Podcast Episodes
Back to SearchEpisode 154 - Conferences, Cloud Security, Software Supply Chain
It's one of those days, must be Q4. View of tech conferences as an outsider. An analysis of data from Google's "Threat Horizons" report and what it t…
4 years, 6 months ago
Episode 153 - Fuzzing, Authentication, Browser Wars (again)
Our last episode before its December!!! Where oh where did 2021 go? Seth and Ken wrap up a conversation on fuzzing strategies for HTTP Requests. A di…
4 years, 6 months ago
Episode 152 - Breaches, Symbolic Execution, Dynamic vs. Static Assessments
Gobble gobble! It is that time of the year again to stuff our faces... WITH APPSEC! A discussion on breach notification related to the recent GoDaddy…
4 years, 6 months ago
Episode 151 - Secure Code Review, Software Interdependency
Ahem, Seth and Ken return with a live code review of a recently seen authentication routine. A discussion of software interdependence and the issues …
4 years, 7 months ago
Episode 150 - Jerry Gamblin - NVD CVEs, Vulnerability Disclosure, Burp Cert
Jerry Gamblin makes a return to the podcast to talk about recent events in Missouri and how _not_ to respond to responsible vulnerability disclosure.…
4 years, 7 months ago
Episode 149 - Burnout, AppSec News Sources
Just two old men bi***ing and moaning about App Sec and the price of a good pair of New Balances. Real discussion on dealing with burnout and imposte…
4 years, 8 months ago
Episode 148 - Facebook, Phrack, Paved Path
Strange things are afoot at the Circle K. Facebook outage and BGP routing. A new issue of phrack released on Oct 5 results a discussion on the good o…
4 years, 8 months ago
Episode 147 - James Kettle (@albinowax), Security Research
The one and only James Kettle (@albinowax) of Portswigger joins Seth and Ken to talk about his path into security, HTTP request smuggling, and how to…
4 years, 8 months ago
Episode 146 - OWASP Top 10, Bug Bounties with @JHaddix, Request Smuggling
Now with the latest in old people ramblings. Discussion about the OWASP Top 10 Draft list and how the Top 10 should be used as an awareness document.…
4 years, 9 months ago
Episode 145 - Return of @cktricky, Burnout, Bumble Vuln, Brute-Forcing
@cktricky is _back_ with a newfound lease on life (and application security). The duo discusses in-person vs. virtual conferences, DEF CON 29, burnou…
4 years, 9 months ago