Security Testing

WHITE PAPER: This white paper outlines the process for successfully integrating vulnerability scanning and remediation capabilities to ensure your organization maintains a secure environment while complying with internal and external security policies.

Posted: 07 Jan 2009 | Published: 07 Jan 2009

ASSESSMENT TOOL: This network-based scanning utility provides comprehensive visibility into the IT environment through in-depth scans and the automated discovery of all assets, both managed and unmanaged. Scan up to 25 nodes.

Posted: 11 Mar 2009 | Published: 11 Mar 2009

PRODUCT DEMO: This demo shows how IBM Rational Functional Tester can be used to create test automation scripts to validate the functionality of an SAP system. The script generation capability of Functional Tester produces a re-usable test that can be run against all subsequent builds or releases of the SAP system.

Posted: 01 Oct 2009 | Published: 01 Oct 2009

WHITE PAPER: With Oracle Applications Extension for Rational Performance you no longer have to jeopardize your business engine during an upgrade. You’ll eliminate risk, increase testing productivity, speedy delivery, and ensure the quality and scalability of your business systems.

Posted: 01 Oct 2009 | Published: 01 Oct 2009

WHITE PAPER: Read this paper to learn about Rational® Functional Tester, an object-oriented automated testing tool that tests Windows®, .Net, Java™, HTML, Siebel and SAP applications, and lets you record reliable and robust scripts that can be played back to validate new builds of a test application.

Posted: 01 Oct 2009 | Published: 01 Oct 2009

WHITE PAPER: Rapid bottleneck identification (RBI) is a new testing methodology that allows quality assurance (QA) professionals to very quickly uncover Web application performance limitations and determine the impact of those limitations on the end user experience.

Posted: 12 Oct 2009 | Published: 12 Oct 2009

EGUIDE: In this expert Pocket E-Guide you will discover the five most common Linux security challenges that are currently overlooked in many of today’s businesses. Discover the pivotal role default installations, maintenance, and system testing play and learn why it is important to test Linux-based systems for vulnerabilities periodically and consistently.

Posted: 02 Nov 2009 | Published: 02 Nov 2009

PRODUCT DEMO: The Service Availability Tool helps network technicians and administrators verify and troubleshoot network services quickly and easily. With the Service Availability Tool you can quickly verify service port status, measure response time, run TCP trace routes, and more.

Posted: 04 Nov 2009 | Published: 04 Nov 2009

WHITE PAPER: Read this paper to learn the results of a study that examined performance evaluations and comparative tests on the ESET Smart Security Business Edition package as well as other leading solutions.

Posted: 03 Sep 2009 | Published: 03 Sep 2009

WHITE PAPER: HP QAInspect delivers automated security information that QA professionals and software testers can access at any point in the application development process to identify and remediate potential security defects.

Posted: 25 Feb 2008 | Published: 25 Feb 2008

WEBCAST: Watch this webcast to view a virtual tour of CodePro AnalytiX™ to see the power of automating Java software testing throughout your Eclipse-based development project. You will also learn how to automate Java software quality and security testing from each developer’s desktop or during your nightly build.

Posted: 01 Sep 2009 | Premiered: 01 Sep 2009

EGUIDE: Read this E-Guide to learn about an alternative to traditional antimalware testing, using your perimeter network security tools. Snyder lays out a step-by-step guide to validate your own malware including where to find sample test viruses, equipment needed, and the channels to test.

Posted: 25 Nov 2009 | Published: 25 Nov 2009

PODCAST: In this podcast, virtualization expert Anil Desai talks with WhatIs.com's Alex Howard about the many ways virtualization can be used to improve software testing and development.

Posted: 04 Dec 2008 | Premiered: 04 Dec 2008

TECHNICAL ARTICLE: This report is the second part of a February 2008 study comparing the performances of leading anti-virus solutions. Each product was tested using their best possible detection settings in identical environments. The report breaks down the results into several categories including speed, false positives and on-demand detection of virus/malware.

Posted: 03 Sep 2009 | Published: 03 Sep 2009

WHITE PAPER: Read this paper to learn how your organization can install a filtering device that blocks malware from your network. McAfee's Email and Web Security appliance is recognized as an effective tool for identifying "bad" URLs.

Posted: 23 Nov 2009 | Published: 23 Nov 2009

ANALYST REPORT: Latency is an important metric that should be considered when evaluating web application delivery solutions. Through tests performed, Citrix NetScaler exhibited very low latencies and was at least 3x fast than F5 BIG-IP in almost all test scenarios.

