Testing Methods (Software) Flashcards

1
Q

What are the three types of system testing?

A

Black-box
White-box
Grey-box

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is Black-box testing?

A

The tester is given no information about the system or program before testing.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is White-box testing?

A

The tester is given the full details of the system or app, including the source code, diagrams, and user credentials before the test.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is Grey-box testing?

A

This is a mixture of Black-box and White-box.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Structured Exception Handling (SEH)

A

Provides control over what the application should do when faced with a runtime error.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is Input Validation and what attacks does it perform?

A

Applications verify that information received from a user matches a specific format or range of values.

Cross-Site Scripting
SQL Injection
Buffer Overflow

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How does Static Analysis run its test?

A

Source code of an application is reviewed manually or with automatic tools “without running code”.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How does Dynamic Analysis test the program?

A

Analysis and testing of a program occurs while its being executed, or run.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

When performing Fuzzing, what is injected into the input field, and what kind of errors are you looking for?

A

Injection of randomized data into a software program in order to try and get it to fail, memory leak, or find error handling issues and improper input validation.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly