Agile Testing

A Practical Guide for Testers and Agile Teams

Author: Lisa Crispin,Janet Gregory

Publisher: Pearson Education

ISBN: 0321534468

Category: Computers

Page: 533

View: 694

Get past the myths of testing in agile environments - and implement agile testing the RIGHT way. * * For everyone concerned with agile testing: developers, testers, managers, customers, and other stakeholders. * Covers every key issue: Values, practices, organizational and cultural challenges, collaboration, metrics, infrastructure, documentation, tools, and more. * By two of the world's most experienced agile testing practitioners and consultants. Software testing has always been crucial, but it may be even more crucial in agile environments that rely heavily on repeated iterations of software capable of passing tests. There are, however, many myths associated with testing in agile environments. This book helps agile team members overcome those myths -- and implement testing that truly maximizes software quality and value. Long-time agile testers Lisa Crispin and Janet Gregory offer powerful insights for three large, diverse groups of readers: experienced testers who are new to agile; members of newly-created agile teams who aren't sure how to perform testing or work with testers; and test/QA managers whose development teams are implementing agile. Readers will learn specific agile testing practices and techniques that can mean the difference between success and failure; discover how to transition 'traditional' test teams to agile; and learn how to integrate testers smoothly into agile teams. Drawing on extensive experience, the authors illuminate topics ranging from culture to test planning to automated tools. They cover every form of testing: business-facing tests, technology-facing tests, exploratory tests, context-driven and scenario tests, load, stability, and endurance tests, and more. Using this book's techniques, readers can improve the effectiveness and reduce the risks of any agile project or initiative.
Posted in Computers

More Agile Testing

Learning Journeys for the Whole Team

Author: Janet Gregory,Lisa Crispin

Publisher: Addison-Wesley Professional

ISBN: 0133749568

Category: Computers

Page: 544

View: 9956

Janet Gregory and Lisa Crispin pioneered the agile testing discipline with their previous work, Agile Testing. Now, in More Agile Testing, they reflect on all they’ve learned since. They address crucial emerging issues, share evolved agile practices, and cover key issues agile testers have asked to learn more about. Packed with new examples from real teams, this insightful guide offers detailed information about adapting agile testing for your environment; learning from experience and continually improving your test processes; scaling agile testing across teams; and overcoming the pitfalls of automated testing. You’ll find brand-new coverage of agile testing for the enterprise, distributed teams, mobile/embedded systems, regulated environments, data warehouse/BI systems, and DevOps practices. You’ll come away understanding • How to clarify testing activities within the team • Ways to collaborate with business experts to identify valuable features and deliver the right capabilities • How to design automated tests for superior reliability and easier maintenance • How agile team members can improve and expand their testing skills • How to plan “just enough,” balancing small increments with larger feature sets and the entire system • How to use testing to identify and mitigate risks associated with your current agile processes and to prevent defects • How to address challenges within your product or organizational context • How to perform exploratory testing using “personas” and “tours” • Exploratory testing approaches that engage the whole team, using test charters with session- and thread-based techniques • How to bring new agile testers up to speed quickly–without overwhelming them The eBook edition of More Agile Testing also is available as part of a two-eBook collection, The Agile Testing Collection (9780134190624).
Posted in Computers

User Stories Applied

For Agile Software Development

Author: Mike Cohn

Publisher: Addison-Wesley Professional

ISBN: 9780132702645

Category: Computers

Page: 304

View: 2645

Thoroughly reviewed and eagerly anticipated by the agile community, User Stories Applied offers a requirements process that saves time, eliminates rework, and leads directly to better software. The best way to build software that meets users' needs is to begin with "user stories": simple, clear, brief descriptions of functionality that will be valuable to real users. In User Stories Applied, Mike Cohn provides you with a front-to-back blueprint for writing these user stories and weaving them into your development lifecycle. You'll learn what makes a great user story, and what makes a bad one. You'll discover practical ways to gather user stories, even when you can't speak with your users. Then, once you've compiled your user stories, Cohn shows how to organize them, prioritize them, and use them for planning, management, and testing. User role modeling: understanding what users have in common, and where they differ Gathering stories: user interviewing, questionnaires, observation, and workshops Working with managers, trainers, salespeople and other "proxies" Writing user stories for acceptance testing Using stories to prioritize, set schedules, and estimate release costs Includes end-of-chapter practice questions and exercises User Stories Applied will be invaluable to every software developer, tester, analyst, and manager working with any agile method: XP, Scrum... or even your own home-grown approach.
Posted in Computers

