ASW Episode34

From Paul's Security Weekly
Jump to: navigation, search

Application Security Weekly #34

Recorded October 1st, 2018 at G-Unit Studios in Rhode Island!

Episode Audio


  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Annoucements:

    • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at:
    • DerbyCon is holding its first-ever Mental Health & Wellness Workshop - to help support their efforts, please go to
    • Join us for our Webcast with DomainTools about How To Analyze And Investigate Malicious JavaScript Attacks @3-4pm EST. Go to to register now!

    Landing a Job in Application Security


    Bugs, Breaches, and More!

    1.) Facebook discloses the loss of at least 50M Access Tokens also covered by Motherboard

    2.) Formjacking is on the Rise

    3.) Google admits to allowing hundreds of companies read your Email

    If you Build It, They Will Come

    1.) FireFox Monitor will alert you when your accounts have been Pwned

    2.) Google promises Chrome changes after privacy complaints

    3.) Bounty Hunters Only!

    Learning & Tools

    1.) Static Analysis of Client-Side JavaScript for Pentesters & Bug Bounty Hunters

    2.) Microsoft releases MS-DOS v1.25 and v2.0 as Open Source

    3.) James Kettle's Practical Web Cache Poisoning

    Food for Thought

    1.) Limbo on the Cheap && test && commit || revert

    2.) Adblock Plus maker has a new taskforce to fight publisher efforts to reinject adds

    3.) CommitStrip: Convinced by Telecommuting

    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+