A New Framework to Automate MSTG and MASVS in Your CI/CD Pipeline

A New Framework to Automate MSTG and MASVS in Your CI/CD Pipeline

OWASP Foundation via YouTube Direct link

Reporting

23 of 26

23 of 26

Reporting

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

A New Framework to Automate MSTG and MASVS in Your CI/CD Pipeline

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Why does mobile security matter?
  3. 3 Agile SDLC: where and when to detect vulnerabilities?
  4. 4 Why do mistakes happen?
  5. 5 Mobile Security challenges
  6. 6 Introduce security integration tests
  7. 7 Biggest problem with tests
  8. 8 Solution: BDD
  9. 9 BDD explained: features and steps
  10. 10 Why BDD in security? Communication
  11. 11 Cucumber: the king of BDD
  12. 12 Translate the OWASP MSTG in BDD
  13. 13 Automate the UI
  14. 14 Execute security tests
  15. 15 Get Feedback
  16. 16 Full process in the SDLC
  17. 17 Setup
  18. 18 Target: OWASP MSTG Hacking Playground
  19. 19 OWASP MSTG: Testing Logs for Sensitive Data
  20. 20 BDD: Testing Logs for Sensitive Data
  21. 21 OWASP MSTG: Testing Local Storage for Sensitive Data
  22. 22 BDD: Testing Local Storage for Sensitive Data
  23. 23 Reporting
  24. 24 Integration in CI/CD
  25. 25 Benefits
  26. 26 References

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.