Finding Bugs in Web Applications Using Dynamic Test Generation and Explicit State Model Checking

Web script crashes and malformed dynamically-generated web pages are common errors, and they seriously impact the usability of web applications. Current tools for web-page validation cannot handle the dynamically generated pages that are ubiquitous on today's Internet. We present a dynamic test generation technique for the domain of dynamic web applications. The technique utilizes both combined concrete and symbolic execution and explicit-state model checking. The technique generates tests automatically, runs the tests capturing logical constraints on inputs, and minimizes the conditions on the inputs to failing tests, so that the resulting bug reports are small and useful in finding and fixing the underlying faults. Our tool Apollo implements the technique for the PHP programming language. Apollo generates test inputs for a web application, monitors the application for crashes, and validates that the output conforms to the HTML specification. This paper presents Apollo's algorithms and implementation, and an experimental evaluation that revealed 302 faults in 6 PHP web applications

A Survey Paper on Software Bug Classification Techniques using Data Mining

A Software bug is a blunder, blemish, disappointment or deficiency in a PC project or framework that causes it to deliver an off base or surprising result. At the point when bugs emerge, we need to settle them which is difficult. The greater part of the organizations burn through 40% of expense to settling bugs. The procedure of altering bug will be bug triage or bug collection. Triaging this approaching report physically is blunder inclined and tedious .programming organization pays the greater part of their expense in managing these bugs. In this paper we arranging the bugs with the goal that we can decide the class of the bug at which class that bug is has a place and in the wake of applying the order we can dole out the specific bug to the precise designer for altering them. This is effective. In this paper we are utilizing mix of two grouping strategies, guileless bayes (NB) and k closest neighbor (KNN).In advanced days organization utilizes programmed bug triaging framework yet in Traditional manual Triaging framework is utilized which not effective and setting aside an excess of time .For is triaging the bug we require bug subtle element which is called bug store. In this paper we likewise diminishing the bug dataset in light of the fact that on the off chance that we having more information with unused data which causes issue to relegating bugs. For actualizing this we utilize occasion determination and highlight choice for lessening bug information. This paper portray the entire methodology of bug assignment from beginning to end and finally result will appear on the premise of chart .Graph speaks to the most extreme plausibility of class means at which class the bug will has a place

Survey on Automated Bugs Triage System

Nowadays IT companies is spending more than 40 percent of their cost in fixing software bugs, traditonally these bugs are fixed by manual assignement to a particular developer , this approach causes too much dependency, the new and alternative approach is the bug triage system which fix the bug automatically , which automatically assign the reported bug to a develop which decreases the time and cost in in manual work, different classification techniques are used to conduct automatic bug triage. In this paper, we propose to apply machine learning techniques to assist in bug triage to predict which developer should be assigned on the bug based on its description by applying text categrorization . We will address the problem of data reduction for bug triage, i.e. How the quality of bug data would be improved

A Survey on Bug Triage Using Data Reduction Technique

Most of the software companies needs to deal with software bug in every day. Software companies spend most if their cost in dealing with software bugs. The process of fixing bug is bug triage, which aims to assign a expert developer to a new bug. To reduce the time and cost in manual work, we apply text classification technique to conduct automatic bug triage. In proposed system we apply data reduction techniques on bug data set to improve the scale and quality of bug data. We use instance selection and feature selection simultaneously to reduce the scales on bug dimension and word dimension and improve the accuracy of bug triage. In this paper, we investigate the use of five term selection methods on the accuracy of bug assignment. In addition, we re-balance the load between developers based on their experience

