SubscribeClick here to subscribe
- Awards (8)
- BangaloreHackers (13)
- Books (8)
- Bugs (40)
- Certification (3)
- Coaching (5)
- Communities (16)
- Competitions (6)
- Desktop Applications (1)
- Events (6)
- Exercises (8)
- General (95)
- Infographics (1)
- Interviews (4)
- Investigation (14)
- Management (3)
- Meetup (4)
- Metrics (1)
- Mindmap (1)
- Mobile Phone (4)
- Process (1)
- Security Testing (22)
- Social Engineering Attacks (10)
- Stories (10)
- Test Ideas (35)
- WeekendTesting (1)
Test Insane Fanpage
- September 2014 (1)
- August 2014 (1)
- July 2014 (1)
- June 2014 (1)
- May 2014 (1)
- April 2014 (1)
- March 2014 (1)
- February 2014 (2)
- December 2013 (3)
- November 2013 (3)
- October 2013 (1)
- June 2013 (1)
- January 2013 (1)
- December 2012 (1)
- November 2012 (2)
- September 2012 (3)
- August 2012 (2)
- June 2012 (1)
- May 2012 (1)
- April 2012 (1)
- March 2012 (4)
- February 2012 (3)
- January 2012 (2)
- December 2011 (1)
- October 2011 (1)
- September 2011 (3)
- August 2011 (2)
- July 2011 (2)
- May 2011 (1)
- April 2011 (4)
- February 2011 (1)
- January 2011 (2)
- December 2010 (1)
- October 2010 (3)
- September 2010 (2)
- August 2010 (4)
- July 2010 (3)
- June 2010 (4)
- May 2010 (6)
- April 2010 (17)
- March 2010 (26)
August 2016 M T W T F S S « Sep 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
My tag cloudAgainst certifications anti-virus bangalore hackers BangaloreHackers Bangalore Testers Bangalore Testers Meet-up Bug Battle Bug Report Captcha conference Dictionary Attack Dumb ethical hacking free security testing workshop Gmail bugs hacking Interviews ISTQB Management password Password cracking penetration testing pen testing pentesting responsible disclosure security researcher Security Testing security vulnerabilities Software Testing test data generators Test Ideas testing testing conference testing contest Testing Institutes Testing Institutes in Bangalore Test Lead Test Manager usability Usability Testing uTest uTest Bug Battle Virus Vulnerabilities workshop
- That's all folks! October 12, 2014I have decided to end this blog. There is no emotion or event behind this decision. I have to move on and I am moving on. I have had a great time writing for myself and to you through this blog. I am not bringing it down so whatever I have posted will stay. I […]
- A question on exploratory testing from Quora June 29, 2014How exploratory testing differs with other testing? What is the common problems faced by a tester when performing exploratory testing? .... And my answer: You can cook pizza by following instructions or trying it out on your own. When you try it out on your own, you learn a lot more than merely following instructions. […]
- Misfits of the software world May 7, 2014I just turned in notice rather than watch the exploratory test job I love turn into writing test cases to reassure PMs that things "work." — Natalie Bennett (@bennett_nj) May 6, 2014 Natalie isn't just talking about exploratory testing, she is talking about value. However, the value she is talking and what the PMs want […]
- PerScholas, Keith Klain, Doran Jones and how this industry is changing April 30, 2014I hadn't heard about PerScholas till 2013. I guess Keith Klain introduced PerScholas to the testing world through his leadership activities during his awesome stint in Barclays. The idea was definitely exciting but it needed more than an idea. Every idea needs awesome people to execute. I don't exactly know how Keith Klain found Doran […]
- Bangalore Workshop on Software Testing - 4 April 27, 2014The BWST is back. There was a gap of 3 years after BWST 3 to get to 4. All because I was doing things that took my time away from community activities to build Moolya. Moolya and I are doing great enough for me to resume my community activities. So, as BWST is back so […]
- That's all folks! October 12, 2014
I, as an author completely hold all the copyrights to the content produced in my blog and you are not allowed to publish this content anywhere else. However, if you want to publish it, then please write to me at Santhosh.Tuppad@gmail.com
Wednesday, September 3, 2014
Monday, August 18, 2014
I welcome you all to the raw story of OCD which is / was part of me. This may or may not help you, but I just wanted to motivate other people who may relate their problems to mine which I have faced with great guts.
Well, the first thing I would love to tell is; I have kept the word “Entrepreneur” in the title because I am just relating to myself and it doesn’t mean that OCD doesn’t suck for anyone else other than entrepreneur.
Let us have some look at, what the fuck is OCD? You may just want to go and search over the web. OCD stands for Obsessive Compulsive Disorder. That’s sufficient as you will surely go ahead and look into more information about it.
How this suck(ed)s for me during entrepreneurship?
