Thermodynamics and Its Applications (3rd Edition) Review

Average Reviews:

(More customer reviews)I have taken 3 years of thermodynamics with different books. This book being the worst! I felt I 'delearned' after trying to read some of the chapters. The early chapters were good in explaining the basis of thermodynamics. The rest of the book is way too general, the equations are derived for extremely general cases and it makes trying to relate to real world situations near impossible. The problems at the end of the chapters are not easy and there are NO good examples within the chapters. The problems are written poorly and often open to interpretation so students can get 5 or 6 different answers to one problem. If you are forced to use this book I would recommend that you do NOT read the chapters, only work the problems. Buy a different book to study thermodynamics from.

Click Here to see more reviews about: Thermodynamics and Its Applications (3rd Edition)

Based on the authors' graduate courses at MIT, this text and reference provides a unified understanding of both the critical concepts of chemical thermodynamics and their applications.Part I of this book provides the theoretical basis of classical thermodynamics, including the 1st and 2nd laws, the Fundamental Equation, Legendre transformations, and general equilibrium criteria. Part II contains an extensive description of how thermodynamic properties are correlated, modeled, manipulated and estimated. Both macroscopic, empirically-based and molecular-level approaches are discussed in-depth, for pure components and mixtures. New, detailed coverage shows how traditional macroscopic models are connected to their roots at the molecular level. Part III presents applications of classical thermodynamics in detail. The book connects theory with applications at every opportunity, using extensive examples, classroom problems and homework exercises.Chemical engineering and physical chemistry graduate courses in thermodynamics.

Get 12% OFF

Buy cheap Thermodynamics and Its Applications (3rd Edition) now.

A History of Western Astrology Review

Average Reviews:

(More customer reviews)I give this book a mildly enthusiastic 5 stars. My passion for the book is somewhat diminished in that his history is rather insular: one learns a great deals about the thought of some of the central figures in the history of astrology, but almost nothing about the historical or social setting of that discipline. For instance, a general knowledge of Greek science is utterly essential in understanding the manner in which astology first developed in the West. Tester seems to assume a mastery of this background.
Despite this, Tester discusses all the key figures in the history of Western astrology from the Hellenistic period through the Renaissance, and does so with depth and subtlety.
It should be added that this is a very scholarly treatment of the subject. Anyone seeking a popular history of the subject or anyone who actually believes in the validity of astrology is likely not to find this volume to their liking. But those who enjoy the works of authors like Frances Yates and Keith Thomas, this volume will prove to be of great interest.

Click Here to see more reviews about: A History of Western Astrology

`Superb general account.' Times Literary SupplementThe story of the history of Western astrology begins with the philosophers of Greece in the 5th century BC. To the magic and stargazing of Egypt the Greeks added numerology, geometryand rational thought. The philosophy of Plato and later of the Stoics made astrology respectable, and by the time Ptolemy wrote his textbook the Tetrabiblos, in the second century AD, the main lines of astrological practice as it is known today had already been laid down. In future centuries astrology shifted to Islam only to return to the West in medieval times where it flourished until the shift of ideas during the Renaissance.

Buy cheap A History of Western Astrology now.

Software Testing Foundations: A Study Guide for the Certified Tester Exam (Rockynook Computing) Review

Average Reviews:

(More customer reviews)There are now three well-known books on the ISTQB syllabus for foundation software testing examinations. This was the first, and the others may have since taken a different emphasis. Originally written in German, the book has been translated into English, and covers basic testing topics.
The difficulty about a testing book is that it will be read by testers, trained to find faults as part of our role in life. This book may to be aimed at the non-English, European market place, following its origins. Some of the translation is `interesting', and is more literal than catching the meaning of the words, so can read in a stilted fashion. Annoyingly, there is reference to `chapters' in the chapter on techniques, when it clearly means `sections' or part-chapters. The discussion of the value of a certified tester in chapter 6 would be better in the introductory chapter 1.
Spillner, Linz and Schaefer are well respected in the testing community, and have written a book that covers the syllabus. However, it is not greatly geared towards the examination; although there are revision questions, these are neither multiple choice, nor are the answers provided. There are also areas where there is significant extension beyond the syllabus content (standards is a case in point - and can probably be correctly attributed to a specific one of the authors).
There is a good glossary of testing terms, and the text clearly identifies items that appear in the glossary. It is useful to not only have web links, but also to specify when the web links were known to be valid. I found the use of a case study that runs throughout the book to be helpful. There are some key thoughts that are well worth remembering; one for me was "Robustness has its costs".
Strangely, I would say that there is both too much code (pseudo-code) present, and too little. It is perfectly possible to pass the ISTQB examination with little or no knowledge of how to read or write code, and references to code in early chapters could have non-coders pressing the panic button. Conversely, any discussion of structural test techniques should have examples of code, as exams routinely have code-based questions concerning techniques. The treatment of statement testing was somewhat shallow, with the cases where there are `empty' branches and non-empty branches barely distinguished. However, the coverage of when to use particular techniques was good and comprehensive.
Discussion in an early chapter postulates determining whether a set is code is ready to exit a particular stage of testing by examining the number of incidents raised per testing hour. It even suggests than when down below 2, it may be time to ship. This is a good notion, but I suspect the numbers are out by some way. To be still finding 2 incidents per testing hour, even on very large, complex systems, would indicate to me that the product is NOT ready for shipping. Additionally, the treatment of cyclomatic complexity is adequate, but this useful measurement is only calculated one way, not using the alternatives that are available (the most straightforward being `the number of decisions + 1').
There is a lot of material covered, and in some places, this appears rather list-like in appearance, unclear when lists are contained in the syllabus, and when not. It is better to say that the book assists candidates in preparation for the ISTQB Foundation, rather than being a direct aid as the sole point of reference. Read it take good things from it and mind the short-comings, but do not use it as your only testing book.
Peter Morgan, Bath, UK (morganp@supanet.com)

Click Here to see more reviews about: Software Testing Foundations: A Study Guide for the Certified Tester Exam (Rockynook Computing)


The ISTQB Certified Tester exam was developed toward an international standard which includes 47 international testing boards. Today more than 130,000 people have taken the International Software Testing Qualifications Board (ISTQB) Foundations Level exam. So, where can all these people go to learn what they need to know in order to pass the exam? Now they can go to Software Testing Foundations, 3rd Edition, from Rocky Nook's Computing division. Professional testing of software has become an increasingly important task that requires a profound knowledge of testing techniques. The ISTQB has developed a universally accepted, international qualification scheme aimed at software and system testing professionals, and has created the syllabi and the tests for the "Certified Tester." With authors who are among the founders of the Certified Tester Syllabus, this thoroughly revised and updated 3rd Edition covers the "Foundations Level" (i.e., entry level) and teaches the most important methods of software testing. It is designed for self-study and provides the knowledge necessary to pass the Certified Tester: Foundations Level exam as defined by the ISTQB. Additionally, in this new edition, technical terms have been stated more precisely according to the revised and uptated ISTQB glossary.

Get 11% OFF

Buy cheap Software Testing Foundations: A Study Guide for the Certified Tester Exam (Rockynook Computing) now.

Google Hacking for Penetration Testers Review

Average Reviews:

