Explore the intersection of security testing and quality assurance in this 49-minute Devoxx conference talk. Demystify concepts like vulnerabilities, hacks, and exploits while mapping them to foundational testing principles. Learn to integrate security into existing workflows using freely available tools, with a focus on enhancing test actions and strategies. Discover how to leverage the Open Web Application Security Project (OWASP) tools, particularly ZAP, to improve test quality across various web application platforms. Gain insights into network analysis, trending data, and alerts, and understand how to incorporate these security tools into existing test suites. Suitable for all skill levels and applicable to any operating system or web application software platform.
Assert Yourself - How to Leverage Security Tools to Increase Quality of Testing
Overview
Syllabus
Introduction
Who am I
How do we learn
Pursuing test quality
Assert yourself
Learning new stuff
Open source security tools
Open Web Application Security Project
Demo
Network tab
Trending tab
Alerts tab
Becoming educated
Can we use it in existing tests
Can we do tests inside Zap
Documentation
What else does it do
Passive Scanners
Questions
References
Playgrounds
Taught by
Devoxx
