Absolute AppSec

By: Ken Johnson and Seth Law
Listen for free

  • Summary

  • A weekly podcast of all things application security related. Hosted by Ken Johnson and Seth Law.
    Show More Show Less
Show More Show Less
activate_Holiday_promo_in_buybox_DT_T2
Episodes
  • Episode 266 - Scope of Penetration Testing, Attack Modeling

    Episode 266 - Scope of Penetration Testing, Attack Modeling
    Nov 5 2024
    Seth (@sethlaw) and Ken (@cktricky) return for an in-depth discussion on penetration testing expectations, driven by recent posts and slack activity from Andrew Wilson. Essentially, certain clients expect that a single penetration test finds everything possible, whether or not those expectations are appropriate. The duo expounds on their experience with similar expectations and how its affected their respective careers and organizations. A followup on threat modeling and a new approach being coined as Attack Modeling.
    Show More Show Less
    Less than 1 minute
  • Episode 265 - w/ Scott Norberg - Static Analysis

    Episode 265 - w/ Scott Norberg - Static Analysis
    Oct 29 2024
    Scott Norberg joins Ken Johnson and Seth Law for an episode of Absolute AppSec all about SAST. Scott is an ASP.NET Security Consultant, Author, Researcher and Speaker. In addition to running his Opperis Technologies consultancy, Scott has recently begun working as lead application security architect at CDW. Before that he worked as Lead Application Security engineer at Gallagher and was a Senior Consultant with the AppSec team at Coalfire. He has been a web security specialist for nearly two decades, and holds several certifications, including Microsoft Certified Technology Specialist (MCTS), certifications for ASP.NET and SQL Server, and a Certified Information Systems Security Professional (CISSP) and CCSP certification. He also has an MBA from Indiana University. To find out more about Scott check out his website https://scottnorberg.com/ as well as his 2020 book Advanced ASP NET Core Security Vulnerabilities.
    Show More Show Less
    Less than 1 minute
  • Episode 264 - w/ Jeremy Long - Software Composition Analysis

    Episode 264 - w/ Jeremy Long - Software Composition Analysis
    Oct 17 2024
    Jeremy Long (@ctxt on social media), Principal Security Engineer at Service Now and project founder and lead for the OWASP Dependency Check project joins Ken Johnson (@cktricky) and Seth Law (@sethlaw). Jeremy spent a decade and a half as a lead application security engineer and principal engineer at Wells Fargo before joining ServiceNow. He has spent years developing processes for automated security analysis of software libraries and techniques for improving real-time application protection (RTAP) systems. Make sure to set time aside for a discussion on Jeremy's insights into improving security systems through dependency analysis and managing industry projects.
    Show More Show Less
    Less than 1 minute

What listeners say about Absolute AppSec

Average customer ratings

Reviews - Please select the tabs below to change the source of reviews.

Audible.co.uk reviews

Amazon reviews
No Reviews are Available