About Milan Gabor
Milan Gabor is a ex-developer, founder and CEO of Viris, Slovenian company specialized in information security. He is security professional, pen-tester and researcher. Milan is a distinguished and popular speaker on information security. He has previously been invited to speak at various events at different IT conferences in Slovenia and the rest of the World. He also does ethical hacking trainings. He is always on a hunt for new and uncovered things and he really loves and enjoys his job and dreams about parachute jumping.
Security Testing Tools: Can I Touch You There?
During the presentation at one of the conferences devoted to testing and QA, I found out, that not so many testers are aware of security testing tools and also procedures during the testing process. On the other hand testing quite a big number of application on a yearly basis I see, that so many issues that end in our reports could be eliminated already in normal testing process. This is even truer regarding medium and low discovered issues, since they are easy to detect and also pretty easy to mitigate. And since these issues could be already eliminated, security testers performing the test, could have more time to dive into deeper issues. Speaking from my own experience, some issues that end in the report could be found using automated tools and without a deep understanding of underlying architecture or even without the need for testers programming knowledge. Major points in the presentation will be the following: – Why security testing in the normal testing process is a must – Are testers capable to touch and address security issues – Where to start touching security – What are the tools, techniques, and procedures – Basic hints crucial for start testing security for testers.