Security Testing
-
How does an innocent looking interface element lead to such disastrous consequences like disclosure of credit card information, remotely controlling a machine, hijacking user identities and so on? Data becoming code via cleverly crafted payloads is one of the key security issues and is at the heart of many of the security attacks. Above thoughts
-
I presented a research paper under Innovation category at UNICOM’s Next Generation Testing conference, held at Bangalore on 11th July, 2013. My paper was able to generate a lot of interest in people’s minds for my company Test Mile and what we can offer. My paper was titled – Design of Test Automation – Principles
-
While testing, one of the useful ways to get more ideas for testing as well as breaking free of constraints that prevent you from exercising some test ideas is the GOLD heuristic – Go One Layer Down. The concept is simple, although from one implementation to another the ground work required might vary. There are
-
Thanks to my practice of looking into comment SPAM archived by wordpress Akismet plugin, I am able to find quite interesting SPAM comments. I found an interesting one today: The above happens to be a genuine comment on my blog by Ajay Balamurugadas, a friend from the Bangalore testing community. So, instead of generating some
-
My article on File Fuzzing, which deals with software testing via corruption of file contents, has been published in the Feb’10 edition of Security Acts magazine. The magazine is a free download available from the Security Acts website after a small registration process. Rahul Verma
-
I had blogged about presenting a tutorial on Fuzzing at STeP-IN Security Testing Theme Conference at Pune. In the same context, I attended the conference on 16-17 April. It was all worth my time, some lessons learnt and some to share as a part of this blog post. This report is not all roses. It’s
-
Testers are often caught into the trap of analyzing just the GUI interface and not looking beyond it. It is helpful many a times to go beyond the black box view and explore a little further. This is typically a grey area between black box and white box, wherein a tester tries to understand the application
-
SPAM is not a new word for any one with an email account. Over the past few days, I have been trying to dig a little deeper into the world of SPAM. I have written a small article on my findings. It can be found in the Testing Perspective Wiki on the Testing Concepts page
Rahul Verma: My Petty Bits 