Difference between revisions of "ASW Episode63"

From Security Weekly Wiki
Jump to navigationJump to search
Line 17: Line 17:
  
 
===== Bugs, Breaches, and More! =====
 
===== Bugs, Breaches, and More! =====
 +
 +
* [https://duo.com/decipher/docker-bug-allows-root-access-to-host-file-system Duo reveals a path from a Docker container to its host]
  
 
===== If you build it, they will come =====
 
===== If you build it, they will come =====
 +
 +
* [https://github.blog/2019-05-23-introducing-new-ways-to-keep-your-code-secure/ GitHub makes dependency tracking more dependable]
  
 
===== Learning & Tools =====
 
===== Learning & Tools =====
 +
 +
* [https://github.com/IgorKorkin/MemoryRanger MemoryRanger project updated with more Windows kernel-mode driver attacks and defenses]
 +
* [https://github.com/compsec-snu/razzer Razzer reveals Linux kernel data races] by focusing the more general [https://github.com/google/syzkaller syzkaller kernel fuzzer]
  
 
===== Food for Thought =====
 
===== Food for Thought =====
  
 +
* [https://code.fb.com/security/service-encryption/ Facebook shows its infrastructure for mutual identity and authentication among its services]
 +
* [https://spiffe.io The SPIFFE project is working to bring easier mutual authentication to services that adopt it]
  
 
{{SocialMedia}}
 
{{SocialMedia}}

Revision as of 03:53, 3 June 2019

Recorded June 3, 2019 at G-Unit Studios in Rhode Island!

Hosts

  • Matt Alderman
    CEO at Security Weekly, Strategic Advisor, and Wizard of Entrepreneurship
  • John Kinsella
    is the Vice President of Container Security for Qualys.
  • Mike Shema
    is the Product Security Lead of Square.
  • Announcements

    • John Strand will be teaching Active Defense and Cyber Deception at Black Hat 2019.  Please register here!  Register Now @ [1].
    • We just released our 2019 Security Weekly 25 Index Survey. Please go to securityweekly.com and click the Survey link to help us understand who's evaluating, using, or formerly used any of the Security Weekly 25 companies. The results will be summarized and presented back to all responders in a private webcast.

    Topic:


    News

    Bugs, Breaches, and More!
    If you build it, they will come
    Learning & Tools
    Food for Thought


    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+