(More customer reviews)While Google is a researcher's friend, it is a hacker's dream. The subtitle of Google Hacking for Penetration Testers is "Explore the Dark Side of Googling". The dark side of Google is that far too many networks are insecure with inadequate security and enable unauthorized information to leak into Google. This leakage creates the situation where significant amounts of password files, confidential information, and configuration data and much more are easily available.
After reading Google Hacks: Tips & Tools for Smarter Searching, the real power and potential danger of Google is easily understood. Author Johnny Long details how penetration testers can harvest information that has been crawled by Google. The need for Google to be an integral part of any penetration test is now easily understood.
In a similar manner, when Dan Farmer wrote SATAN in 1995, it was met with significant consternation in that many felt he was wrong to release such a powerful program into the wild. Silicon Graphics, his employer at the time, considered his conduct unprofessional and summarily fired him. Ironically, in 2005, a security administrator can be fired if they don't run a vulnerability scanner akin to SATAN. Running scanning tools is now part of security due diligence and any administrator not running such a tool is careless.
With that, some may think author Johnny Long gives far too much ammunition to those seeking to peruse corporate data, but those were the same mistaken objections to SATAN. The book is not meant to be a crutch for script kiddies, its aim is rather to show how Google can be used to uncover data that most companies would rather remain secured. It is simply a matter of time until such Google searches will be considered due diligence for any basic security endeavor.
The book's 12 chapters show how one can plunder and pillage corporate data via Google. Chapters 1 and 2 provide a basic introduction to Google searching, including building Google queries, URL and operator syntax, search reduction, and more.
Chapters 3 through 10 detail the internals of Google hacking. The avenues of attack are nearly endless and various methods are detailed from traversal techniques, site crawling, tracking down Web server logins, and much more. With the sheer amount of data produced on corporate Web sites, it is hard not to have information leakage. The problem is that Google is the perfect glue to bond those disparate pieces of data together to form a dangerous set of connected data. Google is now gluing isolated data, which is dangerous data when in the wrong hands.
Chapter 11 details what can be done to protect an organization from Google hackers. While author Johnny Long may be a hacker, he is quite mainstream when he writes that the best hardware and software configuration money can buy can't protect computing resources if an effective security policy is not in place. Long observes that a good security policy, when properly enforced, outlines the assets the organization is trying to protect, how the protection mechanisms are installed, the acceptable level of operational risk, and what do to in the event of a compromise or disaster.
Chapter 11 details the use of the robots.txt file, which can be used to block Web crawlers such as Google. The chapter also recommends the use of various tools to secure an internal Web site. Tools from Foundstone are detailed, in addition to Gooscan, a tool created by Long that enables bulk Google searches to determine how much information has leaked.
A decade ago, Google was the type of powerful search tool that was rumored to be used within the NSA. Today, petabytes of data are only a few clicks away on Google, and with the Google API, all of that information can be seamlessly integrated into a few scripts. The challenge companies face is to take security seriously and stop making it easy for their password files, payroll data, and other confidential information to be entered into Google's server farm.

Click Here to see more reviews about: Google Hacking for Penetration Testers

A self-respecting Google hacker spends hours trolling the Internet for juicy stuff. Firing off search after search, they thrive on the thrill of finding clean, mean, streamlined queries and get a real rush from sharing those queries and trading screenshots of their findings. I know because I've seen it with my own eyes. As the founder of the Google Hacking Database (GHDB) and the Search engine hacking forums at http://johnny.ihackstuff.com, I am constantly amazed at what the Google hacking community comes up with. It turns out the rumors are true-creative Google searches can reveal medical, financial, proprietary and even classified information. Despite government edicts, regulation and protection acts like HIPPA and the constant barking of security watchdogs, this problem still persists. Stuff still makes it out onto the web, and Google hackers snatch it right up. Protect yourself from Google hackers with this new volume of information.-Johnny Long .Learn Google Searching BasicsExplore Google's Web-based Interface, build Google queries, and work with Google URLs..Use Advanced Operators to Perform Advanced QueriesCombine advanced operators and learn about colliding operators and bad search-fu..Learn the Ways of the Google HackerSee how to use caches for anonymity and review directory listings and traversal techniques..Review Document Grinding and Database DiggingSee the ways to use Google to locate documents and then search within the documents to locate information. .Understand Google's Part in an Information Collection FrameworkLearn the principles of automating searches and the applications of data mining..Locate Exploits and Finding TargetsLocate exploit code and then vulnerable targets..See Ten Simple Security SearchesLearn a few searches that give good results just about every time and are good for a security assessment..Track Down Web ServersLocate and profile web servers, login portals, network hardware and utilities..See How Bad Guys Troll for DataFind ways to search for usernames, passwords, credit card numbers, social security numbers, and other juicy information..Hack Google ServicesLearn more about the AJAX Search API, Calendar, Blogger, Blog Search, and more.

Get 49% OFF

Buy cheap Google Hacking for Penetration Testers now.

