Android Security Testing
Security testing can seem like a daunting task that is best left to external contractors. In the very best case scenario, we hope that the expensive penetration test does not turn up any security issues as this is likely to delay the release.
This workshop is aimed at mobile application software testers to help understand exactly what it is a penetration tester will do and why for a lot of vulnerabilities, a security expert is not needed. In this 2.5 hour workshop, we will look at how security testing can be carried out on Android applications oftentimes MORE successfully by testers that know the product inside and out.
Takeaways: How to perform basic security testing of Android applications using tools and techniques not only used by external penetration testers but by integrating security testing into the in house testing process. Although this course will not be a replacement for a full pen test, by performing security tests while the application is being developed, it is hoped that penetration testers (when needed) will require less time on a test and find fewer high-risk vulnerabilities.
Do your actions as a tester have unintended consequences? You may
want to find more bugs, but this may have an unintended consequence for
developers: Developers now have more defects to debug, which affects
their capacity to deliver new functionality. Isabel Evans has found that
influence diagrams provide a simple way to understand and manage the
complexities of key interactions among testers, developers, and business
stakeholders. In this practical workshop with hands-on activities, Isabel will
help you construct and interpret influence diagrams to illustrate typical team
and project problems and solutions in testing. With just pen and
paper—and plenty of discussion—you will analyse example problems and
identify potential solutions, enabling you to understand how to build and
use simple influence diagrams in your day-to-day work.
Take your API testing to the next level
In this workshop, we’ll start from the fundamentals of API testing. After discussing the API testing strategies we’ll create our first tests using PostMan and curl.
If you’re a manual tester or a QA who just started with API testing, or test automation engineer who wants to move the GUI tests to a lower layer then this workshop is for you. No previous knowledge of JS is needed as we’ll go through each small step together.
Information security affects everyone in the world. Whether it's our user credentials, personal data, financial data, intellectual property, or our devices and other hardware; it all needs to be kept safe and secure. Software development organisations have a unique place in the creation of products. We design, develop, test and deploy, often very rapidly and frequently. But this is often at the cost of security.
Each day we hear about new security breaches, hacks and data thefts across the world. So, what are we doing wrong? If we seek to understand the key security issues that affect organisations today we can be more prepared. If we examine the behaviour, intentions and skills of those who seek to do applications and organisations harm, we develop our skills and approaches to meet the challenge that malicious hackers offer.
Exploring Security is a new course designed and taught by Daniel Billing. Its aim is to help attendees to become more aware of the application and infrastructure security issues that affect your organisation, products, and customers.
Game Changers - Software Testing beyond 2020
Software testing has come a long way in the past few decades. Practitioners have gone from being perceived as second class team members who “did some testing before we release” to highly valued contributors in all phases of the development process. We have also seen technology mature with a plethora of tools becoming available to carry out all types of testing tasks including test management, communication, bug tracking and all sorts of test automation.
If you’re like me, you’re probably asking “what’s next?”. Have we peaked? Is this as far as we will go? What will shape the future of the industry? What effect will it have on our careers? How can we prepare for it? In my talk, I will discuss the current state and future of software testing in the hope of inspiring participants to forge ahead in what is sure to be another exciting decade in software testing.