Month: December 2015

What is JIRA and how does it help testers?

Posted on

What is JIRA and how does it help in testing

In addition to implementing a comprehensive software testing strategy, the businesses also need to manage the regular testing activities efficiently. Many businesses nowadays use customized tools to effectuate test management in agile environment. Atlassian has designed JIRA with features to help businesses to effectuate project management in an agile environment. At the same time, the commercial tool also makes it easier for QA professionals to track a variety of bugs and issues. There are also a number of reasons why JIRA is hugely popular among both enterprises and QA professionals.

Features that Differentiate JIRA from Other Project Management Tools

Refer Anything as an Issue

As noted earlier, JIRA helps testers to track a variety of issues and bugs. It further allows users to treat anything as an issue. For instance, the users can refer a software bug, any specific project task, a leave request form, or a helpdesk   ticket as an issue. So they can use the software to track and mange all aspects of the software testing project.

Categorize and Link Issues

JIRA further allows testers to categorize and link various issues in a flexible way. They can categorize individual issues by assigning them to a specific component or version. The labeling makes it easier for users to find issues based on their labels. Likewise, the users can establish connection between two distinct issues hosted on the same or different servers.

Clone Original Issues

JIRA allows testers to clone individual issues. So they can easily duplicate the original issue, and allow multiple users to access and manipulate a single issue simultaneously. The clone issue can also be connected with the original issue efficiently to accommodate the changes made by multiple users. The software further allows testers to differentiate the cloned issues by adding relevant information like description, summary, issue type, priority, environment, assignee and reporter.

Create Two Types of Boards

JIRA allows agile teams to create and manage issues efficiently using boards. The testers can refer to the custom boards to monitor issues from a single or multiple projects from a single place. They also have option to create two different types of boards, i.e., Scrum and Kanban. The scrum boards help users to focus on iterative and incremental chunks of work. On the other hand, kanban boards make it easier for testers to monitor the workflow and reduce work-in-progress to deliver maximum output on a continuous basis.

Use Filters, Add-ons and APIs

JIRA further effectuates agile testing project management by providing a variety of add-ons and APIs. The testers have option to customize and extend the software by downloading plug-and-play add-ons from the Atlassian Marketplace. Likewise, they can use a variety of APIs to integrate JIRA with other tools used by the agile team. At the same time, the programmers can simplify the software by writing custom filters in JIRA Query Language (JQL).

Make Data-Driven Decisions

The project managers need to monitor teams, resources and projects consistently to manage software testing process efficiently. They can use JIRA as a project management tool to create realistic roadmap for the project, while monitoring the teams, resources and project continuously. JIRA can even be used by managers to take various data-driven decisions quickly.

Generate Different Types of Reports

JIRA further helps testers to generate a wide variety of reports to facilitate decision making. The reports can also be used by various stakeholders in the project to take crucial decisions. Based on their requirements, the users have option to generate recently created issues, resolution time, resolved vs. created issues, time tracking, and user workload reports. They can even use pie charts present the information in a more appealing and readable format.

However, each enterprise has to incur additional expensed to avail these benefits of JIRA. Atlassian allows business to choose from several pricing options according to their team size and requirements. At the same time, the users also have option to host the software on their servers or in the cloud. So it becomes easier for businesses to use JIRA without spending a lot of money.


Know the Best Open Source Load Testing Tools to make use of

Posted on

Know the best open source load testing tools to make use of

As a non-functional software testing technique, load testing is conducted to assess the performance of a software application under varying load conditions. The testing helps QA professionals to  identify the maximum amount of load or pressure an application can withstand. But the testers need complete the load tests within a stipulated amount of time and controlled lab conditions to assess the performance of the application accurately under both normal and peak conditions. That is why; most testers use load testing tools to assess the performance of the application regularly and repeatedly under varying loads. They also have option to take advantage of a number of open source load testing tools to assess the performance of the software regularly without increasing project overheads.

Understanding 8 Widely Used Open Source Load Testing Tools

1) The Grinder

Despite being a popular load testing tool, The Grinder is often described as the Java load testing tool. It can be used to load test any application with a Java API. But The Grinder supports major protocols like SOAP, HTTP and REST web services. It allows testers to write test scripts in Jython or Clojure, while providing centralized script editing and distribution feature.   The users also have option to use data stored on files and databases, and generate test data on the fly. So it becomes easier for them to load test the software based on a variety of parameters.

2) JMeter

Unlike other load testing tools, JMeter is designed as a desktop application with a graphical user interface. The Java-based tool further runs on any platform that supports the programming language. It further supports major web servers and protocols including HTTP, SOAP, REST web services, MangoDB, TCP, Mail and LDAP. The testers also have option to enhance test coverage by integrating JMeter with a number of commonly used build and continuous integration (CI) tools.