The Agile Testing Collection

Author: Janet Gregory,Lisa Crispin

Publisher: Addison-Wesley Professional

ISBN: 0134190637

Category: Computers

Page: 1114

View: 9235

A Comprehensive Collection of Agile Testing Best Practices: Two Definitive Guides from Leading Pioneers Janet Gregory and Lisa Crispin haven’t just pioneered agile testing, they have also written two of the field’s most valuable guidebooks. Now, you can get both guides in one indispensable eBook collection: today’s must-have resource for all agile testers, teams, managers, and customers. Combining comprehensive best practices and wisdom contained in these two titles, The Agile Testing Collection will help you adapt agile testing to your environment, systematically improve your skills and processes, and strengthen engagement across your entire development team. The first title, Agile Testing: A Practical Guide for Testers and Agile Teams, defines the agile testing discipline and roles, and helps you choose, organize, and use the tools that will help you the most. Writing from the tester’s viewpoint, Gregory and Crispin chronicle an entire agile software development iteration, and identify and explain seven key success factors of agile testing. The second title, More Agile Testing: Learning Journeys for the Whole Team, addresses crucial emerging issues, shares evolved practices, and covers key issues that delivery teams want to learn more about. It offers powerful new insights into continuous improvement, scaling agile testing across teams and the enterprise, overcoming pitfalls of automation, testing in regulated environments, integrating DevOps practices, and testing mobile/embedded and business intelligence systems. The Agile Testing Collection will help you do all this and much more. Customize agile testing processes to your needs, and successfully transition to them Organize agile teams, clarify roles, hire new testers, and quickly bring them up to speed Engage testers in agile development, and help agile team members improve their testing skills Use tests and collaborate with business experts to plan features and guide development Design automated tests for superior reliability and easier maintenance Plan “just enough,” balancing small increments with larger feature sets and the entire system Test to identify and mitigate risks, and prevent future defects Perform exploratory testing using personas, tours, and test charters with session- and thread-based techniques Help testers, developers, and operations experts collaborate on shortening feedback cycles with continuous integration and delivery Both guides in this collection are thoroughly grounded in the authors’ extensive experience, and supported by examples from actual projects. Now, with both books integrated into a single, easily searchable, and cross-linked eBook, you can learn from their experience even more easily.
Posted in Computers

ATDD by Example

A Practical Guide to Acceptance Test-Driven Development

Author: Markus Gärtner

Publisher: Addison-Wesley

ISBN: 0132763249

Category: Computers

Page: 240

View: 8218

With Acceptance Test-Driven Development (ATDD), business customers, testers, and developers can collaborate to produce testable requirements that help them build higher quality software more rapidly. However, ATDD is still widely misunderstood by many practitioners. ATDD by Example is the first practical, entry-level, hands-on guide to implementing and successfully applying it. ATDD pioneer Markus Gärtner walks readers step by step through deriving the right systems from business users, and then implementing fully automated, functional tests that accurately reflect business requirements, are intelligible to stakeholders, and promote more effective development. Through two end-to-end case studies, Gärtner demonstrates how ATDD can be applied using diverse frameworks and languages. Each case study is accompanied by an extensive set of artifacts, including test automation classes, step definitions, and full sample implementations. These realistic examples illuminate ATDD’s fundamental principles, show how ATDD fits into the broader development process, highlight tips from Gärtner’s extensive experience, and identify crucial pitfalls to avoid. Readers will learn to Master the thought processes associated with successful ATDD implementation Use ATDD with Cucumber to describe software in ways businesspeople can understand Test web pages using ATDD tools Bring ATDD to Java with the FitNesse wiki-based acceptance test framework Use examples more effectively in Behavior-Driven Development (BDD) Specify software collaboratively through innovative workshops Implement more user-friendly and collaborative test automation Test more cleanly, listen to test results, and refactor tests for greater value If you’re a tester, analyst, developer, or project manager, this book offers a concrete foundation for achieving real benefits with ATDD now–and it will help you reap even more value as you gain experience.
Posted in Computers

