Overview
Explore methods for monitoring web application attack surfaces and integrating security into DevOps pipelines in this 48-minute conference talk from AppSecUSA 2017. Learn how to calculate and track changes in attack surfaces over time, and discover metrics and thresholds for crafting policies that integrate testing activities into CI/CD pipelines. Gain insights from Dan Cornell, CTO of Denim Group and a recognized application security expert, on optimizing security testing coverage and enhancing DevOps practices with targeted security measures.
Syllabus
Monitoring Application Attack Surface and Integrating Security into DevOps - AppSecUSA 2017
Taught by
OWASP Foundation