Software Test Engineering with IBM Rational Functional Tester: The Definitive Resource Review

Average Reviews:

(More customer reviews)Well I awaited a few months for this book, it arrived just before Santa!
If you do not wish to pay for the courses available, then this book is by far the cheaper alternative.
It is well put together and easy to follow for beginners in the RFT automation field of software testing.
There are good chapters dedicated to building support for new objects and managing script execution. For a novice like myself, this book contained great insight to assist furthering my understanding of the tool. It also delivered in a clear and at a simple level. I found it easy to read, with good descriptions and explanations. Albeit some of the areas that are being described are not easy concepts. There is also good appendix on regular expressions and logging techniques.
It would have been nice to have had a story board project other than the classicjava. Code snippets are provided both in VB.Net and Java albeit on paper (you can get the download version).
On the whole I am impressed with the book and it has assisted my testing and I continually go back to it for reference.

Click Here to see more reviews about: Software Test Engineering with IBM Rational Functional Tester: The Definitive Resource

Praise for Software Test Engineering with IBM Rational Functional Tester


“Finally, a manual for the Software Test Engineer! Many manuals on the market today are geared toward developers, and none exist for Rational Functional Tester. This is one of the first manuals geared toward the Automated Test Engineer acknowledging the depth of knowledge required for a very complex job. The manual will assist all levels of test engineering with very specific steps and hands-on advice. This manual is a reference book that no Automated Test Engineer using RFT should be without!”
—Penny Bowser, CTFL, CHE, QA Manager

“The authors succeed in walking a line between sharing a wealth of technical knowledge and providing enough context to ensure the readers understand what they need to do and why. Novices and skilled practitioners alike should find the work a good read and a solid reference. Automating functional testing tends to receive less investment than it should, to the detriment of organizations everywhere. If the reader is seeking to improve his knowledge of Rational Functional Tester and make an impact using that knowledge, there is no better reference than this excellent distillation of years of field-proven experience.”
—David J. Trent, Market Manager of Process and Best Practices Segment for Rational Software, IBM

“As a former manager of the group that tested IBM’s Rational Functional Tester, like a few others, I see clearly how this book can help teams multiply the benefits they derive from this product.”
—Ted Rivera, Senior Agile Transformation Architect, IBM Software Group

“This book is a wonderful, in-depth resource for novice and expert users alike.”
—Brian McCall, former IBM IT Specialist

“This collection of Rational Functional Tester information is a ‘must have’ for anyone using this solution. Everyone from beginners to advanced users will find this book very helpful.”
—Lew Cote, IBM Technical Solution Architect

“This much-needed book effectively describes the value of Rational Functional Tester for functional testing needs. The book is well organized, thought through, and has all the latest information. The authors are no doubt subject matter experts.”
—Kamala Parvathanathan, Senior Manager, IBM Rational

The Indispensable Resource for Automated Testing

Automated software testing has become a critical exercise, especially for developers utilizing iterative and agile methods. However, to achieve the full benefits of automated testing, teams need a deep understanding of both its principles and their testing tools. If you’re among the thousands of developers using IBM Rational Functional Tester (RFT), this book brings together all the insight, examples, and real-world solutions you need to succeed. Eight leading IBM testing experts thoroughly introduce this state-of-the-art product, covering issues ranging from building test environments through executing the most complex and powerful tests. Drawing on decades of experience with IBM Rational testing products, they address both technical and nontechnical challenges and present everything from best practices to reusable code.

Coverage Includes

Integrating IBM RFT into your development processes

Get 23% OFF

Buy cheap Software Test Engineering with IBM Rational Functional Tester: The Definitive Resource now.

How to Become a Game Tester Review

Average Reviews:

(More customer reviews)I received my book in only 2 days and when i opened it i was pleased. the only thing i did not like was the fact that the cover was a bit scratched up. Other then that it came in perfect condition. :)

Click Here to see more reviews about: How to Become a Game Tester

How to Become a Game Tester is a comprehensive guide to a career in video game testing and quality assurance. Discover industry information, like the different types of game testing, the positions related to testing games, and the important skills game testers need to succeed in the fiercely competitive field. Also included is a complete list of accredited colleges and universities that grant video game related degrees, as well as a guide to all the game development companies in the United States. If you want the edge, and you're ready to get serious about becoming a game tester, then you need How to Become a Game Tester.

Buy cheap How to Become a Game Tester now.

