home.aspx
 
. https://www.nowsecure.com/blog/2019/03/06/how-to-deliver-on-devsecops-with-automated-mobile-appsec-testing-tools/
blog article
HOW TO DELIVER ON DEVSECOPS WITH AUTOMATED MOBILE APPSEC TESTING TOOLS
Before I joined NowSecure, I was a cybersecurity engineer at MITRE, and confident I could do my job well with the collection of open source software (OSS) tools I used every day. After testing the NowSecure automated mobile app security testing tool, it was clear the solution could help my two colleagues and I get out from under the backlog of several thousand mobile apps we needed to assess. And it did. I was impressed enough that I eventually went to work for NowSecure. Now, here I sit, trying to convince other security professionals of the virtues of DevSecOps and automated security testing for mobile application development. As a security engineer, my goal is to help security professionals identify the key attributes to look for in an automated security testing tool for mobile apps. The Role of OSS Tools. First, a word to those like my former self who are sure they can get along just fine with open source tools. Maybe you can, especially if you’re in a smaller company dealing with a limited number of applications, because open source tools such as Drozer, Frida, Mitmproxy and Radare all can perform certain functions in an assessment. As a side note, our own NowSecure security researchers created the popular Frida and Radare tools. READ MORE