System for Effective Data Processing Using Flaw Traige

A Software bug is an error, flaw, failure or fault in a computer program or system that causes it to produce an incorrect or unexpected result. When bugs arise, we have to fix them which is not easy. Most of the companies spend 40% of cost to fixing bugs. The process of fixing bug is bug triage or bug assortment. Triaging this incoming report manually is error prone and time consuming .software company pays most of their cost in dealing with these bugs. In this paper we classifying the bugs so that we can determine the class of the bug at which class that bug is belongs and after applying the classification we can assign the particular bug to the exact developer for fixing them. This is efficient. In this paper we are using combination of two classification techniques , na�ve bayes (NB) and k nearest neighbor(KNN).In modern days company uses automatic bug triaging system but in Traditional manual Triaging system is used which is not efficient and taking too much time .For triaging the bug we require bug detail which is called bug repository. In this paper we also reducing the bug dataset because if we having more data with unused information which causes problem to assigning bugs. For implementing this we use instance selection and feature selection for reducing bug data. This paper describe the whole procedure of bug allotment from starting to end and at last result will show on the basis of graph .Graph represents the maximum possibility of class means at which class the bug will belongs

Framework for Automatic Bug Classification in Bug Triage System

A Software bug is an error, flaw, failure or fault in a computer program or system that causes it to produce an incorrect or unexpected result. When bugs arise, we have to fix them which is not easy. Most of the companies spend 40% of cost to fixing bugs. The process of fixing bug is bug triage or bug assortment. Triagingthis incoming report manually is error prone and time consuming .Software companies spend most of their cost in dealing with these bugs. In this paper we classifying the bugs so that we can determine the class of the bug at which class that bug is belongs and after applying the classification we can assign the particular bug to the exact developer for fixing them. This is efficient. In this paper we are using combination of two classification techniques ,na�ve Bayes (NB) and k nearest neighbor(KNN).In modern days company uses automatic bug triaging system but in Traditional manual Triaging system is used which is not efficient and taking too much time .For triaging the bug we require bug detail which is called bug repository. In this paper we also reducing the bug dataset because if we having more data with unused information which causes problem to assigning bugs. For implementing this we use instance selection and feature selection for reducing bug data. This paper describe the whole procedure of bug allotment from starting to end and at last result will show on the basis of graph .Graph represents the maximum possibility of class means at which class the bug will belongs

Semantics-based Automated Web Testing

We present TAO, a software testing tool performing automated test and oracle generation based on a semantic approach. TAO entangles grammar-based test generation with automated semantics evaluation using a denotational semantics framework. We show how TAO can be incorporated with the Selenium automation tool for automated web testing, and how TAO can be further extended to support automated delta debugging, where a failing web test script can be systematically reduced based on grammar-directed strategies. A real-life parking website is adopted throughout the paper to demonstrate the effectivity of our semantics-based web testing approach.Comment: In Proceedings WWV 2015, arXiv:1508.0338

A Way to Contend with Perceiving Copy of Bug Reports by Applying Execution of Information

Programming bug is an imperative issue in Software Company. They burned through 45 percent of cost in settling bugs. So unavoidable venture of settling bugs is bug seeing duplicate. Point of bug seeing duplicate is to allocate accurately a designer to another bug, to diminish the time cost in manual work. Likewise connected content order strategies to direct programmed bug seeing duplicate. We here address the issue of, how to lessen the size of bug information and enhance the nature of bug information. For that, consolidate an occurrence determination with highlight choice to at the same time diminish information scale on the bug measurement and the word measurement. Considering prescient model for new bug dataset by extricating qualities from authentic dataset, then researching execution of information diminishment on bug reports of two substantial open source undertakings, for example, Eclipse and Mozilla

MySQL extension automatic porting to PDO for PHP migration and security improvement

In software management, the upgrade of programming languages may introduce critical issues. This is the case of PHP, the fifth version of which is going towards the end of the support. The new release improves on different aspects, but removes the old deprecated MySQL extensions, and supports only the newer library of functions for the connection to the databases. The software systems already in place need to be renewed to be compliant with respect to the new language version. The conversion of the source code, to be safe against injection attacks, should involve also the transformation of the query code. The purpose of this work is the design of specific tool that automatically applies the required transformation yielding to a precise and efficient conversion procedure. The tool has been applied to different projects to provide evidence of its effectiveness