Most beginners, or entrants in a certain field of knowledge, habitually collect various seemingly useless materials, videos, and tools. If you find a tool that you don't need, it will only take up disk space and waste time. If you are in the software testing professional circle, you must at least know which tools are available, when to use which tools, and what problems each tool can solve, and then apply several tools in depth. From this, we compiled a list of 60 testing tools necessary for testers, so that newcomers no longer need to look for them indiscriminately. Below I provide you with a rich list of software testing tools. These testing tools not only reduce the testing effort but also help to bring your software/application to market faster and maintain the quality while maintaining the speed.
- We divide commonly used test tools into 10 categories.
- 1. Test management tools
- 2. Interface testing tools
- 3. Performance testing tools
- 4. C/S automation tools
- 5. White box testing tools
- 6. Code scanning tool
- 7. Continuous Integration Tools
- 8. Network testing tool
- 9. App automation tools
- 10. web security testing tools
- NOTE: Tool ranking is meaningless.
1. Test management tools
1, TestDirector (large and comprehensive)
2, jira (simple and easy to use)
3, Quality Center (complex, charged)
4, Zen Road (simple and easy to use)
5, bugzilla (simple function)
6, svn ( Code and document management tool)
7, vss is similar to svn
8, git is the same as svn, but multi-branch management is better than svn
9, Note (large and comprehensive, too expensive)
10, CQ (ClearQuest-IBM product-large and comprehensive)
2. Interface testing tool
1, Jmeter (open source)
2, postman
3, SoapUI
Remarks: It is recommended to use jmeter and postman
jmeter is a free and open source tool written in 100% pure Java. It is mainly used for performance testing. Compared with loadrunner In terms of memory, it has a small memory footprint, is free and open source, is light and convenient, and requires no installation, and is more and more popular among the public. Postman is an interface test plug-in of Google. It is easy to use, supports use case management, supports get, post, file upload, response verification, variable management, environment parameter management and other functions. It can be run in batches and supports use case export and import.
3. Performance testing tool
1, loadrunner, large and comprehensive, it is still a bit difficult to learn and master, a heavyweight tool
2. jmeter is an open source performance testing tool based on the java platform, which is actually very powerful and easy to use. 3.
Web bench is a simple web benchmark testing tool.
4. Load UI is an open source stress testing tool that supports graphics5
. , httperf a high-performance web performance testing tool
6, Siege an open source stress and indicator testing tool
7,
the first two of Gatling are more commonly used
4, C/S automation tool
1, qtp (recording playback and script editing) , using vb language
2, winrunner IBM products are similar to qtp
3, autoit is very good at window positioning
5, white box testing tool
1, jtest java language unit testing framework
2, JUnit verification tool for java
3, cppunit Cross-platform c++ unit testing framework
4, gtest cross-platform c++ unit testing framework
5, PhpUnit Php
6, BoundsChecker C++, Delphi API and OLE error checking, pointer and leak error checking, memory error checking
7. TrueTime C++, Java, Visual Basic code running efficiency check, component performance analysis
6. Code scanning tool
1, Coverity source code static analysis tool
2, cppcheck c++ static scanning tool
3, gcover code coverage tool
4, findbugs: based on Bytecode analysis, extensive use of data flow analysis technology, focusing on runtime error detection, such as null pointer references, etc.
5, SonarLint
6, TscanCode
7, continuous integration tools
1, jenkins
2, Hudson
8, network testing tools
1, Spirent Currently a popular commercial platform for network automation testing (and can completely replace loadrunner), it can basically meet all network product testing needs, but it is very expensive
2, Ixia is also a platform for performance and stress testing of network equipment
3. Wireshark packet capture analysis and playback test tool
4. tc network packet loss and test simulation tool, very easy to use
5. iperf is used to test the network quality of tcp and udp
6. The tcpping tool works at the TCP layer and sends forged The TCP SYN packet and listen to the SYN/ACK or RST returned from the server or intermediate device
Nine, app automation tools
1, appium This should be regarded as the most popular app-based automated testing framework at present
2, the automated testing framework under the instruments ios platform, written in java language
3, uiautomator Android automated testing framework, basically supports all event operations of Android
4 , Monkey Android’s built-in testing tool
5, Monkey Runner Monkey’s improved version, supports self-written script testing, uses Python language
6, Robotium is a foreign Android automated testing framework, and its usage is relatively simple Ten
, web security testing tools
Financial services and banks The industry has been a victim of security breaches that compromised large amounts of sensitive user data. However, financial services are a must for everyone. So here we list some security testing tools for building a robust application.
1. appscan is a tool that is used a lot. After scanning, most of the vulnerabilities can be found out.
2, Netsparker Community Edition This program can detect SQL injection and cross-page scripting events. The awesome thing is that it can also provide solution
3, Websecurify This is an easy-to-use open source tool. This program also has some plug-in support, which can automatically detect web page vulnerabilities. After running,
it can generate detection reports in multiple formats. 4, Wapiti is an open source tool written in Python, which can detect web applications and detect injection points in web pages.
5. N-Stalker Free Version This tool can detect more than 100 pages at a time, including the detection of cross-page scripts.
6. skipfish This is a lightweight security testing tool with a fast processing speed of 2000 requests per second.
7. Scrawlr is a free software from HP that detects SQL injection vulnerabilities.
8. Watcher: This is a plug-in for Fiddler, which can run silently in the background and detect cross-domain submissions, etc. .
9. WebScarab This is actually a proxy software with many functions, which can detect XSS cross-site scripting vulnerabilities, SQL injection vulnerabilities, etc. .
10. Packet capture tool: fiddler
11. burpsuite: brute force cracking, packet capture tool