STAREAST Virtual+ 2020 - Security Testing

Web applications are often security critical or serve as front-ends for security critical applications, making web testing for vulnerabilities an essential part of software testing. Unfortunately, most software testers have not been taught how to identify web security issues while testing applications. Join Jeffery Payne as he shares what you need to know to security test web-based applications as part of your overall testing process. Learn about the most common web security vulnerabilities and how they are introduced into web code and exploited by hackers. Explore test techniques for...

Security is often the black sheep of testing. At many organizations, while functional testing is continuous throughout the lifecycle of the application, the security “scan” only takes place before the release. Why is functional testing allotted so much more in terms of resources and attention than security testing? Glenn Buckholz can’t answer that question, but he will discuss how you can get security to be considered a first-class testing citizen in your organization. He will cover technologies that integrate cleanly into the modern CI/CD pipeline, the pros and cons of SaaS security...