TestCon Europe 2019

Milan Gabor

Viris, Slovenia

BIO

Milan Gabor is a ex-developer, founder and CEO of Viris, Slovenian company specialized in information security. He is security professional, pen-tester and researcher. Milan is a distinguished and popular speaker on information security. He has previously been invited to speak at various events at different IT conferences in Slovenia and the rest of the World. He also does ethical hacking trainings. He is always on a hunt for new and uncovered things and he really loves and enjoys his job and dreams about parachute jumping.

Talk

Can I Touch You There? Tools and Techniques for Security Testing

During the presentation at one of the conferences devoted to testing and QA, Milan found out that not so many testers are aware of security testing tools and also procedures during the testing process. On the other hand, while testing quite a big number of application on a yearly basis he sees that so many issues that end in our reports could be eliminated already in normal testing process (especially regarding medium and low discovered issues, since they are easy to detect and also pretty easy to mitigate). And since these issues could be already eliminated, security testers who are performing the test could have more time to dive into deeper issues. Speaking from Milan’s experience, some issues that end in the report could be found using automated tools and without a deep understanding of underlying architecture or even without the need for testers programming knowledge. Major points in the presentation will be the following:
– Why security testing in the normal testing process is a must
– Are testers capable to touch and address security issues
– Where to start touching security
– What are the tools, techniques, and procedures
– Basic hints crucial for start testing security for testers

Session Keywords
OWASP
Security Testing