Asw119

From Security Weekly Wiki
Jump to navigationJump to search

Application Security Weekly Episode #119 - August 24, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. DevOps-First Application Security For Mid-Markets - 12:30 PM-01:00 PM


Announcements

  • Join the Security Weekly Mailing List for webcast/virtual training announcements and to receive your personal invite to our Discord server by visiting https://securityweekly.com/subscribe and clicking the button to join the list!

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Description

Mid-markets do have AppSec expertise, the current AppSec products are focused on large enterprises and require AppSec expertise. Sken.ai is the new and the only AppSec scan tool, focused on mid-markets where DevOps can get started without any AppSec expertise.



Guest(s)

Sundar Krish

Sundar Krish is the CEO & Co-Founder of a application security / DevOps startup called Sken.ai. Previously he did another startup called Waygum that was venture funded and acquired. He was a distinguished architect at Cisco before that and has worked in technology in Silicon valley for over 20 years.


Hosts

2. ATM Attacks, gcploit, & ClusterFuzz - 01:00 PM-01:30 PM


Announcements

  • Our next technical training on August 27th will teach you about BootHole, SIGRed and SMBleed… How To Effectively Prioritize & Remediate Vulnerabilities! Learn How to Extend the Enterprise Network for Remote Workers and Protect Your Home Network on September 10th! Visit https://securityweekly.com/webcasts to see what we have coming up! Or visit securityweekly.com/ondemand to view our previously recorded webcasts!

Description

The Confused Mailman: Sending SPF and DMARC passing mail as any Gmail or G Suite customer, ATM makers Diebold and NCR deploy fixes for 'deposit forgery' attacks, Control Flow Guard for Clang/LLVM and Rust, Fuzzing Services Help Push Technology into DevOps Pipeline, and 7 Things to Make DevSecOps a Reality!


Hosts

John Kinsella's Content:

Articles

Matt Alderman's Content:

Articles

Mike Shema's Content:

Articles