How performance testing and pentesting go hand in hand sometimes

Performance testing is not a simple subject and many leading experts still do not fully agree on the topic. How it’s used and how people mis-use it has been a topic of debate for as long as computer systems had to support multiple users. Not is measuring the performance of an application had to measure, it’s even harder to predict and it can even have an impact on penetration testing as both (D)DoS attacks and performance testing attempt to emulate great volumes of users. Knowing this it becomes easier to see why managers should start paying attention to this obscure branch of software quality characteristics.

Non functional-requirements

All of this originates from somewhere, the big bang as you will and we will need to go back to the beginning to find out more about this monster. When software developers make their artworks on the keyboard, they do so on the instruction of an analyst who designs a feature according to their needs. These features will include requirements like “As a user i need to be able to log in if i enter a correct username and password”.

I intentionally made a mistake in that previous sentence that’s not so easy to find, go back and see if you can spot it. The mistake i refering to is that i said a correct username and password but never mentioned they had to be a valid combination. This shows how easy is to make a small mistake that might be misinterpreted and it’s an issue companies have been plagued with for…