Download or read book Practical Security Automation and Testing written by Tony Hsiang-Chih Hsu and published by Packt Publishing Ltd. This book was released on 2019-02-04 with total page 245 pages. Available in PDF, EPUB and Kindle. Book excerpt: Your one stop guide to automating infrastructure security using DevOps and DevSecOps Key FeaturesSecure and automate techniques to protect web, mobile or cloud servicesAutomate secure code inspection in C++, Java, Python, and JavaScriptIntegrate security testing with automation frameworks like fuzz, BDD, Selenium and Robot FrameworkBook Description Security automation is the automatic handling of software security assessments tasks. This book helps you to build your security automation framework to scan for vulnerabilities without human intervention. This book will teach you to adopt security automation techniques to continuously improve your entire software development and security testing. You will learn to use open source tools and techniques to integrate security testing tools directly into your CI/CD framework. With this book, you will see how to implement security inspection at every layer, such as secure code inspection, fuzz testing, Rest API, privacy, infrastructure security, and web UI testing. With the help of practical examples, this book will teach you to implement the combination of automation and Security in DevOps. You will learn about the integration of security testing results for an overall security status for projects. By the end of this book, you will be confident implementing automation security in all layers of your software development stages and will be able to build your own in-house security automation platform throughout your mobile and cloud releases. What you will learnAutomate secure code inspection with open source tools and effective secure code scanning suggestionsApply security testing tools and automation frameworks to identify security vulnerabilities in web, mobile and cloud servicesIntegrate security testing tools such as OWASP ZAP, NMAP, SSLyze, SQLMap, and OpenSCAPImplement automation testing techniques with Selenium, JMeter, Robot Framework, Gauntlt, BDD, DDT, and Python unittestExecute security testing of a Rest API Implement web application security with open source tools and script templates for CI/CD integrationIntegrate various types of security testing tool results from a single project into one dashboardWho this book is for The book is for software developers, architects, testers and QA engineers who are looking to leverage automated security testing techniques.

Download or read book Testing Web APIs written by Mark Winteringham and published by Simon and Schuster. This book was released on 2022-12-06 with total page 262 pages. Available in PDF, EPUB and Kindle. Book excerpt: Ensure your web APIs are consistent and bug-free by implementing an automated testing process. In Testing Web APIs you will: Design and implement a web API testing strategy Set up a test automation suite Learn contract testing with Pact Facilitate collaborative discussions to test web API designs Perform exploratory tests Experiment safely in a downloadable API sandbox environment Testing Web APIs teaches you to plan and implement the perfect testing strategy for your web APIs. In it, you’ll explore dozens of different testing activities to help you develop a custom testing regime for your projects. This practical book demystifies abstract strategic concepts by applying them to common API testing scenarios, revealing how these complex ideas work in the real world. You’ll learn to take a risk-driven approach to API testing, and build a strategy that goes beyond the basics of code and requirements coverage. Your whole team will soon be involved in ensuring quality! About the technology Web APIs are the public face of your application, and they need to be perfect. Implementing an automated testing program is the best way to ensure that your web APIs are production ready. About the book Testing Web APIs is a unique and practical guide, from the initial design of your testing suite through techniques for documentation, implementation, and delivery of consistently excellent APIs. You’ll see a wide range of testing techniques, from exploratory to live testing of production code, and how to save time with automation using industry-standard tools. This book helps take the hassle out of API testing. What's inside Design and implement a web API testing strategy Set up a test automation suite Contract testing with Pact Hands-on practice in the downloadable API sandbox About the reader For dedicated software QA and testers, or experienced developers. Examples in Java. About the author Mark Winteringham is the OpsBoss at Ministry of Testing, where he teaches many aspects of software testing. Table of Contents PART 1 THE VALUE OF WEB API TESTING 1 Why and how we test web APIs 2 Beginning our testing journey 3 Quality and risk PART 2 BEGINNING OUR TEST STRATEGY 4 Testing API designs 5 Exploratory testing APIs 6 Automating web API tests 7 Establishing and implementing a testing strategy PART 3 EXPANDING OUR TEST STRATEGY 8 Advanced web API automation 9 Contract testing 10 Performance testing 11 Security testing 12 Testing in production

