Abstract: A method of security testing a web application is presented. The method identifies a web application to be tested, determines potential security vulnerabilities of the web application, generates one or more security tests for testing the potential vulnerabilities, and executes the security test on the web application. The results of the security testing are then used to make the web application less vulnerable to security attacks.

Abstract: The present invention provides a method of testing Web Services as software components. The present invention provides a method by which a Web Service is located on a remote system. After the Web Service has been located, tests are generated for exercising the various methods of the Web Service. The tests are run, exercising the Web Service, and the results are made available to verify the performance of the Web Service.

Abstract: The present invention allows the user of the tool to easily and quickly determine where various types of data are to be sent during the operation of the tool. A particular type of data may be sent to one or more of a variety of devices including various text windows, the status bar, a popup message box, to one or more files, or the user may choose to ignore a particular type of data altogether. The presently disclosed method is accomplished by a software interface which permits two things to happen. First, all data targeted at the user is assigned by the user to a particular stream as opposed to being sent to a specific device. Second, the tool provides a user interface control that allows the user to determine which devices (if any) are to be connected to which streams.

Abstract: A method and computer program product for providing improved performance for software tools is presented. The method includes the steps of accumulating data during execution of the tool, examining the data, formulating recommendations on how to achieve better performance for the tool and applying the changes to the tool. The computer program product includes instructions for accumulating data during execution of the tool, examining the data, formulating recommendations on how to achieve better performance for the tool and applying the changes to the tool.

Abstract: The present invention provides data synthesis for a test sequence used to test methods of a software component. The present invention allows a wide variety of data types and forms to be synthesized in order to test the component. The present method generates parameter data and places it into a data table where each row of the table provides a single instance of that data for the method.

Abstract: A method of security testing a web application is presented. The method identifies a web application to be tested, determines potential security vulnerabilities of the web application, generates one or more security tests for testing the potential vulnerabilities, and executes the security test on the web application. The results of the security testing are then used to make the web application less vulnerable to security attacks.

Abstract: The present invention provides a method of testing Web Services as software components. The present invention provides a method by which a Web Service is located on a remote system. After the Web Service has been located, tests are generated for exercising the various methods of the Web Service. The tests are run, exercising the Web Service, and the results are made available to verify the performance of the Web Service.

Abstract: The present invention provides a methodology for obtaining and recording state information after execution of a method during testing of a software component. A GET method is executed after every method call and the returned values are compared against expected values. In such a manner the diagnosis of a failure of a method of a software component is greatly improved.