3) Tsung

Tsung is designed as a distributed load testing tool. It supports most of the commonly used protocols including HTTP, SOAP, MySQL, PostgreSQL, WebDAV and LDAP. Tsung is also designed with features to assess the performance of IP based client/server applications by simulating the behaviour of a large number of users. As the testers have option to run Tsung on multiple machines, it becomes easier for them to simulate a large number of virtual users simultaneously.

4) Gatling

The cross-platform load testing tool is written in Scala. It comes with a recorder that enables testers to record all user actions and simulate all probable user actions. So it becomes easier for them load test the applications by creating many test scenarios. Gatling further allows testers to modify and customize the test scenarios according to the requirements of the project. At the same time, Gatling also helps testers to generate clear, colourful and information test reports to facilitate decision making.

5) Locust

Locust is one of the popular user load testing tools for websites and web applications. It requires testers to write all test scenarios in Python programming language. The users also have option to run Locust on single or multiple machines. So it becomes easier for them to distribute load tests over several machines, and simulate a large number of users simultaneously. Locust further makes it easier for testers to generate real-time and relevant test results by providing an extensible web-based user interface.

6) Diesel Test

DieselTest is actually designed as a regression testing tool. So it is different from other traditional regression testing tools available in the market. As it supports only keyboard and mouse driven test scripts, the scripting support provided by DieselTest is not powerful. But the testers can Playback the test scripts to assess the performance of the software by simulating behaviour of real website visitors. They also have option to generate and analyze real-time test results.

7) OpenSTA

OpenSTA is popular among testers as a flexible load testing tool. It enables testers to use and playback recorded scripts to assess the application’s performance regularly. At the same time, the testers also have option to edit the convert the recorded macro into a test script, make necessary changes to the script, and inject it as a hypertext stream. They can even use the tool to load test a variety of software applications. But the open source load testing tool looks dated as it was last updated in 2007.

8) OpenWebLoad

OpenWebLoad is one of the simple and easy-to-use load testing tools available in the market. It can be used for assessing the performance of a web application under various loads. The testers also have option to use a command line to configure and execute load tests. OpenWebLoad further allows testers to monitor the impact of load optimization in an instant and realistic way. However, DieselTest is not being updated at regular intervals like other tools.

However, it is also important for the testers to pick the right open source load testing tools according to the nature and needs of the project. In addition to focusing on key features of various load testing tools, they also need to compare the tools based on test scenario and infrastructure. They can even consider using multiple tools to assess the performance of the applications accurately under a variety of loads.

5 Reasons to Perform Security Code Review of Products

Posted on Updated on

Top reasons to perform security code review of products

With new security threats and malware emerging at frequent intervals, it has become essential for businesses to provide comprehensive security to their web applications. Most frameworks and IDEs provide a number of features to help programmers build secure applications. But the programmers still need to perform a variety of tests to ensure that the application can combat cross-site scripting (XSS) attacks, SQL injection, and similar threats successfully. Often the security of the software is impacted due to presence of insecure pieces of code in the code base.

So many testers nowadays review the source code of the product to identify the insecure pieces of code during production phase. The security code review process aims to identify the insecure piece code. Once the insecure piece of code is identified, programmers can rework on the code and eliminate the potential vulnerability that may affect the security of the software. An enterprise can further reap a number of benefits by reviewing the source code of the software at various phases of development.

5 Reasons Why Testers Must Perform Security Code Review

1) Code is reviewed by an Independent Tester

While writing code, programmers often focus on the software’s features and functionality. So they forget to include the controls required to make the application secure and inaccessible. The security code review process requires presence of two distinct roles. A programmer will be responsible for writing the piece of code, whereas another tester will review the code, identify the defects, and report the bugs to the programmer. The two professionals will coordinate with each other to ensure that the piece of code is secure and flawless.

2) Early Detection of Bugs

Many studies have highlighted that a business can save both time and cost by getting the software tested during various phases of development. The security code review process commences as soon as the programmers writes a piece of code completely. After completing coding, he will get the code reviewed by the tester, and make appropriate changes to the code according to the defects reported by the tester. So the bugs or flaws affecting the software’s security can be identified and fixed without any delay. The secure code generated during the production will help businesses to avoid additional testing time and cost.

