Overview
The client is based in Australia and owns one of the IT solutions provider company which mainly deals with web-based software development. Our client was looking for a QA partner for the security testing for their web-based solutions.
The client requirements were, experts team for QA as per the IT security standards with best practices. They needed a team with good knowledge about prevalent security threats with the ability to prioritize the level of those risks and threats.
The client wanted to generate a detailed report of the security threats and issues for their developer by which they could fix their problems.
Key Challenges
- QA team need to quickly learn the new software
- Had to find the vulnerabilities
- Methods of the attacking need to get identified
The Process
- Learning web application first;
- Preparing test cases according to the web application;
- Performing Manual security testing;
- Finding the issues and then reporting it for creating an action plan;
- Once issues are fixed the system is retested;
- Making the final report.
Solution Provided
First of all, our team understands the client’s web application. Then they identify the best approaches for launching security attacks on the web application in order to test the functionality and system security.
Once initial testing is being executed, our team created a report containing the details of the issues found. After finding critical issues we prepared the action plan and defined a prior ranking to those threads and issues.
The issues and threads reports once performed are then transferred to the client’s developer for further modifications.
After the completion of the entire testing procedure, we made the final report for the client.