This talk discusses various advances in program analysis technology that enable a larger class of bugs to be detected earlier in software development projects (and even to be automatically fixed in some cases). It focuses particularly on recent developments that enable tight integration of program analysis tools into DevOps processes.
Knowledge and tools for security testing and all the security aspects of software testing.
Security testing is often seen as a mysterious and foreboding domain, where people enshrouded in hooded masks wield mystical powers to influence technology in ways that should be impossible. Vulnerabilities, hacks, disclosures, exploits and other spooky concepts seem to be the primary powers in this dark digital Mordor.
Every business needs to be on the lookout for cyber attacks. The unfortunate reality is that there are many hackers out there looking for vulnerable targets. If you want to find vulnerabilities in your system before a hacker does, then it is time to learn about penetration testing.
Teams should take security seriously with today’s online threats and follow secure coding and security testing practices. They should use web and native application scanning tools both statically and dynamically where-ever possible and required.
Applications are one of the most exposed parts or any organization, but most companies fall short on knowing how and what to monitor within them. In this presentation, Kevin Johnson of Secure Ideas uses his background as both a software developer and a penetration tester to show attendees how to determine these methods.