3) Tools to Speed up Security Code Review Process  

The testers can further use a variety of tools to review the source code of an application without putting any extra time and effort. They also have option to use specialized tools carry on coding and code review at a time. For instance, they can integrate the code review tools in the IDE, and perform code writing and review simultaneously. The self-code review makes it easier for programmers to generate 100% secure code without putting any extra time and effort. The code can be further reviewed by independent testers to identify and eliminate all flaws in the code.

4) Meet Compliance Requirements

Nowadays the security features of a software application affect its popularity and profitability. So many enterprises want the software to comply with certain security standards. Certain compliances like PCI requires applications to use 100% secure code. When a business performs security code review during the development phase, it can easily meet the compliance requirements and obtain the industry certification. The code review process will further help the business to launch certified software applications within a shorter amount of time.

5) Option to Combine Human Efforts and Technology

To deliver a secure application, each business has to deploy both experienced testers and advanced tools. The security code review process enables enterprises to combine human efforts with the right technology. The testers can always use tools to review larger pieces of code quickly and effectively. The tools will highlight the possible issues that make the code insecure. At the same time, they can assess the issues highlighted by the tools manually to identify the blind-spots left unidentified by the tools. Also, they can assess each issue contextually to find out and report the real issues to the programmer.

A business can further effectuate the security code review process by accelerating the review schedules. Further, it must include secure code review in the test plan to ensure that no piece of code remain untested during the development phase. The security code review methodologies also need to be reviews periodically to protect the software from latest security threats and attacks.

6 Reasons Why We See a Rise in Mobile Apps Testing

Posted on

Top Reasons why we see a rise in mobile apps testing

The steady decline in mobile web usage has made it essential for enterprises to launch mobile applications. But a number of studies have highlighted that a large percentage of users delete mobile apps after downloading them from the app store due to their poor quality and user experience. So each business needs to explore ways to optimize the Mobile application’s functionality and performance to make it popular and profitable. Most businesses nowadays deploy seasoned QA professionals to assess the mobile app’s look, feel, functionality, performance, and user experience thoroughly. There are also a number of reasons why many businesses are making and implementing comprehensive mobile testing plans.

6 Reasons Why Most Modern Businesses Test Mobile App Thoroughly

1) Cross Platform Mobile App development

While planning mobile apps, most businesses nowadays target several popular mobile operating systems like Android, iOS and Windows Phone. There are also a number of advanced tools that enable developers to create the same application for different platforms using a single code base. But the businesses still need to ensure that the mobile app deliver quality user experience regardless of the mobile operating system. The QA professionals test the app thoroughly on each platform, and identify the flaws affecting the application’s performance.

2) Device Fragmentation

While planning a mobile app, businesses also need to target a wide variety of devices powered by the same mobile operating system. For instance, each business wants its iOS app to run on iPhone, iPad and iPod Touch. Likewise, it has to target various models of smartphones, tablets and phablets while planning Android apps. But the screen size, resolution and other hardware characteristics of individual devices differ. So the business needs to ensure that the app delivers quality user experience across many devices. The QA professionals have to assess the app’s look, feel, performance and functionality across multiple devices to make the users access the app regularly.

3) Frequent Operating System Updates

Apple, Google and Microsoft update their respective mobile operating systems at regular intervals. Each updated version of the mobile platform comes with several new features and performance improvements to deliver richer user experience. Thus, the mobile app scenario is transformed each time a mobile operating system is updated. The users further expect the mobile app to take advantage of the new features included in the most recent version of the operating system. So the testers have to assess the impact of changes made to the code to ensure that the app functions flawlessly on the latest version of the mobile platform.

4) Emphasis on Resource and Battery Consumption

The most recent version of iOS and Android enable users to identify the mobile apps that affect the device’s battery life and consume more memory resources. The features make it easier for users to identify and uninstall the resource-hungry apps. So the businesses need to ensure that their apps do not consume additional memory resources. But the amount of resources consumed by the application will vary from one device to another. So the QA professionals must monitor the application’s  performance across a variety of device to ensure that they do not consume extra battery and memory resources.

5) More Focus on UI and UX

To make a mobile app popular, each enterprise has to focus on its user interface (UI) and user experience (UX). Recently Apple enables users to accomplish tasks through 3D touch on iPhone 6 and iPad Pro. Likewise, the users also have option to use a stylus and an improved keyboard while using iPad Pro. So the businesses must create mobile UIs that take advantage of these new features. Likewise, they also need to ensure that the mobile app delivers quality UX on each device and operating system. So it becomes essential for businesses to deploy experienced testers to assess the application’s UI and UX thoroughly. The test results will also help them to launch apps with optimized UI and UX.