Download or read book Hands on Penetration Testing for Web Applications written by Richa Gupta and published by BPB Publications. This book was released on 2021-03-27 with total page 324 pages. Available in PDF, EPUB and Kindle. Book excerpt: Learn how to build an end-to-end Web application security testing framework Ê KEY FEATURESÊÊ _ Exciting coverage on vulnerabilities and security loopholes in modern web applications. _ Practical exercises and case scenarios on performing pentesting and identifying security breaches. _ Cutting-edge offerings on implementation of tools including nmap, burp suite and wireshark. DESCRIPTIONÊ Hands-on Penetration Testing for Web Applications offers readers with knowledge and skillset to identify, exploit and control the security vulnerabilities present in commercial web applications including online banking, mobile payments and e-commerce applications. We begin with exposure to modern application vulnerabilities present in web applications. You will learn and gradually practice the core concepts of penetration testing and OWASP Top Ten vulnerabilities including injection, broken authentication and access control, security misconfigurations and cross-site scripting (XSS). You will then gain advanced skillset by exploring the methodology of security testing and how to work around security testing as a true security professional. This book also brings cutting-edge coverage on exploiting and detecting vulnerabilities such as authentication flaws, session flaws, access control flaws, input validation flaws etc. You will discover an end-to-end implementation of tools such as nmap, burp suite, and wireshark. You will then learn to practice how to execute web application intrusion testing in automated testing tools and also to analyze vulnerabilities and threats present in the source codes. By the end of this book, you will gain in-depth knowledge of web application testing framework and strong proficiency in exploring and building high secured web applications. WHAT YOU WILL LEARN _ Complete overview of concepts of web penetration testing. _ Learn to secure against OWASP TOP 10 web vulnerabilities. _ Practice different techniques and signatures for identifying vulnerabilities in the source code of the web application. _ Discover security flaws in your web application using most popular tools like nmap and wireshark. _ Learn to respond modern automated cyber attacks with the help of expert-led tips and tricks. _ Exposure to analysis of vulnerability codes, security automation tools and common security flaws. WHO THIS BOOK IS FORÊÊ This book is for Penetration Testers, ethical hackers, and web application developers. People who are new to security testing will also find this book useful. Basic knowledge of HTML, JavaScript would be an added advantage. TABLE OF CONTENTS 1. Why Application Security? 2. Modern application Vulnerabilities 3. Web Pentesting Methodology 4. Testing Authentication 5. Testing Session Management 6. Testing Secure Channels 7. Testing Secure Access Control 8. Sensitive Data and Information disclosure 9. Testing Secure Data validation 10. Attacking Application Users: Other Techniques 11. Testing Configuration and Deployment 12. Automating Custom Attacks 13. Pentesting Tools 14. Static Code Analysis 15. Mitigations and Core Defense Mechanisms

Download or read book Grokking Continuous Delivery written by Christie Wilson and published by Simon and Schuster. This book was released on 2022-12-06 with total page 422 pages. Available in PDF, EPUB and Kindle. Book excerpt: Build and use systems that safely automate software delivery from testing through release with this jargon-busting guide to continuous delivery pipelines. In Grokking Continuous Delivery you will learn how to: Design effective CD pipelines for new and legacy projects Keep your software projects release-ready Maintain effective tests Scale CD across multiple applications Ensure pipelines give the right signals at the right time Use version control as the source of truth Safely automate deployments with metrics Describe CD in a way that makes sense to your colleagues Grokking Continuous Delivery teaches you the design and purpose of continuous delivery systems that you can use with any language or stack. You’ll learn directly from your mentor Christie Wilson, Google engineer and co-creator of the Tekton CI/CD framework. Using crystal-clear, well-illustrated examples, Christie lays out the practical nuts and bolts of continuous delivery for developers and pipeline designers. In each chapter, you’ll uncover the proper approaches to solve the real-world challenges of setting up a CD pipeline. With this book as your roadmap, you’ll have a clear plan for bringing CD to your team without the need for costly trial-and-error experimentation. About the technology Keep your codebase release-ready. A continuous delivery pipeline automates version control, testing, and deployment with minimal developer intervention. Master the tools and practices of continuous delivery, and you’ll be able to add features and push updates quickly and consistently. About the book Grokking Continuous Delivery is a friendly guide to setting up and working with a continuous delivery pipeline. Each chapter takes on a different scenario you’ll face when setting up a CD system, with real-world examples like automated scaling and testing legacy applications. Taking a tool-agnostic approach, author Christie Wilson guides you each step of the way with illustrations, crystal-clear explanations, and practical exercises to lock in what you’re learning. What's inside Design effective CD pipelines for new and legacy projects Ensure your pipelines give the right signals at the right times Version control as the source of truth Safely automate deployments About the reader For software engineers who want to add CD to their development process. About the author Christie Wilson is a software engineer at Google, where she co-created Tekton, a cloud-native CI/CD platform built on Kubernetes. Table of Contents PART 1 Introducing continuous delivery 1 Welcome to Grokking Continuous Delivery 2 A basic pipeline PART 2 Keeping software in a deliverable state at all times 3 Version control is the only way to roll 4 Use linting effectively 5 Dealing with noisy tests 6 Speeding up slow test suites 7 Give the right signals at the right times PART 3 Making delivery easy 8 Easy delivery starts with version control 9 Building securely and reliably 10 Deploying confidently PART 4 CD design 11 Starter packs: From zero to CD 12 Scripts are code, too 13 Pipeline design

