Malware Detection and Analysis in a Continuous Integration Context

Automation is a key principle of continuous integration. Software dependencies can introduce risk when blindly integrated. How might a team reduce the risk of integrating dependencies with automation? Assemblyline is a tool developed by the Canadian Centre for Cyber Security (CCCS) for malware detection and analysis. We explore Assemblyline version 4 beta as a potential continuous integration service for detecting security risks via submitting files.

Presenter: Liam Henderson, Liam Henley-Vachon and Joshua Mukasa