6) Optimizing App’s Performance in Different Environments

Unlike conventional software applications, the mobile apps are used in a wide variety of environments. For instance, a person may access the mobile apps with a number of data networks including 3G, 4G and Wi-Fi. So the testers need to assess the performance of the application with slow, fast and no internet connection. Likewise, they need to assess if the app can identify the exact location of the users and deliver more localized information. While making a mobile testing strategy, managers clearly mention the environments and conditions under which the app’s performance needs to be tested. Thus, the QA professionals can test the app’s performance under various environments and the bottlenecks affecting its performance in each environment.

The QA professionals need to perform a variety of tests to assess the quality of mobile apps accurately. That is why; most businesses invest in mobile app testing tools to get more accurate test results. Many enterprises even opt for cloud-based testing to complete all required tests within a shorter amount of time. However, they also perform certain tests manually to assess the user experience delivered by the mobile app effectively.


Automation Testing of an eCommerce Application

Posted on

eCommerce application Automation Testing

The ecommerce applications have made it easier for businesses to offer their products and services to customers residing on various regions. But the businesses have to make changes to the web store frequently to attract and engage the website visitors. Often minor changes made to a web store affect its functionality and performance hugely. That is why, most businesses use a variety of tools and frameworks to test their ecommerce applications quickly and efficiently. The test automation tools further help testers to perform the required tests repeatedly and frequently without putting extra time and effort. But each business must focus on a number of key points to automate ecommerce application testing effectively.

Best Practices for Ecommerce Application Testing Automation

Identify and Address the Key Challenges

Before automating your ecommerce application testing, you must identify and address the key challenges related to functionality, security and performance. You must check the website thoroughly to ensure that the visitors can find and buy the required products quickly. Likewise, you also need to check if the website can effectively handle a higher number of visitors and online transactions efficiently. Also, the application must allow customers to perform online transaction with utmost privacy and security. The key challenges will help you to decide the appropriate test coverage.

Figure Out Important Requirements

When you decide to automate ecommerce application testing, it becomes essential to invest both funds and resources. So you have to make a plan based on several requirements. In addition to setting up a budget for the test automation project, you need to schedule the testing efforts and define the objectives to be achieved in each test cycle. At the same time, you must define the scope of each testing to ensure that all aspects of the web store are covered. The initial planning will help you to save both time and cost in the longer run.

Identify the Tests to be Automated

The initial planning will further help you to decide the types of tests to be conducted and scope of each type of testing. But each process in an ecommerce application needs to be tested based on specific functionality, action and validation criteria. For instance, you have to test user login, search functionality and shopping cart based on different criterions. That is why, it is important to figure out requirements for testing each process, and prioritize the requirements. Based on the prioritized requirements, you can decide the tests that need to be automated.

Design the Test Automation Framework

The quality of the test automation framework will have a direct impact on the outcome of the test automation project. So you must design a comprehensive test automation framework by covering all automated tests. The framework must include the test scripts and the scenarios of various automated processes. Based on the framework, the testers can easily execute the tests, and obtain relevant results by generating test reports.

Pick the Right test Automation Tools

After designing the test automation framework, you have to pick the right test automation tools based on the type, scope and requirements of testing. As the tools selected by you will have a direct impact on the test automation project, you must choose the tools based on a number of key parameters. It is always important to compare the available tools based on key parameters like features, performance, extensibility, licensing cost, maintenance cost, and required training. You must take advantage of many open source test automation tools to automate more testing efforts without investing additional funds.

Focus on the Application’s User Experience

The popularity of each ecommerce website nowadays depends on its user experience. So each test scripts and processes must focus extensively on user experience. You must decide the tests to be performed based on the nature and types of changes made to the ecommerce application.   At the same time, the testers must repeat all tests to ensure that the changes made to the application do not affect its user experience. Likewise, they must repeat all tests to ensure that the application delivers quality experience across many devices and platforms.

On the whole, each business needs to implement a comprehensive and customized strategy to automate ecommerce application testing. However, it is also important for the business to pick the right test automation tools to check all aspects of the web store quickly and effectively.

Benefits of Cloud Based Test Management Tools

Posted on

Cloud based test management tools & Benefits

In the recent years, cloud computing has made a huge advancement in the field of World Wide Web. Since its advent, the growth of cloud computing has been in leaps and bound and by the year 2016 the cloud computing will have a market size of $ 19.5 billion approximately. With this kind of advancement in the cloud computing genre, it is quite obvious that software testing will become largely dependent on it.

Being one of the most crucial parts of the software development life cycle, software testing is always on the lookout for advancement of the process to further strengthen the procedures in order to get better software which will provide maximum customer satisfaction. This in turn has ensured the betterment of the test management tools which are being used to test the software for the glitches so as to rectify them.