Download or read book Practical Web Penetration Testing written by Gus Khawaja and published by Packt Publishing Ltd. This book was released on 2018-06-22 with total page 283 pages. Available in PDF, EPUB and Kindle. Book excerpt: Web Applications are the core of any business today, and the need for specialized Application Security experts is increasing these days. Using this book, you will be able to learn Application Security testing and understand how to analyze a web application, conduct a web intrusion test, and a network infrastructure test.

Download or read book The Art of Software Security Testing written by Chris Wysopal and published by Pearson Education. This book was released on 2006-11-17 with total page 332 pages. Available in PDF, EPUB and Kindle. Book excerpt: State-of-the-Art Software Security Testing: Expert, Up to Date, and Comprehensive The Art of Software Security Testing delivers in-depth, up-to-date, battle-tested techniques for anticipating and identifying software security problems before the “bad guys” do. Drawing on decades of experience in application and penetration testing, this book’s authors can help you transform your approach from mere “verification” to proactive “attack.” The authors begin by systematically reviewing the design and coding vulnerabilities that can arise in software, and offering realistic guidance in avoiding them. Next, they show you ways to customize software debugging tools to test the unique aspects of any program and then analyze the results to identify exploitable vulnerabilities. Coverage includes Tips on how to think the way software attackers think to strengthen your defense strategy Cost-effectively integrating security testing into your development lifecycle Using threat modeling to prioritize testing based on your top areas of risk Building testing labs for performing white-, grey-, and black-box software testing Choosing and using the right tools for each testing project Executing today’s leading attacks, from fault injection to buffer overflows Determining which flaws are most likely to be exploited by real-world attackers

Download or read book Security Automation with Ansible 2 written by Madhu Akula and published by Packt Publishing Ltd. This book was released on 2017-12-13 with total page 359 pages. Available in PDF, EPUB and Kindle. Book excerpt: Automate security-related tasks in a structured, modular fashion using the best open source automation tool available About This Book Leverage the agentless, push-based power of Ansible 2 to automate security tasks Learn to write playbooks that apply security to any part of your system This recipe-based guide will teach you to use Ansible 2 for various use cases such as fraud detection, network security, governance, and more Who This Book Is For If you are a system administrator or a DevOps engineer with responsibility for finding loop holes in your system or application, then this book is for you. It's also useful for security consultants looking to automate their infrastructure's security model. What You Will Learn Use Ansible playbooks, roles, modules, and templating to build generic, testable playbooks Manage Linux and Windows hosts remotely in a repeatable and predictable manner See how to perform security patch management, and security hardening with scheduling and automation Set up AWS Lambda for a serverless automated defense Run continuous security scans against your hosts and automatically fix and harden the gaps Extend Ansible to write your custom modules and use them as part of your already existing security automation programs Perform automation security audit checks for applications using Ansible Manage secrets in Ansible using Ansible Vault In Detail Security automation is one of the most interesting skills to have nowadays. Ansible allows you to write automation procedures once and use them across your entire infrastructure. This book will teach you the best way to use Ansible for seemingly complex tasks by using the various building blocks available and creating solutions that are easy to teach others, store for later, perform version control on, and repeat. We'll start by covering various popular modules and writing simple playbooks to showcase those modules. You'll see how this can be applied over a variety of platforms and operating systems, whether they are Windows/Linux bare metal servers or containers on a cloud platform. Once the bare bones automation is in place, you'll learn how to leverage tools such as Ansible Tower or even Jenkins to create scheduled repeatable processes around security patching, security hardening, compliance reports, monitoring of systems, and so on. Moving on, you'll delve into useful security automation techniques and approaches, and learn how to extend Ansible for enhanced security. While on the way, we will tackle topics like how to manage secrets, how to manage all the playbooks that we will create and how to enable collaboration using Ansible Galaxy. In the final stretch, we'll tackle how to extend the modules of Ansible for our use, and do all the previous tasks in a programmatic manner to get even more powerful automation frameworks and rigs. Style and approach This comprehensive guide will teach you to manage Linux and Windows hosts remotely in a repeatable and predictable manner. The book takes an in-depth approach and helps you understand how to set up complicated stacks of software with codified and easy-to-share best practices.

