Topicos Recents
-
QA Sênior @ Carenet Longevity (São Paulo)
Vagas1 -
Bate-papo sobre DevOps – Grupo de mentoria Talking About Testing
Feed de Blogs e Posts1 -
[Dúvida] Jira - Plugin para Gerenciamento de Teste
Geral2 -
Indicações de empresas (in company) - Cursos
Treinamento e Eventos1 -
What is the best fuzzer (automated software testing tool) to find 0-days? Why? Quora Answer
Feed de Blogs e Posts1 -
Tarek - Load testing web services at Mozilla with Molotov | Agile Testers Conference 2018
Treinamento e Eventos1 -
Hacking JavaScript Games - Accessing private javascript variables at runtime via debugging
Feed de Blogs e Posts1 -
Talking About Testing & Patas Dadas
Feed de Blogs e Posts1 -
Agile Testers 2019 News
Geral4 -
Escreva código uma só vez
Feed de Blogs e Posts1 -
Automated tests in a CD/CI pipeline
Feed de Blogs e Posts1 -
How to Practice your JavaScript, Software Testing and Test Automation
Feed de Blogs e Posts1 -
How to Pretty Print JSON using Browser Dev Tools
Feed de Blogs e Posts1 -
How to bypass no paste controls on a web form
Feed de Blogs e Posts1 -
Quais minhas metas para 2019?
Geral8 -
AWS Online Tech Talks 2019
Feed de Blogs e Posts1 -
What does the EvilTester Patreon Contain?
Feed de Blogs e Posts1 -
Analista de Testes Mobile
Vagas1 -
Tendências para a área de Quality Assurance em 2019
Artigos e Tutoriais1 -
Software Test Engineer @ Zendesk (Copenhagem - Denmark)
Vagas3
Exploratory Testing Clean Recon Live Example
-
TLDR: clean recon - using the app to provide knowledge about the app
Using The Pulper v 1.2 I recorded a live recon session to try and create an example of note taking, model building, risk identification and next action identification.
You can repeat the exercise for yourself and see how you get on.
<a name=“more”></a>
Using The Pulper v 1.2 I performed a live recon session.
github.com/eviltester/TestingApp/releases
Video:
Reconnaissance Session
I described it as a ‘Clean’ recon. By which I mean:
- little, to no, prior planning* based purely on information provided by the app* no tool support* unstructured text file for note takingOther recon types include:
- Mental* Biased/Prompted (Mnemonic, Template, Goal, etc.)* Tool Assisted
Note Taking
The note taking makes a difference.
Plain Text allows me to write in any order, with no structure.
Mindmap enforces some structure and can lead to a physical structural model of the app. Mind-map is often good for Prompted recons.
I do other types of recons to build a rich model of the application. I do not rely on a single recon.
I tend to start with a ‘clean’ recon.
Lessons Learned and Actions Identified
I learned:
- Even a ‘read only app’ has complexity* Particularly around data oracles* Even in a recon we can spot bugs.I need to identify:
- how to compare pages of data in the app* how to compare data on different pages within the appI identified classes of tools I can use to support my testing:
- link checkers* html validatorsBut I recognise that these test the ‘syntax’ or ‘structure’ but not the semantics of the app e.g. data is rendered correctly, but is the correct data rendered?
I used version 1.2 of The Pulper from https://github.com/eviltester/TestingApp/releases
Exercise
I recommend this, as an exercise for you. Or pick any app you are working on.
You can perform a ‘clean’ recon, even on apps you know well. I programmed The Pulper, I was still able to take a fresh look at it in the recon and I gained valued by doing so.
- Download version 1.2 of The Pulper from https://github.com/eviltester/TestingApp/releases* Perform a clean recon* Reflect on your notes* What did you find?* What did you learn?* What risks did you identify?* Did you spot any bugs?* What will you do next?* What tools do you have to research?