Absolute AppSec
A weekly podcast of all things application security related. Hosted by Ken Johnson and Seth Law.
- Update frequency
- every 10 days
- Episodes
- 297
- Years Active
- 2018 - 2025
Episode 257 - In-Person vs. Virtual Training, Compliance Violations
Ken (@cktricky) returns alongside Seth (@sethlaw) for the week. This starts with an in-depth discussion on the pros and cons of in-person and virtual trainings. In short, the duo prefers in-person du…
Tue 27 Aug 2024
Episode 255 (0xFF) - HackerSummerCamp Recap
Seth and Ken are back from Vegas for Episode 0xFF (!!!!) of Absolute AppSec, sponsored by Redpoint Security (redpointsecurity.com). After spending the last week+ withering away in the desert heat whi…
Tue 13 Aug 2024
Episode 254 - Pre-Hacker Summer Camp
Seth and Ken return this week at a slightly unusual time help get you prepped for all things Hacker Summer Camp. As regular visitors to Las Vegas each year for Blackhat, BSidesLV, DEF CON, and other…
Thu 01 Aug 2024
Episode 253 w/ Justin Collins - Managing Security, ProdSec vs. AppSec
We'd only been a dozen episodes old the last time Justin Collins (@presidentbeef) was on Absolute AppSec, so his upcoming return is certainly overdue. Justin is currently head of security at Gusto, a…
Tue 23 Jul 2024
Episode 252 w/ Rami McCarthy - Security Startups, Jobs
Product Security and Cloud security guru Rami McCarthy (@ramimacisabird on X) comes on the Absolute AppSec podcast with Ken and Seth (@cktricky and @sethlaw)! To get to know Rami, you should first ch…
Tue 16 Jul 2024
Episode 251 - Passive Scanning, Chrome Extensions, CocoaPods, NVD
Seth and Ken are back with Episode 251, continuing on with their ranting over all things application security. This starts with a discussion of Mozilla's HTTP Observatory that scans sites for securi…
Tue 09 Jul 2024
Episode 250 - Security Startups, Polyfill Takeover
Seth and Ken are back on the podcast this week without a guest for the first time in a month and start out with an in-depth discussion on startup life based on a recent article from TLDR;Sec. This is…
Tue 02 Jul 2024
Episode 249 w/ Tanya Janca - Secure Guardrails
Tanya Janca (@shehackspurple on X) joins Ken Johnson (@cktricky) and Seth Law (@sethlaw) for a special episode of the Absolute AppSec podcast. Tanya is currently head of education and community at Se…
Tue 25 Jun 2024
Episode 248 w/ Rahil Parikh - Building AppSec Programs
Rahil Parikh, manager of Security Engineering and Architecture @ Policygenius, joins Seth Law and Ken Johnson for an episode of Absolute AppSec. Rahil is long-time leader in information security who'…
Tue 18 Jun 2024
Episode 247 - w/ Alejandro Saenz
Absolute AppSec welcomes Alejandro Saenz to join Seth Law and Ken Johnson as a guest. Alejandro has been active in application and product security fields for over a decade, most recently working in …
Tue 11 Jun 2024
Episode 246 - w/ Charles Shirer
Charles Shirer joins Absolute AppSec for a special episode of the show. Charles has decades of experience as a pentester, threat hunter, red teamer, and security consultant. He's CEO of GlobalWave co…
Tue 04 Jun 2024
Episode 245 - w/ Dustin Lehr - Security Champions
Dustin Lehr, current director of AppSec at data integration company Fivetran, joins Seth and Ken for a special episode of Absolute AppSec. Dustin has spent years helping improve companies' security c…
Tue 28 May 2024
Episode 244 - w/ Kyle Kelly - Software Security Supply Chain
Kyle Kelly joins Seth Law and Ken Johnson as a special guest on the Absolute AppSec podcast. Kyle is an Executive Cybersecurity Consultant at Bancsec, Inc, and Security Researcher at Semgrep, and fou…
Tue 21 May 2024
Episode 243 - w/ Bryan Schmidt
Bryan Schmidt, information security lead at Adept AI is joining Ken Johnson (@cktricky on twitter/x) and Seth Law (@Sethlaw) for a special episode of Absolute AppSec. Before Adept.AI, Bryan spent the…
Tue 30 Apr 2024
Episode 242 - LLMs Exploiting Vulns, State of DevSecOps
Seth and Ken return with analysis of recent research that shows LLMs exploiting known CVEs. And no, it's not completely autonomous yet. This is followed by a breakdown of DataDog's State of DevSecOps…
Tue 23 Apr 2024
Episode 241 - Secure Defaults, Using LLMs for Code Review
**Video may be required**: this episode is focused on demonstrating uses of LLMs against various code. As such, listeners may want to watch the stream to see these uses rather than just listening. Al…
Tue 16 Apr 2024
Episode 240 - Code Smells, XZ Backdoor, Hallucinations
After a week of travel, Seth and Ken return to the podcast with a breakdown of their travel experiences at multiple conferences and teaching their first Practical Secure Code Review course using LLMs…
Tue 09 Apr 2024
Episode 239 - AppSec Intel, CVEs, Authorization
When Ken is away, the geeks will play. Seth is joined by podcast regular Stefan Edwards (@lojikil) to catch up on his recent work around threat hunting. This progresses into a discussion on threat in…
Tue 26 Mar 2024
Episode 238 - AppSec vs. Enterprise Sec, Supply Chain Tool Analysis
Ken and Seth are back to talk about the difference and competing priorities of Application and Enterprise Security. In short, recent news contends that Enterprise or Infrastructure security is lackin…
Tue 19 Mar 2024
Episode 237 - Security 101, Nation State Hackers, Malicious Code
Ken and Seth return for another episode, starting out with pointers on getting into security and finding a niche, all based on a recently released Microsoft project to introduce anyone to security. T…
Tue 12 Mar 2024
Disclaimer: The podcast and artwork embedded on this page are the property of Ken Johnson and Seth Law. This content is not affiliated with or endorsed by eachpod.com.