I'm trying to test feilds in a web form. There are a few things I know that can cause weird behavior, stuff like double qoutes, single qoutes, tabs, leading whitespace, ect.
I was wondering if any awesome QA person happend to have some kind of standard 'test' string, or suite of strings that they can drop into feilds to test for proper escaping/ect. I've looked around the internet and haven't really found anything useful.
It's a Tab delimited Cronned PHP Export specifically that I'm testing, in case that is relevent. I want to be sure that garbarge characters on an input won't break the export.
Originally Posted by Bryan C. Winter
Many of what you describe falls under XSS and SQL Injection. Google some browser plugins that relate to those, there are tons out there.
This page has some links to useful tools in that space,
19 Extensions to Turn Google Chrome into Penetration Testing tool - InfoSec Resources
Try Elisabeth Hendrickson's heuristic sheet. Elisabeth is a well-known blogger and writer, her book on exploratory testing is quite popular:
There's also a wealth of information and testing cheat sheets over at OWASP. OWASP could be quickly described as an open source web security project/foundation:
ETL is again classified into four technologies
New Data warehousing