{"id":1220,"date":"2020-07-02T13:30:58","date_gmt":"2020-07-02T13:30:58","guid":{"rendered":"https:\/\/lvboard.infostore.in.ua\/?p=1220"},"modified":"2020-07-02T13:30:58","modified_gmt":"2020-07-02T13:30:58","slug":"security-testing","status":"publish","type":"post","link":"https:\/\/lvboard.infostore.in.ua\/?p=1220","title":{"rendered":"Security Testing"},"content":{"rendered":"\n<h2>What is Security Testing?<\/h2>\n\n\n\n<p>Security testing is a testing technique to determine if an information system protects data and maintains functionality as intended. It also aims at verifying 6 basic principles as listed below:<\/p>\n\n\n\n<!--more-->\n\n\n\n<ul><li>Confidentiality<\/li><li>Integrity<\/li><li>Authentication<\/li><li>Authorization<\/li><li>Availability<\/li><li>Non-repudiation<\/li><\/ul>\n\n\n\n<h2>Security Testing &#8211; Techniques:<\/h2>\n\n\n\n<ul><li>Injection<\/li><li>Broken Authentication and Session Management<\/li><li>Cross-Site Scripting (XSS)<\/li><li>Insecure Direct Object References<\/li><li>Security Misconfiguration<\/li><li>Sensitive Data Exposure<\/li><li>Missing Function Level Access Control<\/li><li>Cross-Site Request Forgery (CSRF)<\/li><li>Using Components with Known Vulnerabilities<\/li><li>Unvalidated Redirects and Forwards<\/li><\/ul>\n\n\n\n<h2>Open Source\/Free Security Testing Tools:<\/h2>\n\n\n\n<figure class=\"wp-block-table\"><table><tbody><tr><th>Product<\/th><th>Vendor<\/th><th>URL<\/th><\/tr><tr><td>FxCop<\/td><td>Microsoft<\/td><td>https:\/\/www.owasp.org\/index.php\/FxCop<\/td><\/tr><tr><td>FindBugs<\/td><td>The University of Maryland<\/td><td>http:\/\/findbugs.sourceforge.net\/<\/td><\/tr><tr><td>FlawFinder<\/td><td>GPL<\/td><td>http:\/\/www.dwheeler.com\/flawfinder\/<\/td><\/tr><tr><td>Ramp Ascend<\/td><td>GPL<\/td><td>http:\/\/www.deque.com<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2>Commercial Security Testing Tools:<\/h2>\n\n\n\n<figure class=\"wp-block-table\"><table><tbody><tr><th>Product<\/th><th>Vendor<\/th><th>URL<\/th><\/tr><tr><td>Armorize CodeSecure<\/td><td>Armorize Technologies<\/td><td>http:\/\/www.armorize.com\/index.php?link_id=codesecure<\/td><\/tr><tr><td>GrammaTech<\/td><td>GrammaTech<\/td><td>http:\/\/www.grammatech.com\/<\/td><\/tr><tr><td>Appscan<\/td><td>IBM<\/td><td>http:\/\/www-03.ibm.com\/software\/products\/en\/appscan-source<\/td><\/tr><tr><td>Veracode<\/td><td>VERACODE<\/td><td>http:\/\/www.veracode.com<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p><a href=\"https:\/\/www.tutorialspoint.com\/\">https:\/\/www.tutorialspoint.com\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>What is Security Testing? Security testing is a testing technique to determine if an information system protects data and maintains functionality as intended. It also aims at verifying 6 basic principles as listed below:<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[98],"tags":[99],"_links":{"self":[{"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=\/wp\/v2\/posts\/1220"}],"collection":[{"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1220"}],"version-history":[{"count":1,"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=\/wp\/v2\/posts\/1220\/revisions"}],"predecessor-version":[{"id":1221,"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=\/wp\/v2\/posts\/1220\/revisions\/1221"}],"wp:attachment":[{"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1220"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1220"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lvboard.infostore.in.ua\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1220"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}