Tube Testers and Classic Electronic Test Gear Review

Average Reviews:

(More customer reviews)EXCELLENT treatise by well known "Vintage Radio" author Alan Douglas on the many well known (Hickok, Heath, Eico, B&K, Precision) and "not-so-well-known" (Military, AVO, Western Electric, Mercury, Triplett, Weston) Vacuum Tube Testers. While the major topic of this book is Vacuum Tube Testers, other "Classic" and very useful pieces of test equipment for troubleshooting "Vintage" Audio and Radio equipment are also examined. Items such as Capacitor Testers, Noise Bridges, Impedance Bridges, Curve Tracers, Signal Generators, and HV DC power supplies are covered.
Alan Douglas also provides the reader with wonderful insight into a variety of testing and test equipment related topics that have been "difficult to explain" for decades. Testing issues such as: why tube tester readings disagree for the same tube tested, using Curve Tracers for characterizing vacuum tubes (other than the Tektronix 570!), building the "Ultimate Tube Tester", how to REALLY obtain and interpret tube characteristic curves, how to relate measured tube data to manufacturer's published tube data, proper Capacitor testing; including ESR and leakage, as well as test equipment restoration and maintenance tips.
This book imparts a "WEALTH OF KNOWLEDGE" to the reader about Classic Vacuum Tube Testers and Test Equipment. However it is NOT a "review" of tube testers or test equipment on a "which one is better" or "what is the BEST" type of basis. Rather, it is a careful examination and explanation of the "method of operation" as well as the "inherent limitations" for a multitude of vacuum tube testers and test equipment. Numerous and detailed photographs of practically EVERYTHING described makes this a book that is destined to quickly become a "Standard of Reference" for all of us that enjoy working on Vintage Vacuum tube Audio and Radio equipment as well as testing and selecting vacuum tubes for optimum performance in a particular application. A "must have" book for those considering what tube tester(s) to purchase for their needs and/or which ones to retain in their "collection".
[NOTE: IMHO, this book is NOT intended for the "average user" of vintage Radio, Audio or "Audiophile" equipment. Although the "average user" may be able to glean some useful "tips & general information" on the test equipment listed, the "intended reader audience" is those who are thoroughly knowledgeable in electronics and regularly work on vintage, vacuum tube based, electronic equipment (for either fun or profit).]

Click Here to see more reviews about: Tube Testers and Classic Electronic Test Gear

Provides an overview of pre-1970 (vacuum tube) test equipment. Tube testers from 23 manufacturers are tabulated and pictured. Also covers VOMs, VTVMS, Q Meters, Grid Dip Meters, Signal Generators, Signal Tracers and Oscilloscopes. Brief company histories of the manufacturers are also presented. Over 300 photos and illustrations.

Get 34% OFF

Buy cheap Tube Testers and Classic Electronic Test Gear now.

A Tester's Guide to .NET Programming (Expert's Voice) Review

Average Reviews:

(More customer reviews)This book is well written, with enough demo code to appeal to those testers with programming experience, yet understandable for those less technical. The organization is superb, with appendices to provide more in-depth information and quick reference, allowing the more experienced readers to jump right to the areas of interest. Definitely a valuable tool for anyone involved in testing .NET applications.

Click Here to see more reviews about: A Tester's Guide to .NET Programming (Expert's Voice)


Testing in .NET Environments focuses solely on applied programming techniques for testers. You will learn how to write simple automated tests, enabling you to test tools and utilities. You will also learn about the important concepts driving modern programming today, like multitier applications and object-oriented programming. More businesses are adopting .NET technologies, and this book will equip you to assess software robustness and performance.

Whether you're an experienced programmer who's unfamiliar with testing concepts, or you're an experienced tester unversed in VB .NET and C#, the included real-world tips and example code will help you start your projects. Also included are review questions and hands-on exercises to help you retain knowledge. Additionally, the book features examples and quick language tutorials for both C# and VB .NET.

Get 19% OFF

Buy cheap A Tester's Guide to .NET Programming (Expert's Voice) now.