Developer Testing

Building Quality into Software

Author: Alexander Tarlinder

Publisher: Addison-Wesley Professional

ISBN: 0134291085

Category: Computers

Page: 352

View: 5506

How do successful agile teams deliver bug-free, maintainable software—iteration after iteration? The answer is: By seamlessly combining development and testing. On such teams, the developers write testable code that enables them to verify it using various types of automated tests. This approach keeps regressions at bay and prevents “testing crunches”—which otherwise may occur near the end of an iteration—from ever happening. Writing testable code, however, is often difficult, because it requires knowledge and skills that cut across multiple disciplines. In Developer Testing, leading test expert and mentor Alexander Tarlinder presents concise, focused guidance for making new and legacy code far more testable. Tarlinder helps you answer questions like: When have I tested this enough? How many tests do I need to write? What should my tests verify? You’ll learn how to design for testability and utilize techniques like refactoring, dependency breaking, unit testing, data-driven testing, and test-driven development to achieve the highest possible confidence in your software. Through practical examples in Java, C#, Groovy, and Ruby, you’ll discover what works—and what doesn’t. You can quickly begin using Tarlinder’s technology-agnostic insights with most languages and toolsets while not getting buried in specialist details. The author helps you adapt your current programming style for testability, make a testing mindset “second nature,” improve your code, and enrich your day-to-day experience as a software professional. With this guide, you will Understand the discipline and vocabulary of testing from the developer’s standpoint Base developer tests on well-established testing techniques and best practices Recognize code constructs that impact testability Effectively name, organize, and execute unit tests Master the essentials of classic and “mockist-style” TDD Leverage test doubles with or without mocking frameworks Capture the benefits of programming by contract, even without runtime support for contracts Take control of dependencies between classes, components, layers, and tiers Handle combinatorial explosions of test cases, or scenarios requiring many similar tests Manage code duplication when it can’t be eliminated Actively maintain and improve your test suites Perform more advanced tests at the integration, system, and end-to-end levels Develop an understanding for how the organizational context influences quality assurance Establish well-balanced and effective testing strategies suitable for agile teams
Posted in Computers

Testing Extreme Programming

Author: Lisa Crispin,Tip House

Publisher: Addison-Wesley Professional

ISBN: 9780321113559

Category: Computers

Page: 306

View: 2564

Testing is a cornerstone of XP, as tests are written for every piece of code before it is programmed. This workbook helps testers learn XP, and XP devotees learn testing. This new book defines how an XP tester can optimally contribute to a project, including what testers should do, when they should do it, and how they should do it.
Posted in Computers

Explore It!

Reduce Risk and Increase Confidence with Exploratory Testing

Author: Elisabeth Hendrickson

Publisher: Pragmatic Bookshelf

ISBN: 1680503502

Category: Computers

Page: 160

View: 6750

Uncover surprises, risks, and potentially serious bugs with exploratory testing. Rather than designing all tests in advance, explorers design and execute small, rapid experiments, using what they learned from the last little experiment to inform the next. Learn essential skills of a master explorer, including how to analyze software to discover key points of vulnerability, how to design experiments on the fly, how to hone your observation skills, and how to focus your efforts. Software is full of surprises. No matter how careful or skilled you are, when you create software it can behave differently than you intended. Exploratory testing mitigates those risks. Part 1 introduces the core, essential skills of a master explorer. You'll learn to craft charters to guide your exploration, to observe what's really happening (hint: it's harder than it sounds), to identify interesting variations, and to determine what expected behavior should be when exercising software in unexpected ways. Part 2 builds on that foundation. You'll learn how to explore by varying interactions, sequences, data, timing, and configurations. Along the way you'll see how to incorporate analysis techniques like state modeling, data modeling, and defining context diagrams into your explorer's arsenal. Part 3 brings the techniques back into the context of a software project. You'll apply the skills and techniques in a variety of contexts and integrate exploration into the development cycle from the very beginning. You can apply the techniques in this book to any kind of software. Whether you work on embedded systems, Web applications, desktop applications, APIs, or something else, you'll find this book contains a wealth of concrete and practical advice about exploring your software to discover its capabilities, limitations, and risks.
Posted in Computers

