Absolute AppSec

著者: Ken Johnson and Seth Law
無料で聴く

  • サマリー

  • A weekly podcast of all things application security related. Hosted by Ken Johnson and Seth Law.
    続きを読む 一部表示

あらすじ・解説

A weekly podcast of all things application security related. Hosted by Ken Johnson and Seth Law.
続きを読む 一部表示
エピソード
  • Episode 276 - w/ Myles Borins - NPM

    Episode 276 - w/ Myles Borins - NPM
    2025/02/18
    Myles is currently Product Lead for Developer Platform at Snowflake. Previously, he directed project management at GitHub, overseeing projects like GitHub Copilot Workspace for PRs, Codespaces, npm, and Packages. A key contributor to Ecma International and TC39, he has served for stretches as a Delegate, Co-Chair, and VP for the project. His contributions to TC39 coincided with his periods he worked for both Google and Microsoft, respectively. In addition to extensive experience driving security and standards improvement in open source initiatives and key development languages, Myles is an active and accomplished musician. Catch up with Myles and his work here: https://mylesborins.com/about.html. We are excited to have Myles as a guest on the show, so be sure to catch up with this episode and make a note that this episode is occurring one hour earlier than the typical livestream broadcast time.
    続きを読む 一部表示
    1分未満
  • Episode 275 - OpenGrep Summary, Secure By Design, Confusion Attacks

    Episode 275 - OpenGrep Summary, Secure By Design, Confusion Attacks
    2025/02/11
    Ken and Seth are back for another episode that starts with a summary of the Semgrep and OpenGrep break. This is followed by Google's recent article titled Secure By Design: Google's Blueprint for a High-Assurance Web Framework. Google is focused on protections within the browser, given their products and business, but the controls and overall process are relevant to most application security programs. Finally, a discussion of Orange Tsai's research on Confusion Attacks within Apache that was number one in Portswigger's Top 10 Web Hacking Techniques of 2024.
    続きを読む 一部表示
    1分未満
  • Episode 274 - Semgrep/OpenGrep, Saying "No" in Security

    Episode 274 - Semgrep/OpenGrep, Saying "No" in Security
    2025/02/04
    Seth and Ken return for another week to review current articles and happenings in the application security world. Specifically, they spend some time reacting to the news that the Semgrep Community version has been forked as Opengrep by a number of vendors. This occurs as a result of Semgrep changing the licenses on their open source rules to prevent use in competitor products. Also a discussion spurred by Rami McCarthy's recent article on how "No" is still appropriate and security shouldn't be a rubber stamp for any organization.
    続きを読む 一部表示
    1分未満
activate_buybox_copy_target_t1

Absolute AppSecに寄せられたリスナーの声

カスタマーレビュー:以下のタブを選択することで、他のサイトのレビューをご覧になれます。

Audible.co.jp

Amazon.co.jp
レビューはまだありません。