The Test Therapist

Performance & Security Testing Blog

  • Home
  • How-To
  • By Example
  • About me
  • Contact
  • February 12, 2023

    Things not to do in performance testing – EP02

    Things not to do in performance testing – EP02

    Don’t do this ✋🏻 In this second episode i will try to mention some other practices i have noticed or did it myself in the past , that is not recommended. 1) Don’t assume requirements , get a confirmation first It happens sometimes that we don’t have a strict requirements and at the same time…

  • September 23, 2022

    Things not to do in performance testing – EP01

    Things not to do in performance testing – EP01

    Don’t do this ✋🏻 , but the important question is why? In this article and may be a series of articles , i will try to mention some practices i have noticed or did it myself in the past , that is not recommended. 1) Don’t execute tests over VPN VPN is Virtual Private Network…

  • September 11, 2022

    Convert Postman Collection to Apache JMeter (JMX)

    Convert Postman Collection to Apache JMeter (JMX)

    Hey! , i know that you had thoughts about it before , so am i. What if i want to move my API collection to JMeter to start a performance test run. Should i do it manually , or use the JMeter “Test Script Recorder”. i am here to offer two solution , but in…

  • August 16, 2022

    [DAST] Dynamic Application Security Testing , Tools and examples

    [DAST] Dynamic Application Security Testing , Tools and examples

    DAST stands for “Dynamic Application Security Testing” , it means analyzing a web application through the front-end to find vulnerabilities through simulated attacks. This type of approach evaluates the application from the “outside in” by attacking an application like a malicious user would. In this kind of testing you can try attacks like SQL injection…

  • August 3, 2022

    GraphQL Performance Testing With Apache JMeter

    GraphQL Performance Testing With Apache JMeter

    GraphQL is a query language for APIs and a runtime for fulfilling those queries with your existing data. GraphQL provides a complete and understandable description of the data in your API, gives clients the power to ask for exactly what they need and nothing more, makes it easier to evolve APIs over time, and enables…

  • May 30, 2022

    Mobile App Security Testing – Static Analysis Overview

    Mobile App Security Testing – Static Analysis Overview

    Introduction The mobile industry is booming like never before. This has created a number of types of mobile devices, mobile OS. The mobile boom is not without its risks. Developer generally creates application from a “functionality first” perspective, but with security as a low priority. This is an unfortunate reality. In fact, using mobile devices…

  • May 24, 2022

    Why you should execute your performance tests gradually?

    Why you should execute your performance tests gradually?

    Let’s assume that we have a planned performance testing run with 10,000 users. In this article I will discuss with you why we should start our execution gradually , from my point of view you should not start the run with the mentioned number of users , 10,000 users couldn’t be the start , for…

  • May 5, 2022

    OWASP ZAP – add-ons that will enrich your discovery

    OWASP ZAP – add-ons that will enrich your discovery

    In this article i will refer to number of add-ons that i think may help enrich the vulnerability discovery and also give a clear understanding about the system under test. First of all what is OWASP ZAP? Zap is a famous open source automated pen testing tool , created and maintained by the OWASP community.…

  • February 13, 2022

    API Security Testing With Postman and OWASP Zap

    API Security Testing With Postman and OWASP Zap

    Most of the content around API testing is about functional testing or recently about API automation testing , so what about Security Testing? We’re going to use Postman and consume our existing collections. The idea here is to send the Postman requests to OWASP Zap to be able to start automated pen-testing. Why? Sometimes we…

  • January 20, 2022

    Performance Testing background noise – What , why and how?

    Performance Testing background noise – What , why and how?

    The main goal for any Performance Test Engineer is to make the perfect simulation , because this will lead to accurate test results and that’s what we need from this kind of test. What is background noise? The idea is to record and play some users behaviors which is not meant to be measured or…

1 2 3 4
Next Page→
  • Twitter
  • LinkedIn
  • YouTube

Website Powered by WordPress.com.

  • Follow Following
    • The Test Therapist
    • Already have a WordPress.com account? Log in now.
    • The Test Therapist
    • Edit Site
    • Follow Following
    • Sign up
    • Log in
    • Report this content
    • View site in Reader
    • Manage subscriptions
    • Collapse this bar