Penetration Tester's Open Source Toolkit, Vol. 2 Review

Average Reviews:

(More customer reviews)Penetration testing is definitely a recommended security discipline that helps you find real vulnerabilities and security wholes before the adversary does. This book is a reference guide of the different penetration testing stages and considerations, covering a wide range of technologies and tools. It is just focused on open-source and freely available tools, and do not include any commercial counterparts, like Core Impact or the specialized Web application testing suites. Perhaps this is a good addition for a future edition without the "open-source" term on its title.
The wide scope of the book is one of the reasons why it is not extremely cutting-edge and does not go into the deep details required to master each topic covered. I completely understand it is not possible to create such a book (at least with less than 9999 pages), covering a wide range of topics and including in-depth details. Overall, this book is a good reference guide (in fact one of the few generic references) that will open the door for more advanced knowledge from other books focused on specific areas, such as wireless, Web applications, databases, etc.
Something that can be quickly appreciated is the involvement of multiple authors, as the quality and look and feel of chapters varies. I specially liked the first two chapters, focused on Recon, Enumeration and Scanning. Even if you're an experience pen-tester, I've been doing penetration tests since 2000, you can easily identify the positive SensePost influence on these chapters, and the section contains valuable tips and tricks. At some extent, the "you always have something new to learn" principle applies here.
The book is really good emphasizing best practices and suggestions from a professional pen-testing perspective. When running tests over production environments, there are lots of considerations to need to have in mind, beyond the pure attack techniques. The book does an excellent work on this area, and this is also ratified by the final chapter detailing how to build your own pen-testing lab, including common political and technical issues (I can confirm I've seen lots of them in real world situations). Once you run pen-tests frequently, you need to customize and build your own scripts and tool set. The book also emphasizes this by explaining how to customize the Backtrack CD with your own additions. Definitely, it is a good approach as Backtrack is the reference pen-testing Linux Live CD distribution nowadays.
At first sight, the book structure is a bit strange and it seems there is a lot of repetition on each and every chapter, but once you get used to it, I think is a great approach. Each chapter introduces the goals and scope, then covers the technologies (or pen-testing phases) analyzed, plus the hacking techniques and vulnerabilities involved, and after that it focuses on the tools required to implement the attacks and how to use them, with practical and detailed examples.
It is crucial to differentiate between the techniques and foundations, and the tools, as multiple tools can be used for the same attack, sometimes you do not even need any hacking tool, and new tools will come in the future. I recommend you to master the techniques, the attack principles, and understand the vulnerabilities, and from there, select the best tool on each case. All this structure is complemented with a final case studies subsection on each chapter that exemplifies real-world situations where the techniques and tools can be applied, and how.
The databases, wireless and network devices hacking chapters are good. They provide some insight in the methodology, hacking tools and techniques available for these type of targets. The database hacking focuses on MS SQL Server and Oracle, for sure the most common DB's available out there. The wireless section mainly focuses on WiFi, and Bluetooth is barely mentioned; not enough. And finally, the network devices chapter is a must, as these systems are typically forgotten, although they manage all the network traffic and are a critical IT component of any organization.
In particular, I didn't like too much the Web application chapter. Although it contains lots of tools references, the structure and methodology presented is not very clear, and there is a kind of mix of tools to perform different tasks. Because Web application pen-testing is one of the cutting-edge areas we are dealing with today, I'd have liked to see more quality and in-depth material on it.
From my point of view, the forensic chapter is not related at all with the book and I would completely remove it. There are other very good forensic books available, so I guess it has been included because the tools and infrastructure for basic forensic analysis is available on Backtrack.
Instead, I would have liked to see more details, practical examples, and resources about vulnerable testing environments, such as the DVL (Damn Vulnerable Linux) distro, WebGoat, the Foundstone hackme suites; just to name a few, as well as Capture-the-Flag scenarios and conference references. It would be great to provide an overview on how to build and break into these testing environments using the tools and techniques covered throughout the book.
I strongly recommend this book to people thinking about, or starting on, the penetration testing field. It provides a good and wide overview of topics you need to master, tools available to launch the appropriate attacks, and other pen-testing best practices. As the book is directly aligned with the Backtrack CD, unfortunately version 2 and not the latest version 3 (time for a new edition, including more Bluetooth stuff and adding VoIP hacking ;)), it has a direct and very strong hands-on component, that allows the reader to test the different tools and examples, and makes it very valuable.

