Podcast Episodes

Back to Search
Episode 124: 2020 Top 10 Web Hacking Techniques, Development vs. Security

Seth and Ken discuss Portswigger's Top 10 Web Hacking Techniques of 2020, specifically injection attacks through images in PDFs and reverse proxies. …

5 years, 3 months ago

Short Long
View Episode
Episode 123: Client-Side Controls, Dependency Confusion

Seth and Ken discuss client-side controls and 3rd-party JavaScript security features. Confused deputy vulnerabilities (dependency confusion) in the n…

5 years, 3 months ago

Short Long
View Episode
Episode 122: Brian Glas (@infosecdad) - OWASP Top 10 2021

Seth and Ken welcome back Professor Brian Glas (@infosecdad) to dispel the recent OWASP Top 10 2021 speculation and rumor. We talk through the origin…

5 years, 4 months ago

Short Long
View Episode
Episode 121: Stefan Edwards (@lojikil) - Formal Specification, Fuzzing, LangSec

Stefan Edwards (@lojikil) once again joins Seth and Ken to talk all things LangSec (language security). Discussion ranges from manual vs. automated t…

5 years, 4 months ago

Short Long
View Episode
Episode 120: OWASP Top 10 2021, Researcher Attacks, Parler, Phishing

Seth and Ken discuss the proposed 2021 OWASP Top 10 Risks, North Korean attacks against security researchers, password managers, latest in Parler de-…

5 years, 4 months ago

Short Long
View Episode
Episode 119: Bugtraq, Web Cache Poisoning, and Blind SSRF

Seth and Ken wax nostalgic about the old days due to the shut down of the Bugtraq Mailing List (RIP old friend). Further discussions on web cache poi…

5 years, 5 months ago

Short Long
View Episode
Episode 118: Parler, Twitter, and IDOR

Seth and Ken return with a discussion about application security in the news, including relevance to the Parler "backups". Also discussions about Twi…

5 years, 5 months ago

Short Long
View Episode
Episode 117: Solarwinds, Timing Attacks, Threat Dragon

The dynamic duo is back for their last podcast of 2020!

5 years, 5 months ago

Short Long
View Episode
Episode 116: Lewis Ardern and Pwnfunction - Client-Side JavaScript Security

Lewis Ardern (@LewisArdern) and Pwnfunction (@pwnfunction) join Seth and Ken to talk client-side JavaScript security and their recent Vue JS blog pos…

5 years, 6 months ago

Short Long
View Episode
Episode 115: Clint Gibler - Static Analysis with Semgrep

Clint Gibler (@clintgibler) joins Seth and Ken to talk about Static Analysis with Semgrep. Demonstrations of writing rules within Semgrep and how to …

5 years, 7 months ago

Short Long
View Episode

Love PodBriefly?

If you like Podbriefly.com, please consider donating to support the ongoing development.

Support Us