Absolute AppSec
A weekly podcast of all things application security related. Hosted by Ken Johnson and Seth Law.
- Update frequency
- every 10 days
- Episodes
- 297
- Years Active
- 2018 - 2025
Episode 76: Guy Podjarny, Snyk, AppScan, SCA
Guy Podjarny (@guypod), founder of Snyk, joins Ken and Seth to talk about Snyk, the origins of AppScan Standard, Software Composition Analysis and his origin story. A discussion of building developer…
Tue 26 Nov 2019
Episode 75: Brian Glas, OWASP Top 10, OWASPSAMM
Ken and Seth are back! Joined in this episode by Brian Glas, aka @infosecdad, aka Professor Glas to talk about all things OWASP Top 10 2017, the path to his involvement, and how it almost split AppSe…
Tue 19 Nov 2019
Episode 74: Ernest Mueller, DevOps, Security and Cloud Computing
Ernest Mueller (@ernestmueller) joins Seth and Ken to talk about the his path into technology, operations, and security. Additional discussions on the beginnings of DevOps, Security, and Cloud Comput…
Wed 23 Oct 2019
Episode 73: Kevin Cody, CORS, and Lockpicking
Kevin Cody (@kevcody) is back with Seth and Ken to talk about his collaboration with Tim Tomes (@LaNMaSteR53) on CORS. Also discussions on lockpicking, travel tips, and a wide range of topics. Rememb…
Thu 17 Oct 2019
Episode 72: Consulting Horror Stories
Seth and Ken kickoff October with a discussion of consulting horror stories, both from personal experiences and listener-provided. Additional discussions around Cloudflare's WARP.
Tue 01 Oct 2019
Episode 71: Evan Johnson, Cloudflare and Lastpass
Eric Johnson (@ejcx_), one of the first podcast guests to join Seth and Ken revisits to talk about recent industry revelations, including the Lastpass vulnerability from Google's Project Zero. Furthe…
Tue 17 Sep 2019
Episode 70: Andrew Wilson, OWASP and Training New AppSec Resources
Andrew Wilson (@azwilsong) , a friend and partner at Bishop Fox joins Seth and Ken to discuss OWASP, running a consultancy, organizing CactusCon, and training new AppSec resources.
Tue 03 Sep 2019
Episode 69: Eric Ellett, Development vs. Security
Seth and Ken are joined by Eric Ellett (@EricEllett) to talk about software supply chain security. Development vs. Security and how to develop a good relationship with development instead of an antag…
Tue 27 Aug 2019
Episode 68: Jerry Gamblin, DEF CON 27 Recap
Jerry Gamblin (@jgamblin) joins Seth and Ken to talk about #hackersummercamp, DEF CON 27, and all things Vegas. Discussion includes NULL license plates, software bill of materials, and more.
Tue 13 Aug 2019
Episode 67: Kubernetes Security with Stefan and Bobby
Seth and Ken are joined by Stefan (@lojikil) and Bobby (@b0bbytabl3s) to talk about Kubernetes Security based on the assessment they conducted at Trail of Bits.
Mon 12 Aug 2019
Episode 66: Capital One Breach, NPM, and Secure Code Reviews
Seth and Ken discuss the latest news, including the Capital One Breach, Project Zero's recent iOS vusnerability disclosures, and further malicious NPM package takeovers. Further topics include learni…
Tue 30 Jul 2019
Episode 65: Adam Baldwin, 3rd Party Dependencies, and Supply Chain Security
Seth and Ken are joined by Adam Baldwin (@adam_baldwin) to discuss a topic we've been talking a lot about - 3rd party dependency and supply chain security. Adam gave a talk at this year's LocoMoco Se…
Tue 16 Jul 2019
Episode 64: Hijacked Gems, Zoom RCE, and Marriott Fines
Seth and Ken discuss conference proposals submissions and how to stand out. Also discussions on the latest security news, including the Zoom vulnerability disclosure, European fines for Marriott, and…
Tue 09 Jul 2019
Episode 63: Julian Berton, AppSec Day, Developer Training, and Security Standards
Julian Berton joins Seth and Ken to talk about Developer Training, Security Standards and AppSec Day, a global Application Security conference in Melbourne, Australia. They also discuss the latest lo…
Tue 02 Jul 2019
Episode 62: Abdullah Munawar, Ben Pick, Global AppSec DC, and Running an OWASP Chapter
Seth and Ken welcome Abdullah Munawar and Ben Pick to the show. They discuss their path into application security, current roles, and OWASP involvement. Specifically, Abdullah and Ben talk about runn…
Tue 18 Jun 2019
Episode 61: Tanya Janca, DevSlop, Diversity, and Inclusion
Based on demand, Seth and Ken are joined by Tanya Janca (@shehackspurple) to talk about all things OWASP, travel, and experinces. Topics include OWASP DevSlop, diversity, and inclusion
Tue 11 Jun 2019
Episode 60: Stefan Edwards, Huawei, Android Security, and Programming Languages
Seth is joined once again by Stefan Edwards to talk about current events and ruin another portion of information security. Topics include Huawei, Android Security, and Programming Languages.
Tue 21 May 2019
Episode 59: James Wickett on DevOps
Seth and Ken discuss Minecraft mod hacking and applying AppSec tools to the practice. Joined by James Wickett (@wickett) to talk about the history of DevOps, why software security people should learn…
Tue 14 May 2019
Episode 58: David Lindner on RASP, Mobile, IoT
Seth and Ken discuss Edge Side Include Injection. Subsequently joined by David Lindner (@golfhackerdave), the current head of AppSec at Contrast Security. David talks all about RASP, mobile and IoT s…
Tue 07 May 2019
Episode 57: OWASP WIA (Women in AppSec) Committee
Seth and Ken are joined by the OWASP WIA (Women in AppSec, @owaspwia) Committee. We discuss diversity in security and how the committee and OWASP is making the community more inclusive. Topics includ…
Tue 30 Apr 2019
Disclaimer: The podcast and artwork embedded on this page are the property of Ken Johnson and Seth Law. This content is not affiliated with or endorsed by eachpod.com.