Click Here to see more reviews about: Penetration Tester's Open Source Toolkit, Vol. 2

Penetration testing a network requires a delicate balance of art and science. A penetration tester must be creative enough to think outside of the box to determine the best attack vector into his own network, and also be expert in using the literally hundreds of tools required to execute the plan. This second volume adds over 300 new pentesting applications included with BackTrack 2 to the pen tester's toolkit. It includes the latest information on Snort, Nessus, Wireshark, Metasploit, Kismet and all of the other major Open Source platforms. .Perform Network ReconnaissanceMaster the objectives, methodology, and tools of the least understood aspect of a penetration test..Demystify Enumeration and ScanningIdentify the purpose and type of the target systems, obtain specific information about the versions of the services that are running on the systems, and list the targets and services..Hack Database ServicesUnderstand and identify common database service vulnerabilities, discover database services, attack database authentication mechanisms, analyze the contents of the database, and use the database to obtain access to the host operating system..Test Web Servers and ApplicationsCompromise the Web server due to vulnerabilities on the server daemon itself, its unhardened state, or vulnerabilities within the Web applications..Test Wireless Networks and DevicesUnderstand WLAN vulnerabilities, attack WLAN encryption, master information gathering tools, and deploy exploitation tools..Examine Vulnerabilities on Network Routers and SwitchesUse Traceroute, Nmap, ike-scan, Cisco Torch, Finger, Nessus, onesixtyone, Hydra, Ettercap, and more to attack your network devices..Customize BackTrack 2Torque BackTrack 2 for your specialized needs through module management, unique hard drive installations, and USB installations..Perform Forensic Discovery and Analysis with BackTrack 2Use BackTrack in the field for forensic analysis, image acquisition, and file carving..Build Your Own PenTesting LabEverything you need to build your own fully functional attack lab.

Get 35% OFF

Buy cheap Penetration Tester's Open Source Toolkit, Vol. 2 now.

Agile Testing: A Practical Guide for Testers and Agile Teams Review

Average Reviews:

(More customer reviews)"Agile Testing" is an excellent and must-needed book related to testing in agile product development. Much has been written about test-driven development on unit level, however, little has been written on higher level testing and the role of testers and test departments in Agile development. This book changes that!
The book consists of 6 parts. The first part if an introduction, the last part is a summary. The introduction starts with a short explanation of agile testing and then followed by the ten principles of an Agile Tester. One of the key messages in this book is "the whole team approach", meaning that testing should be within the team and should not just be "the testers job". Anyone in the team can test, however, teams will probably still benefit from having a test specialist of a test expert. This mindset is one of the key thoughts the book repeats over and over again. In the last chapter, the authors summarize their thoughts with the seven key success factors for testing. Again, "the whole team approach" is #1. The agile testing mindset -- the proactive, creative cooperative mindset as opposed to a quality policy mindset -- is the second success factor.
The second part of the book describes organizational challenges. In my opinion, this part was perhaps the most needed. In many organizations testers struggle to find their role on agile product development. The chapter relate to cultural change, team logistics and transitioning typical processes. I thought the chapters were enlightening. Parts I liked were the discussion about the change in role for QA managers and especially the experience that, without proper coaching, a lot of traditional testing people might simply flee your agile development effort.
The third part of the book takes Brian Maricks four testing quadrants and explains these in details. These quadrants describe the different types of testing and how they would happen in agile development. The unit testing part is not covered thoroughly, as the authors (correctly) mention that this is covered well by other literature. The higher-level functional (acceptance) testing is covered well, including advise on automation. Exploratory testing is also covered in detail and explains its role in agile development clearly. Non-functional testing is covered reasonably well, especially considering that this depends so much on the type of product you are developing.
The fourth part of the book focuses more on test automation. I didn't find much new information in here, though it was a good summary of modern test automation and some of the challenges and difference between traditional test automation.
Part five follows an agile tester though an agile project and explains for every step in an agile project what the role of an agile tester is. It starts with the role in release planning and estimating. Then it explains the preparation before an iteration (product backlog refinement) and how early example tests can (should) be written. It continues with iteration planning and then the actual activities an agile tester would do during the iteration. This part also includes the important discussion related to the use of bug tracking systems. The part ends with the iteration review/retrospective and some final works about the actual delivery.
As mentioned, in my opinion, a good book on agile testing was absolutely needed. And the authors do not disappoint at all. Their knowledge about the subject is obvious. They have put much effort in sharing actual experiences by the many sidebox experience sharing stories. They touch the seldom touched parts related to organizations and roles and transitioning. Their writing is clear, though sometimes repeats itself (but not so that it is annoying). Not much topics are left unanswered, the book is thorough.
All in all, this book is exactly the kind of book that was needed. I'd recommend it to anyone interested in agile development and especially testers who have a hard time finding their new roles. Great work! Five stars.

