Content tagged as 'Web-Application'

Here is a list of all the content that has been tagged as web-application.

Workshop - Init Security Titans

Workshop to initialise, train and deploy the Jade Security Champions across the Jade Development Teams.

Talk - Security Regression Testing on OWASP Zap Node API

The OWASP ZAP HTTP intercepting proxy is useful for manually attacking your Web apps and APIs. Now, we have the official Node API to programatically drive ZAP to regression test our creations. Kim will show you how to build a fully featured security regression testing CLI, consumable by your CI/nightly builds.

purpleteam

Automated security regression testing of your web applications and APIs, no setup required. 1. Write [test conditions](https://f0.holisticinfosecforwebdevelopers.com/chap06.html#process-and-practises-agile-development-and-practices-evil-test-conditions) - convert to [Cucumber](https://cucumber.io/) 2. Provide minimal configuration 3. Consume node CLI package 4. Run single command `purpleteam test` Perfect for your CI/nightly build

Hugo with Staticman Commenting and Subscriptions

Adding Staticman commenting system to BinaryMist blog and Hugo Academic

Workshop - Building Security Into Your Development Teams

Kim's flagship Software Developer focussed training, this time at OWASP New Zealand Day conference.

BinaryMist Web Migration

In this post we discuss the move from the legacy BinaryMist blog on Wordpress.com, along with the BinaryMist website, to a single static site on the Hugo platform hosted on Github Pages.

Holistic Info-Sec for Web Developers

A three part book series focused on lifting the security knowledge of Software Developers, Engineers, and their teams, so that they can continuously deliver secure technical solutions on time and within budget, without nasty surprises. First book is complete, second book is content complete and currently in technical review.

Talk - Secrets of a High Performance Security Focussed Agile Team

At BSides Wellington: Kim discusses that Quality (security included) does not have to be neglected when you’re planning, building and running a high performance development team. He discusses how we fail and how to succeed.

Workshop - Building Security Into Your Development Teams

Kim's flagship Software Developer focussed training, this time at Christchurch Hacker Conference (CHCon).

Talk - Secrets of a High Performance Security Focussed Agile Team

Kim discusses how and why Agile Development Teams fail at security, and how to stop failing.