Collaborate Disseminate
Ron started his cybersecurity career as a network penetration tester for the NSA, and is the Founder of Tenable and Gula Tech Adventures. He joins Keith and April for an interview to talk about security in the upcoming elections, how to maintain separa… Continue reading Ron Gula, Gula Tech Adventures – Application Security Weekly #33
Keith Hoodlet and Paul Asadoorian interview April Wright. They discuss people connected by apps, workplace reward systems, and the importance of building/practicing the process before documenting it. Full Show NotesFollow us on Twitter: https://www.twi… Continue reading April Wright, ArchitectSecurity.org – Application Security Weekly #32
Alpine Linux hit with bug that can lead to Poisoned Containers, data breaches affect stock performance in the long run, Bluebox-ng, a Node.js VoIP pentesting framework, and CommitStrip: It’s Not an App! News Bugs, Breaches, and More! 1.) Alpine… Continue reading Bluebox-ng, Stock Data Breaches, and CommitStrip- Application Security Weekly #32
Zane Lackey is the Founder/Chief Security Officer at Signal Sciences. Zane Lackey explains how we the security industry needs to shift left when it comes to applications and patching. Full Show NotesFollow us on Twitter: https://www.twitter.com/securit… Continue reading Zane Lackey, Signal Sciences – Application Security Weekly #31
U.S. Government releases post-mortem on Equifax, MacOS security baseline script by Jerry Gamblin, Equifax mega-breach and nothing has changed, Docker hacking challenge, and Bug Bounties and mental health. News Bugs, Breaches, and More! 1.) U.S. Governm… Continue reading Microsoft, Equifax, MacOS, and Bug Bounties – Application Security Weekly #31
In the Application security news, ‘Fortnite’ developer had sharp words for Google after an Exploit was discovered, PHP flaw puts WordPress sites at risk, Oracle will charge for Java starting in 2019, how Netflix does Failovers in 7 minutes … Continue reading Fortnite, Netflix, & Black Hat – Application Security Weekly #30
Keith Hoodlet and Paul Asadoorian talk about The Apache Struts2 RCE Vulnerability. They cover: – CVE-2018-11776 – How the 3 Ways of DevOps can guide us toward better security practices – Shared Version Control – Test Environment… Continue reading The Apache Struts2 RCE Vulnerability – Application Security Weekly #30
Matt Alderman and Paul sat down at DEF CON to talk all of the AppSec vendors that they held briefings with at our Pool Cabana. They sat down with companies like Synopsis, Signal Sciences, and discussed how their products influence the AppSec world. Ful… Continue reading Matt Alderman & Paul Asadoorian, Def Con 2018 – Application Security Weekly #29
Tom is the founder of ServerlessOps (https://www.serverlessops.io/) and an experienced operations engineer. He started ServerlessOps after he asked the question, what would he do if servers went away? At a loss for an answer and interested in the futur… Continue reading Tom McLaughlin, ServerlessOps – Application Security Weekly #29
Alibaba Cloud Security team discovers Apache spark rest API remote code execution exploit, Comcast security flaws exposed partial address, Hacker finds hidden ‘God Mode’ in old x86 CPUs, and more! Full Show Notes Follow us on Twitter: https… Continue reading Alibaba Cloud Security, Comcast, and Facebook – Application Security Weekly #28