Absolute AppSec

著者: Ken Johnson and Seth Law
無料で聴く

  • サマリー

  • A weekly podcast of all things application security related. Hosted by Ken Johnson and Seth Law.
    続きを読む 一部表示
activate_samplebutton_t1
エピソード
  • Episode 259 - Special Melbourne Australia Edition w/Paul McCarty and Daniel Ting

    Episode 259 - Special Melbourne Australia Edition w/Paul McCarty and Daniel Ting
    2024/09/12
    Seth and Ken take the podcast global this week while traveling to Melbourne, Australia. The duo is joined this episode are joined by Paul McCarty and Daniel Ting, both involved in the local application security community. The discussion starts with a comparison of industries in Australia and the United States, both differences and similarities. This is followed by thoughts on security software supply chain, from a red and blue team perspective. Finally, some thoughts on community changes due to the pandemic and supporting local meetups.
    続きを読む 一部表示
    1分未満
  • Episode 258 - Engaging Developers, ALBeast, Dangerous TLDs

    Episode 258 - Engaging Developers, ALBeast, Dangerous TLDs
    2024/09/03
    Seth (@sethlaw) and Ken (@cktricky) are back this week with some hot takes on the recent cancellation of OWASP's San Francisco Developer Days that were running alongside Global AppSec San Francisco. OWASP has struggled to engage the development community over the years and this is no surprise for anyone in AppSec/ProdSec. This is followed by review of the ALBeast (why do all vulnerabilities have to be branded?) and how our past selves were correct in identifying dangerous TLDs as being exploitable.
    続きを読む 一部表示
    1分未満
  • Episode 257 - In-Person vs. Virtual Training, Compliance Violations

    Episode 257 - In-Person vs. Virtual Training, Compliance Violations
    2024/08/27
    Ken (@cktricky) returns alongside Seth (@sethlaw) for the week. This starts with an in-depth discussion on the pros and cons of in-person and virtual trainings. In short, the duo prefers in-person due for the advantages, but understand that financial pressures come into play, so virtual is a good substitute. This is followed by thoughts on the recent lawsuit by thy government against Georgia Tech for failing to meet government cybersecurity compliance requirements, even after attesting to their existence. Third-party risk assessments may not be the most fun part of security, but what happens when an organization doesn't meet their obligations? Seems like both sides are in the "find out" phase of FAFO.
    続きを読む 一部表示
    1分未満

あらすじ・解説

A weekly podcast of all things application security related. Hosted by Ken Johnson and Seth Law.
続きを読む 一部表示

Absolute AppSecに寄せられたリスナーの声

カスタマーレビュー:以下のタブを選択することで、他のサイトのレビューをご覧になれます。

Audible.co.jp

Amazon.co.jp
レビューはまだありません。