Click Here to see more reviews about: Agile Testing: A Practical Guide for Testers and Agile Teams

Testing is a key component of agile development. The widespread adoption of agile methods has brought the need for effective testing into the limelight, and agile projects have transformed the role of testers. Much of a tester’s function, however, remains largely misunderstood. What is the true role of a tester? Do agile teams actually need members with QA backgrounds? What does it really mean to be an “agile tester?” Two of the industry’s most experienced agile testing practitioners and consultants, Lisa Crispin and Janet Gregory, have teamed up to bring you the definitive answers to these questions and many others. In Agile Testing, Crispin and Gregory define agile testing and illustrate the tester’s role with examples from real agile teams. They teach you how to use the agile testing quadrants to identify what testing is needed, who should do it, and what tools might help. The book chronicles an agile software development iteration from the viewpoint of a tester and explains the seven key success factors of agile testing.Readers will come away from this book understandingHow to get testers engaged in agile development Where testers and QA managers fit on an agile team What to look for when hiring an agile tester How to transition from a traditional cycle to agile development How to complete testing activities in short iterations How to use tests to successfully guide development How to overcome barriers to test automationThis book is a must for agile testers, agile teams, their managers, and their customers.

Get 29% OFF

Buy cheap Agile Testing: A Practical Guide for Testers and Agile Teams now.

Sustainable Energy: Choosing Among Options Review

Average Reviews:

(More customer reviews)This was a well written text book that gives an introduction to a great number of important fields. It does a particularly good job giving a fair treatment to some options that are often overlooked in books on sustainable energy such as geothermal and nuclear energy. It also gives a good background in the economics of electricity and liquid fuels.
It is however already quite dated. The book was published right before the price of oil started to soar, and completely didn't see it coming. Many statements support the idea that oil will be cheap for many decades to come. They certainly were not alone in not seeing this coming, but it is sometimes hard to take them seriously on other subjects when they keep referring back to the low price of oil.

Click Here to see more reviews about: Sustainable Energy: Choosing Among Options

Human survival depends on a continuing energy supply, but the need for ever-increasing amounts of energy poses a dilemma: How can we provide the benefits of energy to the population of the globe without damaging the environment, negatively affecting social stability, or threatening the well-being of future generations? The solution will lie in finding sustainable energy sources and more efficient means of converting and utilizing energy. This textbook is designed for advanced undergraduate and graduate students as well as others who have an interest in exploring energy resource options and technologies with a view toward achieving sustainability. It clearly presents the trade-offs and uncertainties inherent in evaluating and choosing different energy options and provides a framework for assessing policy solutions.Sustainable Energy includes illustrative examples, problems, references for further reading, and links to relevant Web sites. Outside the classroom, the book is a resource for government, industry, and nonprofit organizations. The first six chapters provide the tools for making informed energy choices. They examine the broader aspects of energy use, including resource estimation, environmental effects, and economic evaluations. Chapters 7-15 review the main energy sources of today and tomorrow, including fossil fuels, nuclear power, biomass, geothermal energy, hydropower, wind energy, and solar energy, examining their technologies, environmental impacts, and economics. The remaining chapters treat energy storage, transmission, and distribution; the electric power sector; transportation; industrial energy usage; commercial and residential buildings; and synergistic complex systems. Sustainable Energy addresses the challenges of integrating diverse factors and the importance for future generations of the energy choices we make today.

Get 24% OFF

Buy cheap Sustainable Energy: Choosing Among Options now.