I have faced this whenever the customer spoke something which talked about me personally, even though others felt it as lighter note or just kidding types, I used to question them “What did they mean?” and they used to feel I am arrogant while I see it as my right to clarify till that person was my friend whom I understand (His / Her intentions). Well, I did not attend the meetings with other people just because they felt I would be straight-forward (Or arrogant Ha ha). People, I just spoke my thoughts or conveyed them; it is like “Aap kare to chamatkar, hum kare to balatkar”. I speak for myself and that irritates people, Awww! that hurts! However, nowadays I am more calmer and I speak what is required instead of wasting my time giving explanations when they think (I am arrogant is what they think and they think I am a psychotic or adamant or crazy or whatever crap! I see myself as a Genius). I seriously feel people need to understand “Art of speaking” big time.
To me, a customer is a human-being just like me and there is no one is like superior and inferior. We are doing business and let us do that, we aren’t doing any favour to each other. Period.
Now, a bit of history (Let me take you to my past)
If I go back to my high-school days or engineering days, I can remember that it started from there. I never knew that it was OCD for several years and I got to know recently (Few days back) that I may be suffering from OCD. How I got to know that? I reached the limit where I was so much pissed off with OCD activities, I just started doing some research over the web and found some of the symptoms that matched my behaviour.
Some of the symptoms that I can share which I faced in my life,
1. Reading the same page again and again just because I had some thought in my mind which used to say, I got to re-read it or else something bad may happen. Well, that helped me in revising so much (Grins) if I have to look at the optimistic part. However, the other side sucked to the core.
2. While walking on the road, I see a tree on left hand side to me which is like few meters far, and I have some number in my brain & I want to cross that tree with so many steps no matter what. If I fail to do that, then it haunts me for several days.
3. And when I am getting up from my bed, should I get up from left or right? Now, this is not superstitious thought, it is more to do with people whom I did not like. Example: If a person who fought with me lives somewhere on the right-hand side to me geographically, I would not like to get up from that angle. That was okay, till people from all the directions fought with me. In that case, I shouldn’t be getting up at all (Laughs).
These are few that I wanted to share. If we meet, I can share more details. Before you continue to read, I want to say that; I am sharing this because it may help someone who is suffering.
What have I learned from OCD as an entrepreneur?
Being an entrepreneur has motivated me to reduce the OCD because I cannot afford to keep giving OCD as an excuse, I am fighting the OCD demon very badly. It keeps coming back to me again and again, however I love to kick it back again and get back. This has got me some strength in how I make decisions or quickly I get over the disappointment in my entrepreneur journey. As kids, we have heard people saying “Everything happens for good”, I think no kid may understand it at that age; but when one grows up he / she may see things in optimistic way and convert the weakness (as the world sees it) into great strength while one overcomes OCD.
Admitting that I have OCD makes me feel lighter from inside and that helps me reduce my OCD level.
Can OCD be cured?
Well, the science says that it is a disorder and disorders can be controlled, but here I want to say; disorder or whatever fuck it is I have the faith that I can overcome it completely soon and I am working towards it. I bet!
To all the (wannabe) entrepreneurs, here is what I want to shout-out,
- Fuck how others treat you, you bloody know yourself better than anyone. Just keep doing that.
- It is very easy to fall down and very challenging to get up. I do not want to use word called “difficult” instead of challenging, because “difficult” word makes it look like non-challenging. If you love doing something, then there are challenges and nothing is difficult. Face them.
- We see a lot of quotes on Facebook shared by our connections, well; those are temporary fixes for your problems. Stop believing in fairy tales and accept the raw life. Embrace the life, everything looks beautiful. Stay Calm, Stay Happy!
- Open up, that will make you feel lighter however; watch out for critics that will come on your way. Come on people, critics are nothing in-front of your abilities, handle them peacefully and calmly. Have defensive mechanisms to cut the negativity and have bloody positivity filled around you.
- Go for vacation, take a break, do what makes your endorphin levels go high. Period.
If being an entrepreneur was a cake-walk, then it would be so easy to do by so many people on this planet. If you have been entrepreneur (Followed your heart) and you are facing different kinds of challenges (Be it personally or professionally; everything boils down to LIFE), you got to feel proud that you are a strong soul. That got to make you smile! Not that other people are not strong soul, everyone is a strong soul, if he / she lives his / her life the way he / she wants to without affecting other people. Way to go!
To people who want to know more about my experience being an entrepreneur and facing OCD challenges in my (personal / professional) life, talk to me. Here is my phone number: 9880952643 or else tweet to me @santhoshst. Let us talk. When we speak we feel lighter. However, I can share every bit of my life in detailed way based on my feeling if one wants to listen and not comment or debate on my life topic or judge me based on what I speak. If you agree to this agreement, then go ahead and get in touch with me. Lots of love to everyone!
