Web Testing

Top Selected Products and Reviews

Only 17 left in stock - order soon.
List Price: List Price:
Price: Price: & FREE Shipping. Details
You Save: You Save:
"An excellent guide to automated testing!" - by P. Michael Holland (Sweden)
Anyone who works with software development in some form should read this book. Not only does it explain what and how to test but why we shouldn't try to test everything with UI or unit tests.

The book starts with an introduction of the testing pyramid and it's levels: UI, integration and unit tests. The rest of part one goes on to break these levels down, explaining how to test at each level and the advantages and disadvantages of doing so. These explanations are interspersed with explanations of web technologies and the web in general which is great if you are unfamiliar with these things and are easy to skip if you are familiar with them. Part one ends with a great section on how to apply the test pyramid, the commonly seen inverse pyramid and how to deal with flakey tests.

Part two goes into more detail starting with a brief ... full review
"A strong introduction to a new field" - by Cem Kaner (Melbourne)
This is good book. If you test web apps, you should buy it.
Hung Nguyen and I are co-authors of another book and good friends. I am not an unbiased reviewer. On the other hand, I wouldn't write this review if I didn't believe every word of it.
Hung's book breaks new ground. It will be useful today, and I believe it will have lasting value and influence.
Once you get beyond the superficial (not unimportant, but much less difficult) issues of usability testing that dominate so many discussions of web testing, you run into the really tough problems of web application testing. Hung Nguyen's book is about those harder problems.
The web-based application runs on a wider range of platforms than any other type of program in history. It doesn't even have control over its presentation layer (the user supplies the browser and the multimedia plugins, and these applications might change any time). ... full review
Available to ship in 1-2 days.
Price: Price: & FREE Shipping. Details
"Excellent Book!" - by Michael Hixon (Herndon, VA United States)
Up to date excellent overview of some of the key Web Application Security Flaws and how to exploit them. It also covers the full scope of conducting a web application penetration test, this is an important distinction from most books I have found which merely teach how an exploit works.
Kali Linux is a great, but a lot of people are overwhelmed with the sheer number of tools it provides. For the Web Application Penetration tester this book provides a great manual for learning and organizing these tools into your process.
Usually ships within 3 days.
Price: Price: & FREE Shipping. Details
"Gus is a great teacher and is very detailed as well" - by Hudney Piquant
This book is truly practical. Gus is a great teacher and is very detailed as well. One of my favorite chapter is his break down of how to use Burp Suite. With this book I was able to implement many things for my current project at work. Thanks again Gus.
Usually ships within 3 days.
Price: Price: & FREE Shipping. Details
"I wish I had a book like this one when I started 2 years ago!" - by Jean-François Parent
This is the perfect book for someone who start with selenium using python.

All the fundamentals are very well explain. This book is the best way to get
started quickly and correctly.

The way to find and wait for elements in the DOM is very well explained.

I wish I had a book like this one when I started 2 years ago!
In Stock.
List Price: List Price:
Price: Price:
You Save: You Save:
"Very useful for web application developers" - by calvinnme
This book is about how web applications are tested with an emphasis on security. This book is aimed at web applications developers and testers, not security specialists. Developers who are responsible for writing unit tests for their components will appreciate the way that these tools can be focused on an individual page, feature, or form. Quality assurance professionals who must test whole web applications will be especially interested in the automation and development of test cases that can easily become parts of regression suites. The recipes in this book mainly use free tools, making them easy to try out and hopefully adopt.

The unfortunate problem with free tools in so many cases is lack documentation. This book fills that gap by showing you how to make good use of tools that you might have heard of that don't have good documentation on their application. Another barrier to effectively testing web applications ... full review
Only 1 left in stock - order soon.
List Price: List Price:
Price: Price:
You Save: You Save:
"A rich and well-focussed yet accessible introduction to a wide-ranging subject" - by Christos Partsenidis (Thessaloniki, Greece - www.Firewall.cx)
This is a focussed book with a single aim; to help you find and correct common vulnerabilities in web-based applications and website software.

Above all, this is a book to be used. The authors take a practical approach to each area of consideration, and the chapters are well structured to make it easy for you to get right to work.

For each area they provide an informative overview followed by discussion of the vulnerabilities including numerous code snippets, examples and screen shots. Though rich in detail the writing style keeps you engaged and the sensible structure (when to apply the attack, how to perform it and how to protect against it) makes it easy to grasp the key points.

There is no bias towards either Windows or Unix products on either the client or the server, and you won't need to be a scripting expert to put the authors' ideas into practice.

