Chapter 3. The Tools of the Trade
Thus far, we have seen how to create threat profiles, create test plans and construct test cases. The actual testing is a combination of manual testing techniques and automated scanners. In this chapter, we’ll look at the tools used for testing applications. As different types of applications require different types of tools to test, we look at tools for several popular categories of applications:
web applications
thick clients
terminal services
Java applets
web services
embedded systems
mobile/cell phones.
The emphasis is on tools for web applications and thick client applications as they form the largest part of the applications today.
Web applications
RoboForm
RoboForm is a useful support tool for the security tester. ...
Get Security Testing Handbook for Banking Applications now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
