Info

Paul's Security Weekly TV

Security news, interviews, how-to technical segments. For security professionals by security professionals. We Hack Naked.
RSS Feed Subscribe in Apple Podcasts
Paul's Security Weekly TV
2018
July
June
May
April
March
February
January


2017
December
November
October
September
August
July
June
May
April
March
February
January


2016
December
November
October
September
August
July
June
May
April
March
February
January


2015
December
November
October
September
August
July
June
May
April
March
February
January


2014
December
November
October
September
August
July
June
May
April
March
February
January


2013
December
November
October
September
August
July
June


Categories

All Episodes
Archives
Categories
Now displaying: Category: application security weekly
Jul 12, 2018

One of the hardest problems that Application Security practitioners need to solve is the problem of visibility. Not only do they need to uncover all of the different projects under development - they also need to worry about what libraries and frameworks those projects are using.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode23 Follow us on Twitter: https://www.twitter.com/securityweekly

Jul 11, 2018

In the news, Google patches critical remote code execution bugs in Android OS, A new data breach may have exposed personal information of almost every American adult, Facebook acknowledges it shared user data with 61 companies, social media apps are 'deliberately' addictive to users, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode23 Follow us on Twitter: https://www.twitter.com/securityweekly

Jul 5, 2018

'GDPR-Lite', Testing Firefox, refactoring in VS Code, sniff network traffic from our iOS device, Gentoo GitHub organization is hacked, and what does it mean to experience fulfillment? All that and more, here on Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode22 Follow us on Twitter: https://www.twitter.com/securityweekly

Jun 28, 2018

Apple comments on erroneous reports of iPhone brute force passcode hack, XSS, in Google Colaboratory + CSP bypass, how to deploy to Azure with Docker & VS Code, and debugging JavaScript in Google Chrome and Visual Studio Code.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode21 Follow us on Twitter: https://www.twitter.com/securityweekly

Jun 27, 2018

Dan Kuykendall is the Senior Director of Application Security Products at Rapid7 where he directs the strategic vision, research and product development for the company’s application security solutions.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode21 Follow us on Twitter: https://www.twitter.com/securityweekly

Jun 21, 2018

In the news, Microsoft Windows remote kernel crash vulnerability, another flaw hits Tapplock smart locks, cops aren't confident iPhone hackers found a workaround to Apple's new security feature Spain's La Giga app caught using fans' phone mics and GPS to detect illegal Futebol broadcasts, & more on this episode of Application Security Weekly!Full Show Notes: https://wiki.securityweekly.com/ASW_Episode20 Follow us on Twitter: https://www.twitter.comsecurityweekly

Jun 20, 2018

Ron started his cybersecurity career as a network penetration tester for the NSA. at BBN, he developed network honeypots to lure hackers and he ran US Internetworking's team of penetration testers and incident responders.Full Show Notes: https://wiki.securityweekly.com/ASW_Episode20 Follow us on Twitter: https://www.twitter.comsecurityweekly

Jun 14, 2018

Peter Chestna is the Director of Developer Engagement Veracode. He comes on the show to talk about the article he wrote called "The 3 Ways of DevSecOps".

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode19 Follow us on Twitter: https://www.twitter.comsecurityweekly

Jun 13, 2018

Application news, DevOps food for thought, learning & tools from BitHubLab, and bugs, breaches, and more!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode19 Follow us on Twitter: https://www.twitter.comsecurityweekly

Jun 7, 2018

In the news, how other companies are responding to GDPR, Oracle plans to drop Java Serialization Port, Microsoft acquires GitHub, the percentage of open source code in proprietary apps is rising, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode18 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

Jun 6, 2018

This week, Keith and Paul discuss what the difference is between Agile, CI/CD, and DevOps! Agile is focused on processed, highlighting change, all while accelerating delivery. CI/CD focuses on software-defined life cycles, highlighting tools, all that emphasize automation. DevOps focuses on culture, highlighting roles that emphasize responsiveness.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode18 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 24, 2018

In the news, the entire Nest ecosystem of smart home devices goes offline, how Alphabet plans to keep hackers away from this year's election, the Node.js Ecosystem is chaotic and insecure, open-source vulnerabilities plague enterprise codebase systems, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode1

Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 23, 2018

James is the creator and founder of the Lonestar Application Security Conference which is the largest annual security conference in Austin, TX. He also runs DevOps Days Austin and is on the global DevOps Days board. He also holds several security certifications including CISSP and GWAPT. He joins Keith and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode1

Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 16, 2018

A remote code execution vulnerability is discovered in Electron, the Azure CTO reveals details about Azure confidential computing, and part 1 of 3 on the ways of DevSecOps.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode16 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 10, 2018

Keith and Paul talk more about building your own AppSec program. They discuss working with developers as part of building your appsec program, and giving developers the tools to be able to move fast and break things.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode15 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 9, 2018

In the news, A Boeing 757 was hacked remotely while it sat on the runway, Twitter says all 336 million users should change their passwords, Meltdown patches return kernel page table directory to user space, somebody tried to hide a backdoor in a popular JavaScript npm Package, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode15 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 3, 2018

In the news, Drupal 7 and 8 core critical releases, Irony of Leaky App at #RSAC Not Lost on Attendees, US FDA seeking Congressional Authority for new requirements, Facebook fuels broad privacy debate by tracking non-users, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode13 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 3, 2018

In the news, SEC fines Yahoo $35 million for not reporting cyber breach, hackers found using a new code injection technique to evade detection, Microsoft dismantles it's Windows Development Group, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode14 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 3, 2018

Keith and Paul talk about building your application security program!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode14 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

May 2, 2018

Rami Sass is CEO and Co-Founder of WhiteSource. Rami is an experienced entrepreneur and executive with vast experience in defining innovative products, leading technology groups and growing companies from seed level to business maturity. He joins Keith and Paul this week for an interview!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode13 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

Apr 18, 2018

With GitHub's 10-year Anniversary, it's about time we talk Open Source! Visit: https://github.com/ten to read about their anniversary!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode12 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

Apr 17, 2018

In the news, Attacking an FTP Client: MGETting more than you bargained for, Warning: Your Windows PC can get hacked by just visiting a site, new MacOS backdoor linked to OceanLotus, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode12 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

Apr 10, 2018

Everything you want to build, anywhere you want to build it, can be done with JavaScript. This week Paul and Keith discuss One Language to Rule Them All: Node-based Operating System, NodeOS!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode11 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

Apr 9, 2018

In the news, Microsoft rushes out fix for major hole caused by previous Meltdown patch, Intel admits a load of its CPUs have Spectre v2 flaw that can't be fixed, Slack’s new policy lets bosses read employees’ DMs without consent, Georgia passes Anti-Infosec Legislation, NASA receives response from Voyager 1 spacecraft 13 billion miles away after 37 years of inactivity, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode11 Visit our website: http://securityweekly.com

Follow us on Twitter: https://www.twitter.comsecurityweekly

Apr 5, 2018

In the news, uncovering a bug in Cloudflare's Minification Service, how security alerts are keeping your code safer, Red Team wisdom, Facebook scraped call, text message data for years from Android phones, & more on this episode of Application Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode10

Visit our website: http://securityweekly.com
Follow us on Twitter: https://www.twitter.comsecurityweekly

1 2 Next »