I’m a ROCKSTAR and I know it.
Tuesday, July 1, 2014
Tip #1 – Test Data: Creating exact file size using DOS command utility.
Let us say you wanted to test file upload feature in web application and the maximum file upload size is 3 MB. Now, you search in your local computer to see whether you have 3MB file and finally you see that you do not have exact 3 MB size for any file. Now, what do you do? Will you open *.txt and start entering characters and keep checking if the file is showing 3 MB? Well, that can be done; but it is time consuming and crude way of doing it. We call ourselves engineers, let us do it in cool way.
For windows user, you can just try this command on your DOS prompt;
fsutil file createnew enter_your_filename_here enter_the_number_of_bytes_you_want_to_create
Example: fsutil file createnew myprofilepicture.PNG 12000
Tip #2 – Converting image formats from one to another in bulk
Let us say, you took a lot of screenshots and finally you see that they have lot of file size as you saved them as *.BMP which is why they show up big file size. Now, you want to convert all of them to light-weight file sizes format which could be JPG or PNG. How would you do that? Keep opening every image one by one and again “Save as”? Again, crude way. What if the screenshots that you took are like 100+ images?
Now, let us show you some way where you can change the file formats in few seconds for large number of image files whose format is *.BMP
Download ImageMagick from http://imagemagick.org/
You have a command which you can execute once you install the software successfully!
Here is the command,
convert filename.BMP filename.PNG
Well, you need not keep writing the file names every time you need to change the file format. You may want to collect all file names of BMP using DOS command, I will not let you know about this. I want you to figure out this while I have given you the command for conversion. You can run list of commands using Excel or *.bat (Batch file). Go, explore!
Tip #3 – Compare the build files for every new build.
The first activity that needs to be done from a tester could be, comparing the new build files with the stable build which has complete set of files. With this activity, one can get to know if some file is missing and a high alert can be raised to the development team to fix it and check-in new build files to start the testing activity. This can happen if you have access to the source code repository. Most of the testers do not even want to get access to the source code repository and have an assumption that, they are not allowed to do so, while it was just one e-mail sent to the development team your test manager so that he / she could get you the access. For doing this you can use “Beyond Compare” which has folder compare which compares file by file. If some file is missing, then you can get to know at the early stage and you get to know something if fishy with the new build.
Tip #4 – SysInternals Suite – Use them and find out how every utility can help
I have been a fan of Sysinternals Suite utilities. They are tiny, yet bloody powerful. I personally have used it since my school days for various activities, oh yes; being a hacker these tiny little chaps help me in doing a lot. I bet, you cannot ignore yourself from falling in love with them. Every tiny utility helps me identify the tests that I can do. It is like reverse engineering, I use the utility and then identify how this utility can help in my testing activity. Try them at your convenience and you may love them.
Friday, June 6, 2014
MANAGEMENT DOESN’T UNDERSTAND THE VALUE MOST OF THE TIMES
We have known this for long time and it is hard to figure out the reasons behind, “Why management doesn’t agree to this or why management doesn’t understand this”. It could be a business reason finally however, not at the cost of sensitive data leakage of the customers. It takes a technical guy who knows what is hacking and it’s after effects. And only such person may make a decision in a appropriate way.
ETHICAL HACKING COURSE IS NOTHING
One of my student enrolled into Ethical Hacking course, and finally once he scored great marks in it; I asked him to hack into WiFi network of neighbor by giving him a laptop. His response was, “I cannot do it, I only know the tool name which can do that and that is AirCrackNG”. Now, ethical hacking course looks like more of a tool-smith where you remember the tool name and just run it without having the mind-set or skill-set which plays a great role in this profession. So, if you are hiring people who has done ethical hacking course, you may want to re-think about, “What else that person need to have as skills?”
CONVINCING MOST DEVELOPERS TO FIX THE VULNERABILITIES
In my experience, I have seen product owners going live with vulnerabilities open and I advocated that, it is a bad idea. The reason they provided were, developers do not believe that it will happen anytime. Another reason was, these are the only requirements and the code works according to the specifications. That sounded weird to me. I would be happy if you had said, you do not have skills to do it or you just wanted to not fix it for whatever reason. Last, but not least; it is not only the developers but also testers or test manager in the team who would deny that it needs a fix. Like Gerald M Weinberg says, it is always people problem!
VERY FEW PASSIONATE WHITE HAT HACKERS IN THE INDUSTRY
We collectively lack the number of white hackers who could fight the black hat guys. However, I see the change happening and I am man of patience. Things that take time will take time. And the people who claim they are passionate white hat hackers end up in knowing some tools / utilities very well or some techniques and the learning stops there. That doesn’t make white hat hackers cool, what makes them cool is to deep dive into learning more and more and not settling for less. Let us hope for the best in the future.
