From the course: DevSecOps: Automated Security Testing
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Security test automation with Gauntlt
From the course: DevSecOps: Automated Security Testing
Security test automation with Gauntlt
- [Narrator] Let's take a look at a way to harness these attack tools we've been looking at. The tool we'll be using for this is Gauntlt. I'm a core developer behind Gauntlt and I'm really excited to introduce this project to you. Gauntlt is written in Ruby and runs using Cucumber, the very popular behavior driven development tool for Ruby. Now, don't worry. You don't have to know Ruby to use it. Gauntlt is open-source under the very flexible MIT license. Let's head over to the project's home over at Gauntlt.org. Gauntlt provides hooks to a variety of security tools and puts them within reach of security, development, and operations teams to collaborate to build rugged software. Gauntlt works by wrapping attack tools and checking their output using plain text files that end in a .atk extension. To do this, Gauntlt uses Gherkin syntax which takes a plain English approach to testing. The key behind Gherkin are three words you, as an English speaker, already know how to use everyday…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.