DevOps Conference
The Conference for Continuous Delivery, Microservices,
Containers, Clouds and Lean Business

PenTesting from the inside: every Engineer can think like a Hacker

Session
Until July 21:
✓ Save up to $517
✓ Amazon Echo Dot or Arduino for free
✓ Team discount
Register now
Until July 21:
✓ Save up to $517
✓ Amazon Echo Dot or Arduino for free
✓ Team discount
Register now
Until August 11:
✓ Save up to $593
✓ Workshop Day for free
✓ Team discount
Register now
Until August 11:
✓ Save up to $593
✓ Workshop Day for free
✓ Team discount
Register now
Until August 25
✓ Transformation Day for free
✓ Save up to 867€
✓ Amazon Echo Dot or Arduino for free
Register now
Bis 25. August
✓ Transformation Day gratis
✓ Sparen Sie bis zu 867 €
✓ Amazon Echo Dot oder Arduino gratis
Jetzt anmelden
Thank you for attending
We see us 2023
or in September in New York
Go to New York
Thank you for attending
We see us 2023
or in September in New York
Go to New York
Thank you for attending
We see us 2023
or in Munich in December 2022
Go to Munich
Danke für Ihre Teilnahme
Wir sehen uns 2023
oder im Dezember in München
Jetzt nach München
Infos

If you ask software engineers, most of them will say that obviously they care about security. Unfortunately, the reality of competing priorities often relegates security testing to the annual third-party penetration test report… too little, too late!

DevSecOps advocates a mindset where security is everybody’s responsibility and that with the right tools and knowledge, but this cannot happen without proper support and upskilling. The good news is, as engineers we are fast learners, we love to solve problems… and we like to try and break things.

Over the last year, I have been running “Internal PenTest” events with several groups of developers, testers and SREs. For a day, we step back from the usual work and cross to the other side to answer the question: can we hack the applications that we’ve been developing? Equipped with the wealth of insider knowledge, the team explores a specific area of the application, models threats, searches for vulnerabilities and attempts to exploit them.

So far, every session has always finished with a list of security fixes, but the real value is in the learning, when engineers will go back to their daily work with this new hacking knowledge and build more secure applications.

This Session originates from the archive of Diese Session stammt aus dem Archiv von New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von New York New York .

This Session originates from the archive of Diese Session stammt aus dem Archiv von New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von Singapore Singapur .

This Session originates from the archive of Diese Session stammt aus dem Archiv von New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von Munich München .

This Session originates from the archive of Diese Session stammt aus dem Archiv von New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von London London .

This Session originates from the archive of Diese Session stammt aus dem Archiv von New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von Berlin Berlin .

This Session Diese Session originates from the archive of stammt aus dem Archiv von New YorkNew York . Take me to the current program of . Hier geht es zum aktuellen Programm von New York New York , Singapore Singapur , Munich München , London London or oder Berlin Berlin .

Stay tuned:

Behind the Tracks

 

Kubernetes Ecosystem

Docker, Kubernetes & Co

Microservices & Software Architecture

Maximize development productivity

Continuous Delivery & Automation

Build, test and deploy agile

Cloud Platforms & Serverless

Cloud-based & native apps

Monitoring, Traceability & Diagnostics

Handle the complexity of microservices applications

Security

DevSecOps for safer applications

Business & Company Culture

Radically optimize IT

Organizational Change

Overcome obstacles on the road to DevOps

Live Demo #slideless

Showing how technology really works