Podcast Episodes
Back to Search
Appsec Predictions for 2025 - Cody Scott - ASW #314
What's in store for appsec in 2025? Sure, there'll be some XSS and SQL injection, but what about trends that might influence how appsec teams plan? C…
1 year, 1 month ago
Discussing Useful Security Requirements with Developers - Ixchel Ruiz - ASW #313
There's a pernicious myth that developers don't care about security. In practice, they care about code quality. What developers don't care for is amb…
1 year, 2 months ago
DefectDojo and Bringing Quality Appsec Tools to Small Appsec Teams - Greg Anderson - ASW #312
All appsec teams need quality tools and all developers benefit from appsec guidance that's focused on meaningful results. Greg Anderson shares his ex…
1 year, 2 months ago
Applying Usability and Transparency to Security - Hannah Sutor - ASW #311
Practices around identity and managing credentials have improved greatly since the days of infosec mandating 90-day password rotations. But those imp…
1 year, 3 months ago
Looking Back on 2024 - ASW #310
We do our usual end of year look back on the topics, news, and trends that caught our attention. We covered some OWASP projects, the ongoing attentio…
1 year, 3 months ago
Adding Observability with OpenTelemetry - Adriana Villela - ASW #309
Observability is a lot more than just sprinkling printf statements throughout a code base. Adriana Villela explains principles behind logging, tracea…
1 year, 3 months ago
Biometric Frontiers: Unlocking The Future Of Engagement - Andras Cser, Enza Iannopollo - ASW #308
This week's interview dives deep into the state of biometrics with two Forrester Research analysts!
This discussion compares and contrasts regional a…
1 year, 3 months ago
Modernizing AppSec - Melinda Marks - ASW #307
In this week's interview, Melinda Marks' joins us to discuss her latest research. Her recent report Modernizing Application Security to Scale for Cl…
1 year, 4 months ago
Bug bounties, vulnerability disclosure, PTaaS, fractional pentesting - Grant McCracken - ASW #306
After spending a decade working for appsec vendors, Grant McKracken wanted to give something back. He saw a gap in the market for free or low-cost se…
1 year, 4 months ago
Making TLS More Secure, Lessons from IPv6, LLMs Finding Vulns - Arnab Bose, Shiven Ramji - ASW #305
Better TLS implementations with Rust, fuzzing, and managing certs, appsec lessons from the everlasting transition to IPv6, LLMs for finding vulns (an…
1 year, 4 months ago