AppSec EU 2017 2017: Rise Of The Machines by Kev DArcy Nicholas Raite and Rohini Sulatycki

Faced with the challenge of securing hundreds of applications in our organization we struggled to find the capacity to manually scan them all and still have the time to focus on our more critical issues.
Having to deal with a wide variety of programming languages platforms legacy applications and needing to prioritize a never ending list of applications with limited time and resources Sound familiar? Join our journey and live demo of how we are utilizing machines to automate assessments.
Well show you the technologies we chose not to use and why how understanding our requirements better allowed us to focus on the things we really needed rather than the ideal solution. Our team will showcase how weve utilized a blend of Jenkins HP Fortify SCASSC OWASP ZAP OWASP DefectDojo Slack and Jira to create an automation-scanning and reporting platform. Were anticipating a highly collaborative session and hope youll join - feedback criticism and praise are all welcome! - Managed by the official OWASP Media Project

Источник: rutube.ru