Testing Framework and Apply Basic Security Controls
$10-30 USD
Pagado a la entrega
Overview:
This work will demonstrate your knowledge of creating a testing framework and using that framework to conduct some basic server and web application security controls.
Using the readings from OWASP Testing Guide as a baseline, develop a testing framework with these phases as guidelines for your organization or an organization you would like to work for in the future.
• Before development begins
• During definition and design
• During development
• During deployment
• Maintenance and operations
You will need to fill in the details for each phase. Using your newly designed test framework, apply the following security controls to the existing SDEV virtual machine (I will provide the SDEV virtual machine if you need it).
1. Fingerprint Web Server (OTG-INFO-002) (Note: use nc on the virtual machine)
2. Review webpage comments and metadata for information leakage (OTG-INFO-005). Manually review the sample HTML applications in the Apache Web Server directories
3. Test HTTP Methods (OTG-CONFIG-006) – See which HTTP methods are available on the virtual machine.
You should document the results for the tests and your testing framework in a word document. Provide screen captures and descriptions of your tests conducted. Discuss any issues found and possible mitigations.
Deliverables:
You should submit your source testing framework document along with the results testing the three security controls above. Your document should be well organized, include all references used and contain minimal spelling and grammar errors.
Nº del proyecto: #11535039
Sobre el proyecto
Adjudicado a:
This bid ask to create a testing framework which can potentially be used by a lot of software tester. I have been testing application for last 2 years and have quite a bit a knowledge about it.
8 freelancers están ofertando un promedio de $89 por este trabajo
Hi, what's your budget for this? Only $30? Regards, Sergio. -------------------------------------------
I have 9 years of testing experience which includes manual testing and automation testing on different tools.
I have been working in system development sector for 16 years. Below you can find summary of my past carrier. - Knowledge and experience in Test Automation Tools (Quick Test, Capybara, Cucumber, Ruby, Selenium-web dr Más