Please log in to watch this conference skillscast.
Potential vulnerabilities within a build candidate may be functional and driven using Selenium WebDriver in the form of a traditional penetration test or API based and verified using SSLyze. Example scenarios will be presented against the secure content of the Skyscanner web site.
The solution will be finally demonstrated as running fully integrated within the release pipeline running against AWS, built from Team City using Ansible and executing vulnerability tests against both pre-production and production environments.
YOU MAY ALSO LIKE:
How Skyscanner Integrates Automated Penetration Testing into a Continuous Delivery Pipeline using BDD Defined Security Scenarios
Software Test Engineer playing a leading role in pushing Security testing into his company’s software development lifecycle. Working within Skyscanner and thriving on the challenge of cultivating a security conscious culture.
Technical Manager in Test Engineering working in an Agile development environment at Skyscanner. Currently responsible for application security across both web facing and mobile application development streams in addition to functional automation strategy for cross device/browser and localization BDD based testing solutions.