The game "Plants vs. Zombies" serves as an allegory for using existing testing frameworks as a cost-effective alternative to buying dedicated security tools.
The OWASP Top 10 list is the best resource for identifying common web application vulnerabilities to focus your testing efforts on.
A practical example shows how to write a Cypress test to detect an SQL injection vulnerability by asserting that a malicious login attempt fails.
A negative test case demonstrates how to verify that a user without proper permissions is blocked from accessing a protected administration page.
Cypress tests will automatically fail if an application attempts to navigate from an encrypted HTTPS page to an unencrypted HTTP page, helping enforce security.
Augment your custom test cases with open-source tools and plugins to discover security risks you may not be aware of.
A five-step process outlines how to incorporate security testing into your workflow, from risk analysis and planning to execution in nightly builds.
Test automation is a powerful complement to your security strategy, especially when simple negative tests are combined with tools and applied across all testing types.
Wilken GmbH
Ulm, Germany
zeb consulting
Frankfurt am Main, Germany
Bitpanda
Vienna, Austria
24:09Ramona Schwering
24:19Ramona Schwering
26:28Anna Oliveira
26:59Jakub Andrzejewski
24:01Jackie
44:30Milecia McGregor
54:23Ramona Schwering
21:53Isaac Evans
Jobs that call for the skills explored in this talk.
SVA System Vertrieb Alexander GmbH
Rapid7
SAP AG
Berlin, Germany
iO Associates
Cheltenham, United Kingdom
Confiancethales
Canton de Versailles-2, France
CodeConvergence
Charing Cross, United Kingdom
beaumont IT
Glasgow, United Kingdom