Podcast Episodes

Back to Search
How Security Tools Must Evolve - Dan Kuykendall - ASW #261
How Security Tools Must Evolve - Dan Kuykendall - ASW #261

The categories of security tools that we're most familiar with have struggled to keep up with how modern apps are designed and what modern devs need.…

2 years, 4 months ago

Short Long
View Episode
OAuth, WebAuthn, & The Impact of Design Choices - Dan Moore - ASW #260
OAuth, WebAuthn, & The Impact of Design Choices - Dan Moore - ASW #260

We return to discussions of OAuth and all sorts of authentication. This time around we're looking at the design of authentication protocols, the kind…

2 years, 4 months ago

Short Long
View Episode
OT Security - Huxley Barbee - ASW #259
OT Security - Huxley Barbee - ASW #259

It's no surprise that OT security has fared poorly over the last 30+ years. To many appsec folks, these systems have uncommon programming languages, …

2 years, 5 months ago

Short Long
View Episode
Shifting Focus to Make DevSecOps Successful - Janet Worthington - ASW #258
Shifting Focus to Make DevSecOps Successful - Janet Worthington - ASW #258

What if all these recommendations to shift left were more about shifting focus? It's all too easy to become preoccupied with vulns, whether figuring …

2 years, 5 months ago

Short Long
View Episode
Creating Presentations and Training That Engage an Audience - Lina Lau - ASW #257
Creating Presentations and Training That Engage an Audience - Lina Lau - ASW #257

Communication is a skill that doesn't appear on top 10 lists, rarely appears as a conference topic, and doesn't appear enough on job requirements. Ye…

2 years, 5 months ago

Short Long
View Episode
Supply Chain Security Security with Containers and CI/CD Systems - Kirsten Newcomer - #ASW 256
Supply Chain Security Security with Containers and CI/CD Systems - Kirsten Newcomer - #ASW 256

Supply chain has been a hot topic for a few years now, but so many things we need to do for a secure supply chain aren't new at all. We'll cover SBOM…

2 years, 5 months ago

Short Long
View Episode
Stopping Business Logic Attacks: Why a WAF is no Longer Enough - Karl Triebes - ASW #255
Stopping Business Logic Attacks: Why a WAF is no Longer Enough - Karl Triebes - ASW #255

The majority of attacks are now automated, with a growing number of attacks targeting business logic via APIs, which is unique to every organization.…

2 years, 5 months ago

Short Long
View Episode
Building a Scanner and a Community with Zed Attack Proxy - Simon Bennetts - ASW #254
Building a Scanner and a Community with Zed Attack Proxy - Simon Bennetts - ASW #254

Zed Attack Proxy is an essential tool for web app pentesting. The project just recently moved from OWASP to the Secure Software Project. Hear about t…

2 years, 6 months ago

Short Long
View Episode
Broadening What We Call AppSec - Christien Rioux - ASW Vault
Broadening What We Call AppSec - Christien Rioux - ASW Vault

Check out this interview from the ASW Vault, hand picked by main host Mike Shema! This segment was originally published on January 10, 2022. There's …

2 years, 6 months ago

Short Long
View Episode
How Can Security Be Smart About Using AI? - Jeff Pollard - ASW #253
How Can Security Be Smart About Using AI? - Jeff Pollard - ASW #253

We go deep on LLMs and generative AIs to shine a light on areas that security leaders should focus on. There are technical concerns like prompt injec…

2 years, 6 months ago

Short Long
View Episode

Love PodBriefly?

If you like Podbriefly.com, please consider donating to support the ongoing development.

Support Us