In the previous blog, I detailed a great starting point for mobile application testing— the AppUse framework—and highlighted its greatest pros and cons. This tool, created by AppSec-Labs, combines many additional tools to perform static and dynamic analysis of an application and the smartphone device that it runs. Remember, please only use the tools and […]
Introduction Back in October I wrote a post about testing your mobile application on different networks and I promised a few follow-up articles. Unfortunately, I have been sidetrack with a lot of other work, and finally I have some time to get back to addressing this issue. This article will go over some results of […]
Last week I was able to talk about some of my DevOps experiences at the March 2015 DevOpsDC Meetup. I told the story about how we took a project that was just starting Agile and was deploying a risky release to production every 6 months or so, and over 4+ years brought it to deploying […]
Knowing where to start in the penetration testing world is very difficult and largely inconsistent. With so many options and tools available simply kicking off a scan of the network can require a considerable time investment. That is even truer in the relatively new world of mobile testing. Please only use the tools and methods discussed on systems that you […]
Introduction Jenkins has some great plugins for managing releases for Maven projects. You can tag projects in your source code repository, advance the versions, mark code as SNAPSHOTS, etc. And all of this can be done with one click of a button. The simplicity of this release process made me start looking for other simple […]
Introduction 2014 was a busy year, but we still managed to get another SecureCI™ released. All tools included in this SecureCI™ release, were updated, bringing the bundle up to date, and making many tools more user and out-of-the-box friendly. For those unaware, SecureCI™ is an integrated stack of tools that provides version control, wiki, project/issue […]
Introduction Mobile App Testing involves networks, not just the app or device itself. Understanding the basics of telecommunications will always give you advantages when doing testing mobile applications. Testers need to understand the impact of network and communications on testing scope. This is the first in a multi-post segment for understanding the differences between networks, […]
Jenkins is a powerful tool in your Continuous Integration and Continuous Delivery toolbox. For my last clients over the past several years, we have utilized Jenkins to deploy software and preform automated testing. One of the most powerful tools I have used to orchestrate deployments and testing has been the Build Flow Plugin. It has allowed […]
I understand the plight of senior executives, I really do. Most don’t have a software background and that makes it difficult for them to fully understand application security. But when security breeches are caused by basic, simple code vulnerabilities that can be found using readily available tools, it makes me wonder how serious businesses even […]
Introduction As mobile native app testing tools continue to advance at a slow pace, mobile web app testing tools are advancing much quicker. There are several out there, including Sauce Labs and Testing Bot. These tools are great at taking browser based tests, and running them on emulated mobile devices, or even different desktop OS […]
