SOAPSonar is a software testing and diagnostics tool for SOAP, XML and REST based Web Services. The core focus is on functional, performance, interoperability, and security testing of service endpoints by performing client simulation and automated generation of client messages. Service and API Testing. HTML, XML, SOAP, REST, and JSON. Test over HTTP/s FTP/s, SFTP, IBM MQ, Tibco EMS, Weblogic JMS. Comprehensive standards support for OASIS and W3C standards.
You voted ‘up’
HTTP Test Tool is a script based tool for testing and benchmarking web applications, web servers, proxy servers and web browsers. httest can emulate clients and servers even in the same test script. Advanced HTTP protocol handling, including ne-grained timeout handling, request and response validation, Simulating clients and servers, including startup and shutdown of server daemons. This allows creating mock-ups of back-end systems in more complex test situations
Execution of external command line tools, using their output as a request or response data, or for validation purposes.
CodeSonar has been proven to provide the deepest static analysis, finding more critical defects than other static analysis tools on the market. CodeSonar has performed best on several static analysis tool benchmarks in finding static memory, resource management, concurrency, and other defects.
By analyzing both source code and binaries, CodeSonar enables teams to analyze complete applications, enabling you to take control of your software supply chain and eliminate the most costly and hard-to-find defects early in the application development lifecycle.
Wireshark is a free and open-source packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education. Originally named Ethereal, the project was renamed Wireshark. A network packet analyzer will try to capture network packets and tries to display that packet data as detailed as possible. It is a measuring device used to examine what’s going on inside a network cable at a microscopic level. Wireshark is cross-platform, using the GTK+ widget toolkit in current releases, and Qt in the development version, to implement its user interface, and using pcap to capture packets; it runs on Linux, OS X, BSD, Solaris, some other Unix-like operating systems, and Microsoft Windows.
Fiddler is an HTTP debugging proxy server application. The Fiddler tool helps to debug web applications by capturing network traffic between the Internet and test computers. The tool enables to inspect incoming and outgoing data to monitor and modify requests and responses before the browser receives them. It also includes an event-based scripting subsystem, which can be extended by using any .NET Framework language. Fiddler and the HTTP replay options can help to troubleshoot client-side issues with web applications by making an offline copy of the test site.
TimeShiftX is a date and time simulation software that allows to "time travel" servers and software applications into the future or past to temporal test all date and time sensitive functionality and code such as end of year/month, daylight savings, leap year, billing, rates, policies, etc. TimeShiftX allows future date testing inside Active Directory/Kerberos environments and enables you to “time travel” without any code changes, manual work, or server isolation.
Parasoft SOAtest helps QA teams ensure secure, reliable, compliant business applications with an intuitive interface to create, maintain and execute end-to-end testing scenarios. It was built from the ground up to reduce the complexities inherent in complex, distributed applications. Automate complete end-to-end testing for business and security-critical transactions. Parasoft SOAtest is an enterprise-grade solution for API testing and API integrity. Thoroughly test composite applications with robust support for REST and web services, plus an industry-leading 120+ protocols/message types.Update Tool Summary HERE
Binary SAST analyzes binary code to create a detailed model of the application’s data and control paths. The model is then searched for all paths through the application that represent a potential weakness. Also known as “white-box” testing, our patented binary SAST technology finds critical vulnerabilities by performing a deep analysis of your code — including third-party components — without requiring an upload of your source code. SAST technology identifies critical vulnerabilities such as SQL injection, cross-site scripting (XSS), buffer overflows, unhandled error conditions and potential back-doors. It classifies and prioritizes the vulnerabilities using standard NIST severity levels.
ImmuniWeb Web Penetration Testing. ImmuniWeb is a vulnerability scanning tool, web application security and penetration testing service from High-Tech Bridge. It combines managed vulnerability scanning with manual penetration testing. ImmuniWeb vulnerability detection technology is based on the unique concept of hybrid assessment in real-time: automated vulnerability scanning platform, based on machine-learning, is supervised and managed by the team of professional penetration testers that also conduct manual security testing in parallel. Hybrid technology detects the vulnerabilities, guarantees zero false-positives, provides personalized solutions in the report for each security flaw, and offers automating many complicated processes that usually require human intervention and time.
Firing Range is a test bed for web application security scanners, providing synthetic, wide coverage for an array of vulnerabilities. Firing Range was developed by Google in the hopes of building a test ground for automated scanners. Firing Range doesn’t focus on creating realistic-looking testbeds for human testers. Instead, the tool uses automation to exhaustively enumerate the contexts and the attack vectors that an application might exhibit. It is built entirely on Google technologies like Chrome and Google Cloud Platform, with support for the latest HTML5 features, a low false positive rate, and ease of use in mind.
Update Tool Summary HERE
HP Fortify Static Code Analyzer helps verify that the software is trustworthy, reduce costs, increase productivity and implement secure coding best practices. Static Code Analyzer automates all aspects of successful SSA program, scans source code, identifies root causes of software security vulnerabilities and correlates and prioritizes results—giving line–of–code guidance for closing gaps in the security. To verify that the most serious issues are addressed first, it correlates and prioritizes results to deliver an accurate, risk–ranked list of issues.
AppVerify is a unique solution for automated regression testing. With AppVerify, you can test the functionality of any application or website in any environment. This powerful tool makes it easy to create a list of Test cases, allowing you to re-execute your Test Plans as often as you like, to verify that modifications in the application or the environment have not caused any unintended adverse side effects and that the system still meets its requirements. Application performance and response time monitoring for Citrix, PeopleSoft, Windows, client-server, Oracle, Siebel, SAP, web, custom apps and more.
Testlab provides a complete browser-based quality management suite for application lifecycle management: designing the application, service or a product, for verifying that the end result meets the needs by testing and tracking and reporting issues and progress of your testing. As a product, Testlab is process agnostic and adapts to the way of working let it be based on agile, V-model or some other development process. With a step oriented paradigm, file attachments and change history designing and keeping test cases up to date is easy.
Parasoft Concerto is a complete software development management platform that ensures quality software can be produced consistently and efficiently–in any language.
By integrating policy-driven project management with Parasoft Test's quality lifecycle management as well as Parasoft Virtualize's dev/test environment management, Parasoft Concerto ensures predictable project outcomes.
Klocwork helps developers create more secure and reliable software. Klocwork puts static code analysis at the desktop, identifying critical safety, reliability, and coding standards issues in front of developers' eyes - well before check in. Unlike other static code analysis tools, Klocwork integrates seamlessly into desktop IDEs and into the team's natural workflow. Mirroring how code is developed, Klocwork prevents defects and finds vulnerabilities on-the-fly, as code is being written.
Monkop is the first Android Tuning Advisor that provides unique data insights about performance and security over a large device lab containing representative brands, OS versions, screen sizes, and configurations. Developers and Testers use it effortlessly by uploading a new app (.apk) and then they simply wait for the results to be sent straight to their inbox. Throughout the process, Monkop measures (with negligible overhead) each indicator obtaining accurate information about performance, vulnerabilities and behavior to be analyzed by Monkop’s tuning engine.
View MANUFACTURERS Wallboard
Theme by Danetsoft and Danang Probo Sayekti