Exploratory Software Testing

Tips, Tricks, Tours, and Techniques to Guide Test Design

Author: James A. Whittaker

Publisher: Pearson Education

ISBN: 9780321647856

Category: Computers

Page: 256

View: 9652

How to Find and Fix the Killer Software Bugs that Evade Conventional Testing In Exploratory Software Testing, renowned software testing expert James Whittaker reveals the real causes of today’s most serious, well-hidden software bugs--and introduces powerful new “exploratory” techniques for finding and correcting them. Drawing on nearly two decades of experience working at the cutting edge of testing with Google, Microsoft, and other top software organizations, Whittaker introduces innovative new processes for manual testing that are repeatable, prescriptive, teachable, and extremely effective. Whittaker defines both in-the-small techniques for individual testers and in-the-large techniques to supercharge test teams. He also introduces a hybrid strategy for injecting exploratory concepts into traditional scripted testing. You’ll learn when to use each, and how to use them all successfully. Concise, entertaining, and actionable, this book introduces robust techniques that have been used extensively by real testers on shipping software, illuminating their actual experiences with these techniques, and the results they’ve achieved. Writing for testers, QA specialists, developers, program managers, and architects alike, Whittaker answers crucial questions such as: • Why do some bugs remain invisible to automated testing--and how can I uncover them? • What techniques will help me consistently discover and eliminate “show stopper” bugs? • How do I make manual testing more effective--and less boring and unpleasant? • What’s the most effective high-level test strategy for each project? • Which inputs should I test when I can’t test them all? • Which test cases will provide the best feature coverage? • How can I get better results by combining exploratory testing with traditional script or scenario-based testing? • How do I reflect feedback from the development process, such as code changes?
Posted in Computers

Experiences of Test Automation

Case Studies of Software Test Automation

Author: Dorothy Graham,Mark Fewster

Publisher: Addison-Wesley Professional

ISBN: 0321754069

Category: Computers

Page: 617

View: 1261

A unique book that consists entirely of test automation case studies from a variety of domains - from the top names in the field * *Proven advice to empower development organizations to save time by mirroring others' experiences and save money by avoiding others' mistakes. *Insightful case studies from a wide variety of domains, including aerospace, pharmaceuticals, insurance, technology, and telecommunications. *Focuses on the basic issues, rather then technology trends, to give the book a long shelf life. The practice of test automation is becoming more and more popular, but many organizations are not yet experiencing success with it. This book unveils the secrets of how automation has been made to work in reality. The knowledge gained by reading this book can save months or years of effort in automating software testing by helping organizations avoid expensive mistakes and take advantage of proven ideas. By its nature, this book shows the current state of software test automation practice. The authors aim to keep the contributions focused on those things that are more universal (e.g. people issues, return on investment, etc.) and to minimize detailed technical content where this does not impede the process of learning valuable lessons, in order to give the book as long a shelf life as possible. Software practitioners always enjoy reading about what happened to others. For example, at conferences, case study presentations are usually very well attended. The authors/editors have gathered together a collection of experiences from a cross-section of industries and countries, both success stories and failures, in both agile and traditional development. In addition to the case studies, the authors/editors comment on issues raised in these stories, and also include a chapter summarizing good practices and common pitfalls.
Posted in Computers

Scrum Shortcuts without Cutting Corners

Agile Tactics, Tools, & Tips

Author: Ilan Goldstein

Publisher: Addison-Wesley

ISBN: 0133005232

Category: Computers

Page: 208

View: 3985

Practical, Step-by-Step Scrum Techniques for Improving Processes, Actions, and Outcomes The widespread adoption and success of Scrum can be attributed in large part to its perceived intuitiveness and simplicity. But when new Scrum practitioners attempt to apply Scrum theory and high-level approaches in actual projects, they often find it surprisingly difficult. In Scrum Shortcuts without Cutting Corners, Scrum expert Ilan Goldstein helps you translate the Scrum framework into reality to meet the Scrum challenges your formal training never warned you about. Drawing on his extensive agile experience in a wide range of projects and environments, Goldstein presents thirty proven, flexible shortcuts for optimizing Scrum processes, actions, and outcomes. Each shortcut walks you through applying a Scrum approach to achieve a tangible output. These easy-to-digest, actionable patterns address a broad range of topics including getting started, quality and metrics, team members and roles, managing stakeholders, estimation, continuous improvement and much more. Whatever your role, Scrum Shortcuts without Cutting Corners will help you take your Scrum skills to the next level and achieve better results in any project you participate in.
Posted in Computers