  1. Cost Effective: The best part of using the cloud based test management tools is the fact that they cost much lesser than the traditional tools. You no longer need to maintain a separate hardware for your management tools which means that your depreciating cost reduces greatly. You also get to avail your test management tool whenever you need it and you get to pay for them accordingly, which means you don’t need to pay for the tools even when you are not using the same.
  2. Benefits of Virtualization: When you are using a cloud based test management tool, you get the liberty to share the same tool with various companies which in turn helps in reduction of the capital cost. With the increase in the complexity of the various tools or applications, cloud base helps in sharing of the resources which makes the testing tools much more flexible in nature and optimal usage facilities are provided this in turn makes the testing tools more efficient.
  3. More Collaboration: With the help of cloud based test management tools you can now share the data among the testing teams of various locations all around the world. This helps in collaboration of the various testing teams giving rise to more powerful testing procedures which ultimately results in foolproof software which will be favorite among the customers. You no longer need to maintain a test team at your development site as the data can easily be shared over cloud server.
  4. Testing is Quicker: Cloud based test management tools deploy a lot quicker than the traditional tools available and also, they have a very short set up time which ultimately results in saving time when it comes to the whole testing procedure. The test management tools can also be upgraded anytime and anywhere providing you with more proficient tools to work with. The testing can be started anytime and anywhere and almost immediately providing the company with an advantage in competition.
  5. Reduced IT Management Effort: When you are using cloud based test management tools, you no longer need to put a lot of effort in the installation, adding or replacing of the users, licensing, upgradation across locations, etc. This provides your IT team with ample time to focus on more vital issues related to software testing which will ensure a better testing procedure that will benefit the business in the long run by earning more profit.

These are some of the top benefits of cloud based test management tools over the traditional tools that are available in the market and in the coming years this dependency is going to be enhanced further for the betterment of the process on a whole.

Best Ways to Avoid Threats and Vulnerabilities in Your Network

Posted on Updated on

How to Avoid threats and vulnerabilities in your network

With the advancements of the technology, threats are becoming larger and more dangerous. It has become important to protect your system against threats and vulnerabilities in order to protect your information from getting into the wrong hands that can possibly take undue advantage of the same or cause harm to your system.

  1. Install Quality Antivirus: It is very important to install a professional grade software security system in order to protect the network from potential threats and vulnerabilities. These antiviruses help in protection of the system from wide range of threats unlike the free ones provided by the internet providers which often are inadequate.
  2. Install Real-Time Anti-Spyware Protection: A single antivirus often fails to provide all round protection to the system. It is important to secure your network with a business grade spyware in order to protect it from malwares and adwares.
  3. Keep Anti-Malware Applications Current: It is very important to see if the antimalware or the antivirus you are using is up to date. The database and system of these systems requires regular updating to function properly and protect your network against threats and vulnerabilities. Expiration of license should be avoided at all cost.
  4. Perform Daily Scans: Even If you have an up to date system of anti malwares, it may so happen that a particular virus or malware skips the system and infects the network you are working on. To avoid such situations, it is very important that you perform regular scans on the system.
  5. Disable Autorun: There are certain viruses that get attached to the system and install themselves thus causing threats to your network. In order to safeguard your system against such virus it is best to disable the Autorun system on your device. This will ask for your permission before installing any software to your system.
  6. Disable Image Previews in Outlook: Viruses or malwares sometimes come attached to certain image files in Outlook messages. Previewing these images will pose threats to your network. Latest Microsoft Outlook prevents previewing of image; however, an older version of the same may require manual setting for the same.
  7. Don’t click on email Links or Attachments: Clicking on random links that are attached to the e-mails often leads to exposing your network to the threats and vulnerabilities which may cause potential harm to the system. In order to avoid such threats avoid clicking links that appear on random e-mails from unknown sources.
  8. Surf Smart: link protections and browser plug-ins that come with the various business grade antiviruses should always be activated in order to protect the network from threats which are linked to various pages of the internet. It is best to avoid sharing personal info with pages that you have not manually arrived at.
  9. Use a Hardware-Based Firewall: Software based firewall often fail to protect the network against network traffics that are malicious in nature. These firewalls fail to protect the networks against threats and vulnerabilities when a third party gets involved in the system. These threats can be avoided by the use of a hardware based firewall.
  10. Deploy DNS Protection: DNS attacks are by far one of the most dangerous threats to the network at large. Compromised DNS servers will direct you to web pages and links that have the capability of affecting your system with potential viruses that will cause harm. Hence the process how your computer processes DNS should be checked and protected.

These are probably the ten most prominent ways to protect your network against threats and vulnerabilities.