Episode 137: CSRF, GraphQL, Kubernetes, Docker, NoSQL Injection
- Author
- Ken Johnson and Seth Law
- Published
- Tue 08 Jun 2021
- Episode Link
- https://absolute-appsec-eps.s3.us-west-1.amazonaws.com/episodes/Absolute_AppSec_Ep_137.mp3
Live from their parent's basement and dripping with tin foil - Seth and Ken talk about how CSRF is a thing in GraphQL. Kubernetes gets an intentionally-vulnerable setup, and you should definitely check the security of your docker. Finally, some noise about the NoSQL Injection Cheat Sheet.
