Testing Tools for Automation

Tools Description

Unified Functional Testing

Used for functional and regression test automation of web-based and window-based applications.

Red Gate

A suite of tools used for comparing and synchronizing SQL database content, data generation, SQL scripting, and database documentation.

Load Runner

Used for web-based and desktop-based applications’ load testing and performance measurement using virtual users.

Apache JMeter™

The Apache JMeter™ is designed to load test the functional behavior and measure the performance. It was originally designed for testing Web Applications but has since expanded to other test functions.

NI Test Stand

Used for automation of test cases for regression testing of Hardware.

LabVIEW

Used for real time implementation and I/O interfacing.

Security Testing

Tools Description

Acunetix Web Vulnerability Scanner

An automated web application security testing tool that audits web applications by checking for exploitable hacking vulnerabilities.

AppScan

Appscan is a vulnerability scanner which can detect common server misconfigurations as well as vulnerabilities.

Wireshark

A network protocol analyzer.

Ratproxy

A semi-automated, web application security audit tool for detecting security-related design patterns.

BurpSuite

Burpsuite is a software platform used for Securtiy Testing of web applications, such as a proxy server, web spider, scanner, intruder, repeater, sequencer, decoder, collaborator, and extender.

Webscarab

A framework for analyzing applications that communicate using the HTTP and HTTPS protocols.

WebGoat

An interactive teaching environment for web applications’ security.

Brutus

Remote password cracker software.

JHijack

A Java fuzzing application used for numeric session hijacking and parameter enumeration.

HackerFox

A collection of Firefox add-ons which are used in web applications’ security testing.

Pen Testing

Tools Description

Metasploit

Tests multiple aspects of security with an offensive focus. Primarily a penetration testing tool, Metasploit has modules that not only exploits but also scans and audits the applications.

Nmap/Zenmap

Both of these tools are used to map the network and scan for open ports along with service enumeration and OS fingerprinting.

OpenVAS

OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.

Nessus

Nessus is a remote security scanning tool, which scans a computer and raises an alert if it discovers any vulnerability that malicious hackers could use to gain access to the computer that is connected to a network.

Nexpose

Nexpose is one of the leading vulnerability assessment tools that can identify the active services, open ports, and running applications on target machine. It detects vulnerabilities that may exist based on the attributes of the known services and applications.

Scapy

Scapy is a powerful interactive packet manipulation program. It is able to forge packets of a wide number of protocols, send them on the wire, capture them, match requests and replies, and much more.

Sulley

Sulley is a fuzzer development and fuzz testing framework consisting of multiple extensible components.

Ettercap

Ettercap is a free and open source network security tool for man-in-the-middle attacks on LAN.

Kali Linux

An advanced Pen Testing Linux distribution used for Penetration Testing, Ethical Hacking, and Network Security Assessments.

Static Code Analysis Tools

Tools Description

PC Lint

Used for verifying MISRA-C compliance.

-

Used for:

  1. Programming standards verification
  2. Programming verification
  3. Complexity analysis
  4. Full variable cross reference analysis unreachable
  5. Code reporting
  6. Static data flow analysis
  7. Information flow analysis
  8. Loop analysis
  9. Analysis of recursive procedures
  10. Procedure interface analysis
  11. Statement coverage
  12. Branch/decision coverage
  13. LCSAJ coverage
  14. MC/DC coverage
  15. Dynamic data flow coverage

Matlab

Used for PI & FUZZY controller design.

Modelsim

Used for VHDL/Verilog code simulation.

Simulink, PSPICE, MULTISIM

Used for controller, power electronics, and wind turbine system design.

AVR Studio

Used for simulation of firmware of AVR series microcontrollers.

Saleae Logic Analyzer

Easy-to-use USB Logic Analyzers can record and analyze both digital and analog signals and channels. It is able to decode protocols like SPI, I2C, Serial, 1-Wire, CAN, etc.

IAR Embedded Workbench

An IDE which additionally provides debuggers, flashers, and compilers for major embedded system microcontroller.

Configuration and Bug Tracking Tools

Tools Description

Team Foundation Server

Used for code and documentation versions and tasks management.

SVN

We use Subversion to maintain current and historical versions of files such as source code, web pages, and documentation.

Quality Center

Used for Test Management.

JIRA

Used for Issues repository.

Project Lifecycle Management

Tools Description

Microsoft Project

Used for project planning and tasks management.

Polarion ALM

Application Lifecycle Management tool is used for requirements and test cases management along with mapping of requirements to test cases and vice versa.

Playbook

Playbook is visual project management software which combines the Lean, Agile, and Theory of Constraints to enable new product development teams to accelerate the projects completion.