How Google Tests Software

Author: James A. Whittaker,Jason Arbon,Jeff Carollo

Publisher: Addison-Wesley

ISBN: 0132851555

Category: Computers

Page: 272

View: 7763

2012 Jolt Award finalist! Pioneering the Future of Software Test Do you need to get it right, too? Then, learn from Google. Legendary testing expert James Whittaker, until recently a Google testing leader, and two top Google experts reveal exactly how Google tests software, offering brand-new best practices you can use even if you’re not quite Google’s size…yet! Breakthrough Techniques You Can Actually Use Discover 100% practical, amazingly scalable techniques for analyzing risk and planning tests…thinking like real users…implementing exploratory, black box, white box, and acceptance testing…getting usable feedback…tracking issues…choosing and creating tools…testing “Docs & Mocks,” interfaces, classes, modules, libraries, binaries, services, and infrastructure…reviewing code and refactoring…using test hooks, presubmit scripts, queues, continuous builds, and more. With these techniques, you can transform testing from a bottleneck into an accelerator–and make your whole organization more productive!
Posted in Computers

Implementing Automated Software Testing

How to Save Time and Lower Costs While Raising Quality

Author: Elfriede Dustin,Thom Garrett,Bernie Gauf

Publisher: Pearson Education

ISBN: 9780321619594

Category: Computers

Page: 368

View: 7256

“This book fills a huge gap in our knowledge of software testing. It does an excellent job describing how test automation differs from other test activities, and clearly lays out what kind of skills and knowledge are needed to automate tests. The book is essential reading for students of testing and a bible for practitioners.” –Jeff Offutt, Professor of Software Engineering, George Mason University “This new book naturally expands upon its predecessor, Automated Software Testing, and is the perfect reference for software practitioners applying automated software testing to their development efforts. Mandatory reading for software testing professionals!” –Jeff Rashka, PMP, Coauthor of Automated Software Testing and Quality Web Systems Testing accounts for an increasingly large percentage of the time and cost of new software development. Using automated software testing (AST), developers and software testers can optimize the software testing lifecycle and thus reduce cost. As technologies and development grow increasingly complex, AST becomes even more indispensable. This book builds on some of the proven practices and the automated testing lifecycle methodology (ATLM) described in Automated Software Testing and provides a renewed practical, start-to-finish guide to implementing AST successfully. In Implementing Automated Software Testing, three leading experts explain AST in detail, systematically reviewing its components, capabilities, and limitations. Drawing on their experience deploying AST in both defense and commercial industry, they walk you through the entire implementation process–identifying best practices, crucial success factors, and key pitfalls along with solutions for avoiding them. You will learn how to: Make a realistic business case for AST, and use it to drive your initiative Clarify your testing requirements and develop an automation strategy that reflects them Build efficient test environments and choose the right automation tools and techniques for your environment Use proven metrics to continuously track your progress and adjust accordingly Whether you’re a test professional, QA specialist, project manager, or developer, this book can help you bring unprecedented efficiency to testing–and then use AST to improve your entire development lifecycle.
Posted in Computers

Management 3.0

Leading Agile Developers, Developing Agile Leaders

Author: Jurgen Appelo

Publisher: Pearson Education

ISBN: 0321712471

Category: Business & Economics

Page: 413

View: 863

How software practitioners can become great Agile leaders: simple rules from real-world practice * *Succeed with Agile by mastering eight crucial leadership skills: activating people, empowering teams, aligning results, organizing structure, enforcing discipline, manipulating context, acquiring knowledge, and measuring performance. *Work more effectively with knowledge workers, while managing risk, uncertainty, and change. *The newest book in Mike Cohn's best-selling Signature Series. In Management 3.0, top Agile manager Jurgen Appelo shows managers how to lead Agile adoption and Agile projects more effectively, while also helping their colleagues develop as leaders in Agile environments. Appelo combines the 'what,' 'why,' and 'how' of agile leadership, presenting background, examples, and powerful, proven techniques. Appelo identifies the eight most crucial agile leadership skills, explaining in detail why they matter and how to develop them - both in yourself and in your colleagues. You'll discover powerful ways to activate people, empower teams, align results, organize structure, enforce discipline, manipulate context, acquire knowledge, and measure performance. Management 3.0 will help aspiring managers and leaders: * *Define their teams' boundaries and constraints, so they can self-organize more effectively. *Anticipate issues teams won't or can't resolve on their own. *Give teams the feed and caring they need, and let them grow on their own. *Sow the seeds for a culture of craftsmanship. *Successfully manage risks and uncertainty in fast-changing projects and environments.
Posted in Business & Economics

