I spent much of my formative years in High School and College being indoctrinated with Object-Orientated Programming (OOP). When used well, OOP provides clear modular structure for programs, defines clear interfaces, makes software easier to maintain and modify, allows multiple functions to share code (cord re-use), and reduces large, complex issues to smaller, more manageable […]
Introduction Now that we have created some simple cucumber tests and built a sturdy selenium framework, we want to setup an environment where these tests can be quickly and conveniently run against our code. Due to the nature of development, code is constantly changing, and we want to ensure that each change to the code […]
Introduction Initially this post was going to contain instructions on running tests locally, and on SecureCI. Due to the lengthiness of the post, I decided to break this up into two different posts. This post will cover just setting up and running tests locally, building on the previous posts of creating some simple cucumber tests […]
With large complex software applications, builds can often be split into different steps and tasks creating a series of jobs for our build pipeline. On my current project we are utilizing Jenkins to implement Continuous Integration/Continuous Deliver (CI/CD) and between the jobs for compilation, smoke tests, acceptance tests and deployment across environments in several […]
The R programming language is an open-source, interactive language that was designed for manipulating datasets, creating visualizations, and performing statistical analyses. It is based on the S language, which was originally developed at Bell Laboratories. R is a full-featured language (it supports conditionals, loops, functions, I/O, etc.) and its functionality can be easily extended by […]
Detailed instructions for Amazon RDS database setup and configuration: First log on to your Amazon cloud with AWS account. Assuming you have AWS account. https://console.aws.amazon.com/ec2 Step 1: Launch new Instance After Login Select RDS from top left corner. Select Launch a DB Instance. Select the MySQL engine or any other engine that you need for your […]
Introduction In the last blog post, we started down the road of BDD, utilizing the Cucumber-jvm, and using Webdriver to perform some acceptance tests on our web based application. This post will continue where the last one left off, and move us further along, by examining some of the issues with our testing code base, […]
Continuous integration (CI) is a key component of agile software development that all organizations should strive to include in their development process. However, for small organizations with little or no infrastructure, purchasing and maintaining a server to use for continuous integration is extremely impractical and often infeasible. In these situations it is more cost-effective to […]
As part of my ongoing collection of reviews and thoughts on today’s Security Testing Tools, I’m taking a look at the Zed Attack Proxy (ZAP) by OWASP. While, my last review of WebSecurify, looked at a very simplistic tool for Web Application Security Testing, this review will bring us a slightly more complex tool. So where […]
I recently published an article about using CAT.NET security scanner on your .NET web application. Once you get it running, it’s fairly simple to integrate it into your continuous integration process. Our strategy here will be to use a down-stream job in Hudson to run static security analysis on our application build after the main compilation/packaging […]
