Book Title:

Application Security Testing: From Manual Reviews to Automation

Authors

Devi Prasad Guda
American Fmaily Insurance
DOI: https://doi.org/10.36676/978-93-49848-61-0

Keywords:

Application Security Testing, testing, software testing, manual testing

Synopsis

In the digital age, securing software applications is paramount due to the increasing sophistication of cyber threats and the growing reliance on interconnected systems. This book presents a comprehensive overview of application security testing, tracing its evolution from manual reviews to modern automation techniques. It begins by establishing the foundational concepts of application security, including threat landscapes, common vulnerabilities (such as those listed in the OWASP Top 10), and essential practices like risk assessment and threat modeling. The text then explores manual testing techniques—highlighting their historical development, strategic value, and specific types such as code reviews, penetration testing, and usability evaluations. Emphasizing the importance of human intuition in detecting complex logic flaws, the manual approach is contrasted with automated methods that offer scalability, speed, and integration with DevSecOps pipelines. The latter sections detail automated tools like SAST, DAST, IAST, and SCA, and platforms such as SonarQube, Burp Suite, and Fortify. By advocating a hybrid approach that combines human expertise with automation, the book equips security professionals, developers, and organizations with the knowledge to build secure, resilient, and compliant applications across the software development lifecycle.

List of Chapters:

Chapters

References

Brown, S., & Davis, M. (2019). "Effective Strategies for Automated Testing in Software Development." International Journal of Software Testing, 7(1), 12-25.

Garcia, R., & Martinez, C. (2018). "Optimizing Software Engineering Processes with AI Integration." Proceedings of the International Conference on Software Engineering, 78-90.

Khan, S., & Ahmed, R. (2018). "Enhancing Security Testing in Agile Environments." Security Testing Symposium Proceedings, 65-80.

Lee, H., & Kim, M. (2017). "Improving User Experience in Human-Centric Computing Environments." Journal of Human-Centric Computing, 4(1), 30-42.

Patel, N., & Desai, K. (2018). "Implementing DevOps Strategies for Efficient Software Development." DevOps World Conference Proceedings, 55-70.

Smith, J., & Johnson, A. (2020). "Advanced Techniques for Software Engineering in Modern Environments." Journal of Software Engineering, 15(2), 45-58.

Turner, J., & Clark, E. (2019). "User-Centric Approaches in Usability Testing and Experience Enhancement." Journal of Usability Testing and User Experience, 6(2), 75-88. [

Williams, K., & Anderson, L. (2021). "Exploring Quality Assurance Practices in Software Development." Software Quality Journal, 25(4), 301-315.

Wilson, D., & Miller, G. (2021). "Innovations in Software Testing and Quality Assurance." Software Testing and Quality Assurance Journal, 18(4), 220-235.Johnson, R., & Smith, K. (2023). "Advancements in Test Automation: A Comprehensive Review." Testing Trends Journal, 12(3), 112-125.

Johnson, R., & Smith, K. (2023). "Advancements in Test Automation: A Comprehensive Review." Testing Trends Journal, 12(3), 112-125.

Garcia, M., & Martinez, A. (2022). "Exploring AI Integration in Automated Testing Tools." AI in Testing Conference Proceedings, 45-60.

Patel, S., & Gupta, R. (2021). "Cloud-Based Testing Platforms: Evolution and Trends." Cloud Computing Symposium, 88-102.

Khan, A., & Ali, N. (2024). "Security Testing in Agile Environments: Challenges and Solutions." Agile Security Conference Proceedings, 75-90.

Lee, J., & Park, H. (2020). "Usability Testing Strategies for Mobile Applications: A Comparative Analysis." Mobile UX Journal, 8(1), 40-55.

Wang, X., & Chen, Q. (2023). "Enhancing Test Data Management in Automated Testing: Best Practices and Case Studies." Software Testing Innovations Journal, 20(2), 150-165.

Brown, D., & Wilson, M. (2022). "Regression Testing Optimization: Techniques and Tools." Testing Strategies Conference Proceedings, 110-125.

Clark, L., & Turner, M. (2023). "User-Centric Testing Frameworks: Insights from Industry Practices." User Experience Trends Journal, 10(4), 180-195.

Ahmed, A., & Rahman, S. (2021). "Ethical Considerations in Test Automation: Guidelines and Recommendations." Ethical Testing Symposium Proceedings, 55-70.

Anderson, B., & Williams, S. (2020). "Continuous Testing in DevOps: Challenges and Opportunities." DevOps World Journal, 15(1), 30-45.

Garcia, E., & Martinez, J. (2023). "Effective Strategies for Hybrid Testing: Integrating Manual and Automated Approaches." Hybrid Testing Conference Proceedings, 80-95.

Application Security Testing: From Manual Reviews to Automation. By Devi Prasad Guda

Downloads

E-Book

Published

6 July 2025

Series

2025

Categories

License

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.

Details about this monograph

ISBN-13 (15)

978-93-49848-61-0

How to Cite

(Ed.). (2025). Application Security Testing: From Manual Reviews to Automation: Vol. Book 1, Volume 1. Shodh Sagar International Publications. https://doi.org/10.36676/978-93-49848-61-0