Lessons Learned in Software Testing

A Context-Driven Approach

Author: Cem Kaner,James Bach,Bret Pettichord

Publisher: John Wiley & Sons

ISBN: 1118080556

Category: Computers

Page: 320

View: 3883

Decades of software testing experience condensed into the most important lessons learned. The world's leading software testing experts lend you their wisdom and years of experience to help you avoid the most common mistakes in testing software. Each lesson is an assertion related to software testing, followed by an explanation or example that shows you the how, when, and why of the testing lesson. More than just tips, tricks, and pitfalls to avoid, Lessons Learned in Software Testing speeds you through the critical testing phase of the software development project without the extensive trial and error it normally takes to do so. The ultimate resource for software testers and developers at every level of expertise, this guidebook features: * Over 200 lessons gleaned from over 30 years of combined testing experience * Tips, tricks, and common pitfalls to avoid by simply reading the book rather than finding out the hard way * Lessons for all key topic areas, including test design, test management, testing strategies, and bug reporting * Explanations and examples of each testing trouble spot help illustrate each lesson's assertion
Posted in Computers

Testing in Scrum

A Guide for Software Quality Assurance in the Agile World

Author: Tilo Linz

Publisher: Rocky Nook, Inc.

ISBN: 1492001538

Category: Computers

Page: 240

View: 5477

These days, more and more software development projects are being carried out using agile methods like Scrum. Agile software development promises higher software quality, a shorter time to market, and improved focus on customer needs. However, the transition to working within an agile methodology is not easy. Familiar processes and procedures change drastically. Software testing and software quality assurance have a crucial role in ensuring that a software development team, department, or company successfully implements long-term agile development methods and benefits from this framework. This book discusses agile methodology from the perspective of software testing and software quality assurance management. Software development managers, project managers, and quality assurance managers will obtain tips and tricks on how to organize testing and assure quality so that agile projects maintain their impact. Professional certified testers and software quality assurance experts will learn how to work successfully within agile software teams and how best to integrate their expertise. Topics include: Agile methodology and classic process models How to plan an agile project Unit tests and test first approach Integration testing and continuous integration System testing and test nonstop Quality management and quality assurance Also included are five case studies from the manufacturing, online-trade, and software industry as well as test exercises for self-assessment. This book covers the new ISTQB Syllabus for Agile Software Testing and is a relevant resource for all students and trainees worldwide who plan to undertake this ISTQB certification.
Posted in Computers

Continuous Integration

Improving Software Quality and Reducing Risk

Author: Paul M. Duvall,Steve Matyas,Andrew Glover

Publisher: Pearson Education

ISBN: 0321630149

Category: Computers

Page: 336

View: 3438

For any software developer who has spent days in “integration hell,” cobbling together myriad software components, Continuous Integration: Improving Software Quality and Reducing Risk illustrates how to transform integration from a necessary evil into an everyday part of the development process. The key, as the authors show, is to integrate regularly and often using continuous integration (CI) practices and techniques. The authors first examine the concept of CI and its practices from the ground up and then move on to explore other effective processes performed by CI systems, such as database integration, testing, inspection, deployment, and feedback. Through more than forty CI-related practices using application examples in different languages, readers learn that CI leads to more rapid software development, produces deployable software at every step in the development lifecycle, and reduces the time between defect introduction and detection, saving time and lowering costs. With successful implementation of CI, developers reduce risks and repetitive manual processes, and teams receive better project visibility. The book covers How to make integration a “non-event” on your software development projects How to reduce the amount of repetitive processes you perform when building your software Practices and techniques for using CI effectively with your teams Reducing the risks of late defect discovery, low-quality software, lack of visibility, and lack of deployable software Assessments of different CI servers and related tools on the market The book’s companion Web site, www.integratebutton.com, provides updates and code examples.
Posted in Computers

