Podcast Episodes
Back to SearchEpisode 284 - BSidesSF/RSA Recap, Vibe Coding, WebAuthN
Back after a hiatus for both BSidesSF and RSA, Seth and Ken recap their experience at both conferences. TL;DR - BSidesSF is great for technical secur…
1 year, 1 month ago
Episode 283 - Intentionally-Vulnerable MCP Server, Hallucinating Software Packages
Ok, so vulnerable MCP tools are a thing now? Ken demonstrates installing and running an intentionally vulnerable MCP server with a bunch of example i…
1 year, 1 month ago
Episode 282 - Model Context Protocol, A2A, NHI Authentication
It is time to talk about Model Context Protocol (MCP), Google's Agent 2 Agent specification, and get back to the crocs and socks of authentication fo…
1 year, 2 months ago
Episode 281 - Signing Models, Vibe Coding, GitHub Action Abuse
The duo are back for a discussion on securing machine learning models using Sigstore, based on a recent blog post from Google Security. Followed by s…
1 year, 2 months ago
Episode 280 - Middleware Vulnerabilities, Identifying Enumeration with LLMs
Seth and Ken are back with an episode dedicated to a review of the recent Next.js middleware vulnerability and how that impacts application security …
1 year, 2 months ago
Episode 279 - Conferences, Destructive Fatigue, Imposter Syndrome
After a week's hiatus, Ken and Seth return and start with a discussion on OWASP conferences and the effectiveness of attendance for vendors. This is …
1 year, 2 months ago
Episode 278 - Security Conferences, Testing Data in Git, Unforgivable Vulnerabilities
Seth and Ken return without a guest to discuss recent news, breaches, and research. Initial discussions around the purposes of the various security c…
1 year, 3 months ago
Episode 277 - w/ Kyle Rippee - AppSec Support, Security Red Flags, Getting Into AppSec
Kyle Rippee, currently staff product security engineer at Tines, joins Seth and Ken for another episode of Absolute AppSec. Kyle has over a decade of…
1 year, 3 months ago
Episode 276 - w/ Myles Borins - NPM
Myles is currently Product Lead for Developer Platform at Snowflake. Previously, he directed project management at GitHub, overseeing projects like …
1 year, 3 months ago
Episode 275 - OpenGrep Summary, Secure By Design, Confusion Attacks
Ken and Seth are back for another episode that starts with a summary of the Semgrep and OpenGrep break. This is followed by Google's recent article t…
1 year, 4 months ago