Download or read book Web Security Testing Cookbook written by Paco Hope and published by "O'Reilly Media, Inc.". This book was released on 2009-05-15 with total page 312 pages. Available in PDF, EPUB and Kindle. Book excerpt: Offering developers an inexpensive way to include testing as part of the development cycle, this cookbook features scores of recipes for testing Web applications, from relatively simple solutions to complex ones that combine several solutions.

Download or read book Fuzzing for Software Security Testing and Quality Assurance Second Edition written by Ari Takanen, and published by Artech House. This book was released on 2018-01-31 with total page 345 pages. Available in PDF, EPUB and Kindle. Book excerpt: This newly revised and expanded second edition of the popular Artech House title, Fuzzing for Software Security Testing and Quality Assurance, provides practical and professional guidance on how and why to integrate fuzzing into the software development lifecycle. This edition introduces fuzzing as a process, goes through commercial tools, and explains what the customer requirements are for fuzzing. The advancement of evolutionary fuzzing tools, including American Fuzzy Lop (AFL) and the emerging full fuzz test automation systems are explored in this edition. Traditional software programmers and testers will learn how to make fuzzing a standard practice that integrates seamlessly with all development activities. It surveys all popular commercial fuzzing tools and explains how to select the right one for software development projects. This book is a powerful new tool to build secure, high-quality software taking a weapon from the malicious hacker’s arsenal. This practical resource helps engineers find and patch flaws in software before harmful viruses, worms, and Trojans can use these vulnerabilities to rampage systems. The book shows how to make fuzzing a standard practice that integrates seamlessly with all development activities.

Download or read book Test Automation in the Real World written by Greg Paskal and published by . This book was released on 2017-03-05 with total page 93 pages. Available in PDF, EPUB and Kindle. Book excerpt: Test automation is a fantastic technology field with incredible potential. Unfortunately, the reality is most test automation efforts fail soon after they're initiated. From the many promises of ease of automation to over simplified vendor demonstrations, its easy to spend significant time and money pursuing test automation only to be left with spent budgets and unused software sitting on the shelf. If only there was a way to avoid the most common pitfalls encountered when embarking upon the promise of test automation?Greg Paskal shares some of his best insights learned as a successful test automation engineer. With over 30 years in software development and test engineering, Greg has experience first hand what works and what ends up problematic when implementing test automation across the enterprise. Learn how to take First Steps into Test Automation, ensuring you start with a great foundation. Understand the critical steps of The Automation Evaluation and how this process ensures you're automating the right things. Discover how Removing The Word Test from Test Automation opens up countless opportunities to get even greater value out of your automation tools and investment. Read about How to Hire an Automation Engineer to ensure you have the right talent to succeed in your automation endeavors.Greg Paskal has published countless white-papers and recorded podcast on the subject of Test Automation. You'll find Greg presents Real World lessons learned in a way that will help you avoid making some of the common mistakes in test automation development. Greg blends together his broad range of technical talents with his gifts and passion for teaching other in an easy to understand format.Prepare to come away better equipped for success in the world of Test Automation. These valuable lessons will apply to any test automation tool, technology and team.

