CiviCRM Community Forums (archive)

Hello Everyone,
                     After discussing with the mentor on the integration of mosaico with CiviCRM who told me it is no longer an idea , I may like to reiterate that i would like to work on the testing project as i need this on my final project by the end of this year and also as It may sound pleasing that i apply the knowledge i acquired in order to bring this project to completion.

Among the ideas, i got interested on  Fuzzy Testing.
 
 With the research skills i have i took it upon myself to go ahead with the aim of the project idea. Already i have gone through the following as i arrange them below;

  **  Testing
                         - identified what kind of testing is needed for the project
                         - reviewed many static techniques and dynamic testing techniques
           
       *** testing techniques
                         - the probable testing technique suitable and the reasons for them being chosen as important
                         - looked at if there is a posibility if the chosen technique is generally a good one and if it matches the the quality assurance team of CiviCRM 
       
       **** Dynamic Testing
                         - Black-Box Testing
                         - Whte-Box Testing
I therefore think have knowledge on functional testing and non-functional testing to take care of the quality assurance issues of CiviCRM

Currently I am working on the possibly tools and frameworks which could be used to address most of the aims of the project idea and i have stumbled on one popular one and i have made some research on it but i need probably to clarify myself on some issues before i continue with writing the proposal for this project.

I will be glad if i could discuss this with the proposed mentor @totten so i can sharpen these ideas and complete my proposal and submit before the deadline

Thanks for your humble response in advance

Eugene
 

 

What plateform did you look at?

Hi Eugene,
                      Just going through the discussion threads now and realize we're working on thesame project idea. I have also been doing some research on the topic and I also stumble on Sulley, but further research reveals that Sulley’s latest release is buggy and has fallen out of maintenance to say the least.

I came up with these four :-
1. WebScarab
2. JBroFuzz
3. boofuzz
4. Peach Fuzzing Platform (though I still have some reservations here due it corporate nature support)
You can also take a look at them and then let's see if we can come up with something better.  Also do you think developing a our own CiviCRM fuzzy testing framework form scratch is feasible??

Regards
mesode

Hi Eugene,

<<So far I evaluate Sulley as the best of all the tools i have come across.>>
That should only be as far as you have gone with your research. I will also like you to take a look at this. https://github.com/jtpereyda/boofuzz.
I am sure you will be able see why I write Sulley off!

cheers
mesode

Hi Mesode, xavier,
                       Thanks for your proposition, I seem to like foobuzz  because it was forked and customized from the sulley testing framework and it addresses most of these issues which sulley fails to address like installation and use though it still has little documentation on *nix environments though it still references sulley in its documentation and also has very little on its getting started. but OVERALL IT IS BETTER THAN SULLEY.

Xavier: i have contacted Joshua to check if they think it will fit and many other questions as concerning the use of their framework

Cheers
eugene

Hi Mesode, 
                     I wish to ask to what extent you have gone with the boofuzz platform and if at all you have gone past research " i mean like trying to use the platform"
I have tried and i have so many difficulties so i propose that while waiting on Joshua It will be important to see if we can analyze the process behind the functioning of fuzz testing of webapps so if it comes out that it be utmost to bring up one we will quickly do that.

I am still into exploring more of foobuzz but already it has many dependencies which i am trying to figure how to install but i do believe that ff Joshua replies he might have a better way to make the whole issue understandable

while i continue with more on exploring i will propose u do the same and let us see how this can be done.

Regards
Eugene

Hi Mesode,
                     I am using an ubuntu system and i succesfully installed boofuzz using pip ans stated in https://github.com/jtpereyda/boofuzz/blob/master/INSTALL.rst and i had to check out what boofuz is composed of and the various python scripts which are written on the framework and i stumbbled on some fuzz examples in the examples folder so i understood the examples and what they do, so i  edited them to run a sample and the stack trace what i did  i have pasted here  http://pastebin.com/fHpGgf0b    . seems you have gone through the framework, installed and used it so i wish you can explain to me what is wrong from the paste i made on pastebin.com . I suggest you give ur IRC nick and tell me when to meet you on the channel so we can chat faster. Waiting on you soonest

Regards
Eugene

Hi Mesode,
                      Do u understand python very well because i do understand , I got your IRC nick and i will get to you on IRC. But fortunately for me you didn't speak about the stack i pasted on pastebin. While waiting on Joshua I will continue to explore the Framework and look forward to solve the issues i have. Please if you do have experience in python and have a walk around the platform do well to help me with the issues i have.

Regards
Eugene