Application Security PodCast
By Chris Romeo and Robert Hurlbut
To listen to an audio podcast, mouse over the title and click Play. Open iTunes to download and subscribe to podcasts.
The Application Security PodCast exists to reach people that build or test things (developers, testers, managers, product people, sales, marketing). We explain the details of application security in a way that someone new to the discipline can understand. We strive to break out of the security echo chamber and talk to real people that design, build, and test stuff. When we aren't speaking of foundational application security topics, we interview successful people in the application security world and decompose what makes them successful. If we hear an interesting conference presentation on a topic, we invite the speaker as a guest and have them break down the topic in 30 minutes. We cut through any boundaries that exist in #AppSec or #InfoSec, and are not afraid to talk about any type of technology and the role of security in making things tick.
||CleanOWASP for everyone (S02E21) - Application Security PodCast||This is the conclusion of Season 02 for the AppSec PodCast. In this episode, we focus in on all the OWASP goodness we’ve experienced this year. You’ll hear our favorite clips and explanations from a season full of OWASP.||12/5/2017||Free||View in iTunes|
||CleanContainers Again (S02E20) - Application Security PodCast||This is the final interview from the #AppSecUSA Conference in Orlando, and Chris and Robert are joined by Brian Andrzejewski. He talks about containers, their usage within #AppSec, and about orchestrations.||10/24/2017||Free||View in iTunes|
||CleanModSecurity and #AppSec (S02E19) - Application Security PodCast||On this weeks episode of the #AppSec Podcast, Robert and Chris are joined by Tin Zaw, an advocate for ModSecurity. He dives into its background, the use of rules, and the many advantages. Rate us on iTunes and provide a positive comment, please!||10/17/2017||Free||View in iTunes|
||CleanThe Exploitation of IoT (S02E18) - Application Security PodCast||On this weeks episode of the #AppSec Podcast, Robert and Chris are joined by Aditya Gupta. They speak with him about the many facets of IoT and some of its effects with pen testing, training, and mobile application security.||10/10/2017||Free||View in iTunes|
||CleanThe Future of the OWASP Proactive Controls (S02E17) - Application Security PodCast||On this episode of the Application Security Podcast, Chris and Robert talk to Jim Manico and Katy Anton about the OWASP Proactive Controls project. This is something we have talked about before, and they are looking for feedback on the update coming so.||10/3/2017||Free||View in iTunes|
||CleanThe Future of the OWASP Top 10 (S02E16) - Application Security PodCast||In this episode we talk about the future of the OWASP Top 10. We do this by meeting the new project leadership team, understanding the process for how they do governance now and into the future, and how they deal with provided feedback.||9/25/2017||Free||View in iTunes|
||CleanThreat Modeling (S02E15) - Application Security PodCast||On this weeks episode of the #AppSec Podcast, Chris and Robert are at #AppSecUSA. We hear a conference talk done by Robert on the topic of Threat Modeling. He goes more in depth than ever before on the show, and we hope you enjoy!||9/19/2017||Free||View in iTunes|
||CleanPasswords, Identity, and #AppSec (S02E14) - Application Security PodCast||On this episode, Robert and Chris talk about Passwords, something we all are familiar with. They dive into specifics with passwords and threats that can occur with them. They also talk about how passwords interact with Identity and AppSec.||9/12/2017||Free||View in iTunes|
||CleanHacking APIs and Web Services with DevSlop (S02E13) - Application Security PodCast||On this weeks episode, Chris and Robert are joined by Tanya and Nicole. They talk about what APIs are, how they are used, and some of the threats involved with them. They also look at what DevSlop and ZAP are in combination with APIs. As always,||9/5/2017||Free||View in iTunes|
||CleanAgile #AppSec (S02E12) - Application Security PodCast||On this week’s episode, Robert and Chris speak with Jon Mccoy and Jonathan Marcil about using Agile #AppSec in the Secure Development Lifecycle. They dive deeper into what is agile, how it can be used, some practical applications using security champi||8/29/2017||Free||View in iTunes|