Access
Hacker can forcefully browse and access a page past the login page
Impact : Hacker can access unauthorized resources

Insecure Direct Object Reference
Web application returns contents of sensitive file (instead of harmless one)
Impact: Attacker can access sensitive files and resources

We will be discussing each one the vulnaribilities in detail in the coming posts.

Moreover, more information about the following critical web application security vulnerabilities is on the OWASP website: http://www.owasp.org/index.php/OWASP_Top_Ten_Project

(Copyrighted by CresTech Software Systems Pvt. Ltd.)

Your Testing Partner



http://www.qacampus.com
http://www.adactin.com

Sample code to click on dynamic link using Browser DOM

Sample code to click on dynamic link using Browser DOM

By Navneesh Garg

Let us try to understand a practical scenario. You have webpage. On this web-page the total number of links changes dynamically. Also the links on this webpage are not static links and are created dynamically based on inputs on the previous page. User needs to click on a link with a particular title on this page.

There can be multiple solutions to this problem. Please find below the solution which uses Document Object Model of Browser to browse through the links and click on the specified link.

Solution:

1. User uses DOM of Browser to get reference to the webpage
2. User get reference to collection of links on the webpage
3. Use for Loop to get to each link and based on the required property match click on the required link

Sample Code

************************************************************************

Function (Expected_Title)

Set obj = Browser(”Simple Validation”).Page(”Simple Validation”).Object.body.document
set Linkcollections= obj.Links

msgbox “No. of Links is” & Linkcollections.Length
dim counter
counter=0
For each Element in Linkcollections

StrTitle = Element.GetROProperty (“title”)
If StrTitle = Expected_Title then
Element.Click
Exit For
Else
Counter = Counter + 1
End If

Next

End Function
************************************************************************

Another Possible solution could be to use Description Object to get reference to all objects in the page.

You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.



http://www.qacampus.com
http://www.adactin.com