Interact Differently: Get More from Your Tools Through Exposed APIs
No ratings
Presented at lascon 2016 by
Most tools are designed with a single function in mind, but can often be leveraged for additional workflows as well. For example, SonarQube is a marketed as a platform to manage code quality, but custom plugins can also enable security testing. At its heart, Jenkins is a build tool, but it can be used for security testing as well. Don’t like the security dashboard applications bundled with your commercial security tools? Either Jenkins or SonarQube can replace them! Can’t stand viewing your tool exports in Excel? A simple XML transformation can allow you to see your data in a way that makes sense to you. Welcome to the age of APIs. Nearly every major software product now exposes RESTful APIs, an SDK, command line, or plugin interface. Don’t limit yourself to out-of-the-box functionality – customize your tools to work best for you. This talk will describe some ways exposed APIs and plugin interfaces in commercial and open source products have been used to make work more effective and efficient. We’ll demonstrate simple tools that interact with common software packages, like Jenkins, SonarQube, and OWASP ZAP, to streamline workflows and provide better visibility on what matters most to us. And we’ll tell you how to get started getting more out of the tools you already use.