Chapter 1 ... full review
Available for download now.
List Price: List Price:
Price: Price:
You Save: You Save:
"Kali Linux - a guide for becoming a web ninja" - by Noureen
This is an excellent resource on Kali Linux. It could be one of the best resources out there. One of the authors of the book is Aamir Lakhani, who is a frequent speaker at security conferences all over the world and has appeared on Federal News Radio regarding cyber security. He goes into detail on how to use the tools in Kali Linux to develop a pen test methodology to test the security of web applications. In addition, the book can be used as a reference, since the author writes about the how the tools can be used separately. The book also contains an awesome chapter on using forensics. It is probably one of the best written guides to get introduced to network forensics.
Only 1 left in stock - order soon.
List Price: List Price:
Price: Price: & FREE Shipping
You Save: You Save:
"Excellent intro and reference to beginner/imtermediate QA." - by Stephen E. Donner (Mountain View, CA)
As a Software QA Engineer with only 2 years experience (who's just recently been transitioned into web-based application testing from a web-client background) and, might I add, an employee of the largest competitor to Lydia's parent company, I was pleasantly surprised that she was non-biased and thorough in her comparison of different browsers (though a tad brief in other areas).

Okay, enough with the background. Things this book does effectively; begins to get you thinking about security testcases (via malformed CGI/http requests, extended-char inputs, etc), but also covers a great deal broadly on automation, performance, static/dynamic HTML, and a few scattered topics such as form controls. She does seem to go overboard on character sets (both in security sections and in testing sections), though perhaps my experience in the 'real-world' at my company hasn't touched on this enough, I don't know. She does great on helping you formulate the browser matrixes, ... full review
Available for download now.
Price: Price:
"If You Sell Online Then You MUST Get This Book!" - by RoyBoy
I've got probably 2 dozen books on e-commerce / online marketing within arms reach of me as I write this review, and now all but 2 of them can be retired. This WILL become your go-to reference 'Bible' for CRO/Conversion Rate Optimization of e-commerce websites just as Perry Marshall's "80/20 Sales & Marketing" and "Ultimate Guide to Google AdWords" have become the best in their niche. These guys literally invented CRO. Their book is very well organized, clearly written and (frankly) worth it's weight in gold. I couldn't put it down. If you can't put this book to good use vastly improving your online sales performance then you should give up, because you're beyond help. These guys work for BIG, RICH corporate clients who pay them a bundle ...and now with their book the rest of us can employ those same powerful CRO strategies and tactics to do sell even ... full review
Available for download now.
List Price: List Price:
Price: Price:
You Save: You Save:
"And great that it's free too" - by B. Slater
Very helpful! And great that it's free too! Highly recommended!
Usually ships within 3 days.
List Price: List Price:
Price: Price: & FREE Shipping. Details
You Save: You Save:
"Five Stars. Fantastic resource." - by James
The Hacker Playbook 3 is a fantastic resource for those looking to step up their penetration testing game or understand how advanced adversaries think and act. From setting up your hacking environment to creating custom malware and payloads, this book shows you the tools, tips, and tricks that are being used today. The book also contains links to free labs to give you hands-on experience with the material. While this book is not necessarily for a beginner, it should be on the shelf of every professional Pen Tester. The format makes the book easy to read, and the logical order of the book makes it a great reference material.

A must-read for security professionals on both sides.
Usually ships within 3 days.
List Price: List Price:
Price: Price:
You Save: You Save:
"Too many set up steps just to use the app this book uses as an example." - by DigiKiwam (THIEF RIVER FALLS, MN, US)
I gave this 4 stars and deducted one - Alan is a great teacher but why oh why use TRACKS as an example?

This is one of the worst things you can do to learn API - unless you know someone who can set up a VM using an image of tracks, you need install Ruby, Bundler, SQL Express (or SQL Lite) then if you are behind a proxy, create a bunch of connections strings to set your proxy creds to enable ruby to download gems. Then figure out why, even with proxy's configured - you can't download bundles.
This is way too much "setup" just to learn API Testing.
Alan, please - come up with a better example. I just spend three hours trying to get bundle to install on my system behind a corporate proxy. Gave up, put your book back on the shelf and opened postman,
Usually ships within 3 days.
Price: Price: & FREE Shipping. Details
"Excellent resource for learning your way around web app assessments" - by SBSBTS
This book is great and easy to understand. Sunny does a great job of walking you through the process and making it all make sense. This is a must have for anyone that needs to understand web app security.
Available for download now.
Price: Price:
"This book has a lot of useful information not only for some one who is just ..." - by Andrew Medvedev
This book has a lot of useful information not only for some one who is just getting into the hobby but also for whose who have already faced with hacking.It is an informational guide. In this book you will look at what is hacking and how it works. The author has done an incredible awesome job in compiling and creating this book.I recommend this book to anyone looking to gain some knowledge on this subject.