From Paul's Security Weekly
Application Security Weekly #23
Recorded July 9, 2018 at G-Unit Studios in Rhode Island!
- We just released our 2018 Listener Survey; Please go to securityweekly.com/survey to help us continue to provide you with quality content that doesn't break the build.
- Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.
Topic: The Hardest Problem in Application SecurityOne of the hardest problems that Application Security practitioners need to solve is the problem of visibility. Not only do they need to uncover all of the different projects under development - they also need to worry about what libraries and frameworks those projects are using. Moreover, even after they have discovered all of the projects under development, they need to figure out how to then proceed through identifying all of the vulnerabilities, deduplicating findings across multiple tools, and provide feedback to development teams in a way that is consumable. You can't fix the vulnerabilities you can't see, and in this episode Keith & Paul talk through the process of uncovering the problems you didn't even know you had.
Bugs, Breaches, and More!
If you build it, they will come
Learning & Tools
Food for Thought
3.) Balancing Time