Download or read book Software Test Automation written by Mark Fewster and published by Addison-Wesley Professional. This book was released on 1999 with total page 596 pages. Available in PDF, EPUB and Kindle. Book excerpt: Describes how to structure and build an automated testing regime that will give lasting benefits in the use of test execution tools to automate testing on a medium to large scale. Offers practical advice for selecting the right tool and for implementing automated testing practices within an organization, and presents an extensive collection of case studies and guest chapters reflecting both good and bad experiences in test automation. Useful for recent purchasers of test automation tools, technical managers, vendors, and consultants. The authors are consultant partners in a company that provides consultancy and training in software testing and test automation. Annotation copyrighted by Book News, Inc., Portland, OR

Download or read book Just Enough Software Test Automation written by Daniel J. Mosley and published by Prentice Hall Professional. This book was released on 2002 with total page 282 pages. Available in PDF, EPUB and Kindle. Book excerpt: Offers advice on designing and implementing a software test automation infrastructure, and identifies what current popular testing approaches can and cannot accomplish. Rejecting the automation life cycle model, the authors favor limited automation of unit, integration, and system testing. They also present a control synchronized data-driven framework to help jump-start an automation project. Examples are provided in the Rational suite test studio, and source code is available at a supporting web site. Annotation copyrighted by Book News, Inc., Portland, OR.

Download or read book Mobile Test Automation with Appium written by Nishant Verma and published by Packt Publishing Ltd. This book was released on 2017-06-30 with total page 250 pages. Available in PDF, EPUB and Kindle. Book excerpt: Automate your mobile app testing About This Book How to automate testing with Appium Apply techniques for creating comprehensive tests How to test on physical devices or emulators Who This Book Is For Are you a mobile developer or a software tester who wishes to use Appium for your test automation? If so, then this is the right book for you .You must have basic Java programming knowledge. You don't need to have prior knowledge of Appium. What You Will Learn Discover Appium and how to set up an automation framework for mobile testing Understand desired capabilities and learn to find element locators Learn to automate gestures and synchronize tests using Appium Take an incremental approach to implement page object pattern Learn to run Appium tests on emulators or physical devices Set up Jenkins to run mobile automation tests by easy to learn steps Discover tips and tricks to record video of test execution, inter app automation concepts Learn to run Appium tests in parallel on multiple devices simultaneously In Detail Appium is an open source test automation framework for mobile applications. It allows you to test all three types of mobile applications: native, hybrid, and mobile web. It allows you to run the automated tests on actual devices, emulators, and simulators. Today, when every mobile app is made on at least two platforms, iOS and Android, you need a tool that allows you to test across platforms. Having two different frameworks for the same app increases the cost of the product and time to maintain it as well. Appium helps save this cost. With mobile app growth exploding, mobile app automation is mainstream now. In this book, author Nishant Verma provides you with a firm grounding in the concepts of Appium while diving into how to set up appium & Cucumber-jvm test automation framework, implement page object design pattern, automate gestures, test execution on emulators and physical devices, and implement continuous integration with Jenkins. The mobile app we have referenced in this book is Quikr because of its relatively lower learning curve to understand the application. It's a local classifieds shopping app. Style and approach This book takes a practical, step-by-step approach to testing and automating individual apps such as native, hybrid, and mobile web apps using different examples.

Download or read book Cloud Security Automation written by Prashant Priyam and published by Packt Publishing Ltd. This book was released on 2018-03-28 with total page 326 pages. Available in PDF, EPUB and Kindle. Book excerpt: Secure public and private cloud workloads with this comprehensive learning guide. Key Features Take your cloud security functions to the next level by automation Learn to automate your security functions on AWS and OpenStack Practical approach towards securing your workloads efficiently Book Description Security issues are still a major concern for all IT organizations. For many enterprises, the move to cloud computing has raised concerns for security, but when applications are architected with focus on security, cloud platforms can be made just as secure as on-premises platforms. Cloud instances can be kept secure by employing security automation that helps make your data meet your organization's security policy. This book starts with the basics of why cloud security is important and how automation can be the most effective way of controlling cloud security. You will then delve deeper into the AWS cloud environment and its security services by dealing with security functions such as Identity and Access Management and will also learn how these services can be automated. Moving forward, you will come across aspects such as cloud storage and data security, automating cloud deployments, and so on. Then, you'll work with OpenStack security modules and learn how private cloud security functions can be automated for better time- and cost-effectiveness. Toward the end of the book, you will gain an understanding of the security compliance requirements for your Cloud. By the end of this book, you will have hands-on experience of automating your cloud security and governance. What you will learn Define security for public and private cloud services Address the security concerns of your cloud Understand Identity and Access Management Get acquainted with cloud storage and network security Improve and optimize public and private cloud security Automate cloud security Understand the security compliance requirements of your cloud Who this book is for This book is targeted at DevOps Engineers, Security professionals, or any stakeholders responsible for securing cloud workloads. Prior experience with AWS or OpenStack will be an advantage.