BUG ADVOCACY IS CHALLENGING
Most of the testers want the easy way out. I interact with many testers in India in different cities, most of them do not want to use Notepad++ when I tell them about it; they say “I am able to do it in Notepad”. My point is not about not using Notepad if it works for you, it is about “Knowing what Notepad++ has and may be you can do it more effectively and get more ideas while working with it”. Likewise, most testers lack bug advocacy; not only in security testing but many other quality criteria as well. Well, no good thing comes easily. Difficult is different and challenging word is different. Bug Advocacy is challenging and not about easy or difficult.
PROVIDE CODE FIX FOR THE VULNERABILITY EASY TO FEEL LIKE AN EXPERT & STOP LEARNING
In some organizations, testers are asked for the code fix as developers may find it tricky bug or could be challenging to fix it. Now, testers may provide an algorithm or logic to help and sometimes provide the code as well. And yes, it is easy to feel like an expert and stopping your learning. Well, the best example could be “Santhosh Tuppad” who thought he was great at security testing (Well, the fact is he didn’t think; but the world thought and still thinks). Here is what I would love to say, while the world is wanting to become famous in whatever reason, I would love to go back to my learning mode and learn how much ever I can in anything that I like before my death.
Following my heart in both my personal life and professional life has been giving me great happiness and happiness matters to me a lot.
While the title reads, “Why Security Testing Sucks?” I am game for making great things happen in security testing and I am not going to settle for less. People just shy away from anything that sucks, it is their will; no comments on that. Well, I want to go ahead and do great in security testing craft along with other quality criteria in Software Testing.
Sunday, May 11, 2014
Beautiful lady in the picture is my mom who has been taking care of me since I was a baby. She never got tired of me with my stupidity, irritating moments, fights & lot more. She has great energy even today to support me in living my life happily. I have learned many things from her & I love her a lot for always being there for me. In summary, she is the only one on this planet earth who understands me very well.
Never give up when you love something
I have given her a lot of pain, but she always gave me unconditional love. I never understood her pain, while she gave me so much of happiness by loving me so much without any conditions. She is a great fighter in her life. Sometimes I think, she has been cooking, washing clothes, taking care of us when we were ill! And she never gave up. That’s a learning for me from my mother that, “Never give up” when you love to do something. I say this to my mom, I will learn cooking and feed you as I’m big enough and mature enough to take care of you now.
Give without expecting to receive
When I look back, whatever she has done for me; it was not with any intention of receiving it back. It was like, “Son, I have got your back; go and do what you love to and be happy”. Today, I give to people or community or help people without expecting anything back, and trust me; I feel like I’m on Cloud 9 when I do that.
My childhood days
I still remember how she used to console me when I used to cry for several reasons. I still remember, the Rice and Dal Rasam she used to make it for me and used to walk to my school during lunch hours to feed me. I had fantasy towards remote control cars & toys, she never said “No”; somehow she used to manage the money and get me those which could make me smile. She could never see my hurt, it used to hurt her in turn.
My Engineering days
There were days when she wrote my assignments so that I could rest (I’m laughing while I write this). When I used to sit late night hours to study before the exam, she used to be awake and get me fresh fruit juice or be it some snacks while she also cared about my sleep. I had a great moral support from her. She is my hero.
She doesn’t get irritated towards my stupidity, instead she helps me!
I have this habit of over thinking or sometimes it could be Obsessive Compulsive Disorder (Well, most of us have it in different levels is what I feel). Most of the people get irritated when I speak certain things or dig something or get stuck on one topic for longer time, but my mother has hell of patience when it comes to his son. She listens calmly, she doesn’t argue, she doesn’t get irritated; the only reason she does it is, she wants to be happy and she knows what I have been through and I am going through.
During my “Entrepreneur” days
She never questioned, “Why?” Instead she said, go ahead and do what your heart says. That’s important for your life. Do not take things into your head what the world says about you or about the things that you want to do in your life, be it personal or professional; just go ahead. Just be happy my dear son, this is what she says always. Love You Amma (Amma is equivalent word in Kannada language in Karnataka, India).
HAPPY MOTHERS DAY! Well, it is just one day, but I would like to see you happy always like how you want to see me happy always. So, “Happy Mothers Day To You Always”. My wishes go to all the mothers in the world!
Last, but not least; I love my pappa (Father) a lot and not to forget that I love Rice + Dal Rasam prepared by him whenever my amma (Mother) would be not keeping well. And my elder brother “Sandeep Tuppad” rocks too. He has been there with me in my ups and downs in life when there was great need of someone who could support me. In summary, my family is great & I love my family.
Finally, this blog post is very short to write about my amma. She rocks like her lovely son, that’s me :)