33 min listen
Pokémon & Synthwave & Hair & Hats - ASW #135
Pokémon & Synthwave & Hair & Hats - ASW #135
ratings:
Length:
68 minutes
Released:
Jan 5, 2021
Format:
Podcast episode
Description
A premise of adding security to DevOps is we can "shift left" AppSec responsibilities, one of which is building apps so they're secure by design. Yet what resources does the AppSec community provide for this approach to design? We take a look at the OWASP Top 10, Web Security Testing Guide, and Application Security Verification Standard to find a way forward for DevOps teams. In the AppSec News, Microsoft purges malicious SolarWinds presence and highlights a threat model around their source code, the tl;drsec crew provides a hardening guide for Kubernetes, Apples provides a user guide for hardening accounts, and Firefox provides a new storage system to defeat side channel abuse! Show Notes: https://securityweekly.com/asw135 Visit https://www.securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly
Released:
Jan 5, 2021
Format:
Podcast episode
Titles in the series (100)
Paul's Security Weekly - Special Edition - Mike Poor & Ed Skoudis Interview - Part II: In part II of our interview we discuss: Brazilian hacker groups The physical manifestation of the NOP Sled OS Security/Insecurity, Shmoocon OS X Hack, OS X predictions Apple's move to Intel and its impact on security Bastille for Mac OS X Why not to... by Security Weekly Podcast Network (Audio)