How to Break Web Software

Functional and Security Testing of Web Applications and Web Services

Author: Mike Andrews,James A. Whittaker

Publisher: Addison-Wesley Professional

ISBN: 9780321657510

Category: Computers

Page: 240

View: 6367

Rigorously test and improve the security of all your Web software! It’s as certain as death and taxes: hackers will mercilessly attack your Web sites, applications, and services. If you’re vulnerable, you’d better discover these attacks yourself, before the black hats do. Now, there’s a definitive, hands-on guide to security-testing any Web-based software: How to Break Web Software. In this book, two renowned experts address every category of Web software exploit: attacks on clients, servers, state, user inputs, and more. You’ll master powerful attack tools and techniques as you uncover dozens of crucial, widely exploited flaws in Web architecture and coding. The authors reveal where to look for potential threats and attack vectors, how to rigorously test for each of them, and how to mitigate the problems you find. Coverage includes · Client vulnerabilities, including attacks on client-side validation · State-based attacks: hidden fields, CGI parameters, cookie poisoning, URL jumping, and session hijacking · Attacks on user-supplied inputs: cross-site scripting, SQL injection, and directory traversal · Language- and technology-based attacks: buffer overflows, canonicalization, and NULL string attacks · Server attacks: SQL Injection with stored procedures, command injection, and server fingerprinting · Cryptography, privacy, and attacks on Web services Your Web software is mission-critical–it can’t be compromised. Whether you’re a developer, tester, QA specialist, or IT manager, this book will help you protect that software–systematically.
Posted in Computers

Agile Estimating and Planning

Author: Mike Cohn

Publisher: Pearson Education

ISBN: 9780132703109

Category: Computers

Page: 368

View: 9458

Agile Estimating and Planning is the definitive, practical guide to estimating and planning agile projects. In this book, Agile Alliance cofounder Mike Cohn discusses the philosophy of agile estimating and planning and shows you exactly how to get the job done, with real-world examples and case studies. Concepts are clearly illustrated and readers are guided, step by step, toward how to answer the following questions: What will we build? How big will it be? When must it be done? How much can I really complete by then? You will first learn what makes a good plan-and then what makes it agile. Using the techniques in Agile Estimating and Planning , you can stay agile from start to finish, saving time, conserving resources, and accomplishing more. Highlights include: Why conventional prescriptive planning fails and why agile planning works How to estimate feature size using story points and ideal days–and when to use each How and when to re-estimate How to prioritize features using both financial and nonfinancial approaches How to split large features into smaller, more manageable ones How to plan iterations and predict your team's initial rate of progress How to schedule projects that have unusually high uncertainty or schedule-related risk How to estimate projects that will be worked on by multiple teams Agile Estimating and Planning supports any agile, semiagile, or iterative process, including Scrum, XP, Feature-Driven Development, Crystal, Adaptive Software Development, DSDM, Unified Process, and many more. It will be an indispensable resource for every development manager, team leader, and team member.
Posted in Computers

How We Test Software at Microsoft

Author: Alan Page,Ken Johnston,Bj Rollison

Publisher: Microsoft Press

ISBN: 0735638314

Category: Computers

Page: 448

View: 4872

It may surprise you to learn that Microsoft employs as many software testers as developers. Less surprising is the emphasis the company places on the testing discipline—and its role in managing quality across a diverse, 150+ product portfolio. This book—written by three of Microsoft’s most prominent test professionals—shares the best practices, tools, and systems used by the company’s 9,000-strong corps of testers. Learn how your colleagues at Microsoft design and manage testing, their approach to training and career development, and what challenges they see ahead. Most important, you’ll get practical insights you can apply for better results in your organization. Discover how to: Design effective tests and run them throughout the product lifecycle Minimize cost and risk with functional tests, and know when to apply structural techniques Measure code complexity to identify bugs and potential maintenance issues Use models to generate test cases, surface unexpected application behavior, and manage risk Know when to employ automated tests, design them for long-term use, and plug into an automation infrastructure Review the hallmarks of great testers—and the tools they use to run tests, probe systems, and track progress efficiently Explore the challenges of testing services vs. shrink-wrapped software
Posted in Computers