Download or read book Implementing Automated Software Testing written by Elfriede Dustin and published by Pearson Education. This book was released on 2009-03-04 with total page 576 pages. Available in PDF, EPUB and Kindle. Book excerpt: “This book fills a huge gap in our knowledge of software testing. It does an excellent job describing how test automation differs from other test activities, and clearly lays out what kind of skills and knowledge are needed to automate tests. The book is essential reading for students of testing and a bible for practitioners.” –Jeff Offutt, Professor of Software Engineering, George Mason University “This new book naturally expands upon its predecessor, Automated Software Testing, and is the perfect reference for software practitioners applying automated software testing to their development efforts. Mandatory reading for software testing professionals!” –Jeff Rashka, PMP, Coauthor of Automated Software Testing and Quality Web Systems Testing accounts for an increasingly large percentage of the time and cost of new software development. Using automated software testing (AST), developers and software testers can optimize the software testing lifecycle and thus reduce cost. As technologies and development grow increasingly complex, AST becomes even more indispensable. This book builds on some of the proven practices and the automated testing lifecycle methodology (ATLM) described in Automated Software Testing and provides a renewed practical, start-to-finish guide to implementing AST successfully. In Implementing Automated Software Testing, three leading experts explain AST in detail, systematically reviewing its components, capabilities, and limitations. Drawing on their experience deploying AST in both defense and commercial industry, they walk you through the entire implementation process–identifying best practices, crucial success factors, and key pitfalls along with solutions for avoiding them. You will learn how to: Make a realistic business case for AST, and use it to drive your initiative Clarify your testing requirements and develop an automation strategy that reflects them Build efficient test environments and choose the right automation tools and techniques for your environment Use proven metrics to continuously track your progress and adjust accordingly Whether you’re a test professional, QA specialist, project manager, or developer, this book can help you bring unprecedented efficiency to testing–and then use AST to improve your entire development lifecycle.

Download or read book Hands On Security in DevOps written by Tony Hsiang-Chih Hsu and published by Packt Publishing Ltd. This book was released on 2018-07-30 with total page 341 pages. Available in PDF, EPUB and Kindle. Book excerpt: Protect your organization's security at all levels by introducing the latest strategies for securing DevOps Key Features Integrate security at each layer of the DevOps pipeline Discover security practices to protect your cloud services by detecting fraud and intrusion Explore solutions to infrastructure security using DevOps principles Book Description DevOps has provided speed and quality benefits with continuous development and deployment methods, but it does not guarantee the security of an entire organization. Hands-On Security in DevOps shows you how to adopt DevOps techniques to continuously improve your organization’s security at every level, rather than just focusing on protecting your infrastructure. This guide combines DevOps and security to help you to protect cloud services, and teaches you how to use techniques to integrate security directly in your product. You will learn how to implement security at every layer, such as for the web application, cloud infrastructure, communication, and the delivery pipeline layers. With the help of practical examples, you’ll explore the core security aspects, such as blocking attacks, fraud detection, cloud forensics, and incident response. In the concluding chapters, you will cover topics on extending DevOps security, such as risk assessment, threat modeling, and continuous security. By the end of this book, you will be well-versed in implementing security in all layers of your organization and be confident in monitoring and blocking attacks throughout your cloud services. What you will learn Understand DevSecOps culture and organization Learn security requirements, management, and metrics Secure your architecture design by looking at threat modeling, coding tools and practices Handle most common security issues and explore black and white-box testing tools and practices Work with security monitoring toolkits and online fraud detection rules Explore GDPR and PII handling case studies to understand the DevSecOps lifecycle Who this book is for Hands-On Security in DevOps is for system administrators, security consultants, and DevOps engineers who want to secure their entire organization. Basic understanding of Cloud computing, automation frameworks, and programming is necessary.

Download or read book Experiences of Test Automation written by Dorothy Graham and published by Addison-Wesley Professional. This book was released on 2012 with total page 672 pages. Available in PDF, EPUB and Kindle. Book excerpt: In this work, over 40 pioneering implementers share their experiences and best practices in 28 case studies. Drawing on their insights, you can avoid the pitfalls associated with test automation, and achieve powerful results on every metric you care about: quality, cost, time to market, usability, and value.