Posted: 01 Sep 2009 | Published: 01 Sep 2009

RESOURCE CENTER: Check out this e-Kit for comprehensive information related to web application security strategies and web application security testing through SaaS. Included are several white papers, demos, and podcasts.

Posted: 03 Nov 2009 | Published: 03 Nov 2009

WHITE PAPER: This paper sets out a framework for evaluating a data center. It considers the special factors that apply to an on-demand infrastructure, many of which go well beyond the standards applicable to the average enterprise data center.

Posted: 13 Oct 2009 | Published: 13 Oct 2009

WHITE PAPER: Read this report to learn the research findings of this study, which examined the challenges of managing Test/Dev environments and the opportunity for server virtualization and cloud computing to address them. This paper includes several graphs and an in-depth discussion of the advantages of private cloud computing.

Posted: 26 Oct 2009 | Published: 26 Oct 2009

TRIAL SOFTWARE: The Endpoint Assessment Test is a free tool that scans a computer and assesses whether it is a security risk to your organization. Download it and discover the risks that your company's endpoints are hiding.

Posted: 01 May 2009 | Published: 01 May 2009

WHITE PAPER: This paper discusses a five-step best practices approach to implementing a cost-effective and timely data privacy solution. It also details a brief case study illustrating how Compuware’s combination of tools, technology, best practices and customized services can save time and money.

Posted: 20 Oct 2009 | Published: 20 Oct 2009

TRIAL SOFTWARE: Use the Sophos Threat Detection Test to quickly perform a scan and find any viruses, spyware, adware or zero-day threats that might have by-passed your existing protection.

Posted: 16 Apr 2009 | Published: 16 Apr 2009

PRODUCT REVIEW: See this product review in which LogRhythm's LR-1000-XM power log aggregation tool received BEST BUY pick in Digital Forensics by SC Magazine.

Posted: 09 Sep 2009 | Published: 09 Sep 2009

VIDEO: This video describes how organizations can effectively interpret particular requirements from regulations such as HIPAA and PCI and implications these interpretations have on compliance activities, administration, and auditors.

Posted: 11 Sep 2009 | Premiered: 11 Sep 2009

ASSESSMENT TOOL: Download Rational® AppScan® Standard Edition V7.9, previously known as Watchfire AppScan, a leading Web application security testing tool that automates vulnerability assessments and scans and tests for all common Web application vulnerabilities including SQL-injection, cross-site scripting, and buffer overflow.

Posted: 03 Nov 2009 | Published: 03 Nov 2009

EGUIDE: Outsourcing an application means your organization relinquishes some control. In this article Heather Clancy will offer seven questions that you should resolve with your provider before investing in SaaS.

Posted: 19 Nov 2009 | Published: 19 Nov 2009

WHITE PAPER: The most common approach to securing a web application involves doing a single security test, usually a Web Application Security Assessment, when a development project is completed. While this is still a requirement, this paper discusses why security needs to be incorporated earlier and throughout the software development life cycle (SDLC).

Posted: 16 Nov 2009 | Published: 16 Nov 2009

WHITE PAPER: CodePro AnalytiX provides you with the metrics you need to incorporate self-improvement and optimization into the software process. Thus, CodePro AnalytiX is a full set of tools to support your organization in its quest for sustainable high levels of software quality, security and productivity

Posted: 04 May 2009 | Published: 04 May 2009

DATA SHEET: CodePro AnalytiX is a comprehensive set of software analysis tools composed of a collection of native Eclipse plugins. It seamlessly integrates into any Eclipse-based Java desktop development environment, adding code audit, security analysis, metrics, test generation, JUnit test editing, code coverage and team collaboration functionality.

Posted: 13 Mar 2009 | Published: 13 Mar 2009

BOOK: Read this chapter from "HOWTO Secure and Audit Oracle 10g and 11g" (CRC Press, 2009) and learn how to secure Oracle by checking for weak passwords, configuring failed login policies, preventing DoS attacks with resource limits, and auditing user profiles.

Posted: 25 Nov 2009 | Published: 25 Nov 2009

SOFTWARE DOWNLOAD: Combining powerful management tools, ease of use for end users, and state-of-the-art proactive threat detection, ESET Smart Security is the most effective way to protect your business' valuable data assets while improving your compliance posture. Enjoy a FREE Trial of this fully integrated security solution.

Posted: 10 Sep 2009 | Published: 10 Sep 2009