This browser doesn't support Spotify Web Player. Switch browsers or download Spotify for your desktop.

Application Security PodCast

By Chris Romeo and Robert Hurlbut

Reaching new people, explaining the details, and leaving the echo chamber in the dust.

  1. 1.
    Rapid Threat Model Prototyping Process (S04E26)02/01/2019
    47:21
  2. 2.
    Running Azure Securely (S04E25)01/25/2019
    44:17
  3. 3.
    OWASP Glue (S04E24)01/18/2019
    35:47
  4. 4.
    AppSec in Israel and Three Talks to watch from AppSec USA(S04E23)01/11/2019
    30:35
  5. 5.
    OWASP IoT Top 10 (S04E22)01/01/2019
    44:30
  6. 6.
    SecOps Makes Developers Lives Easier (S04E21)12/18/2018
    21:55
  7. 7.
    Security Culture Hacking: Disrupting the Security Status Quo (S04E20)12/10/2018
    32:15
  8. 8.
    The Extremely Unabridged History of SQLi and XSS(S04E19)12/03/2018
    30:15
  1. 9.
    The History of OWASP (S04E18)11/27/2018
    43:32
  2. 10.
    The Joy of the Vulnerable Web: JuiceShop(S04E17)11/19/2018
    36:30
  3. 11.
    iGoat and iOS Mobile Pen Testing (S04E16)11/13/2018
    28:08
  4. 12.
    Two Sides to a Bug Bounty: The Researcher and The Program (S04E15)11/05/2018
    36:10
  5. 13.
    What You Require, You Must Also Retire (S04E14)10/30/2018
    30:41
  6. 14.
    Threat Modeling as Code (S04E13)10/23/2018
    28:05
  7. 15.
    Threat Libraries in the Cloud (S04E12)10/16/2018
    30:54
  8. 16.
    Chaos Engineering and #AppSec (S04E11)10/09/2018
    36:50
  9. 17.
    WIA: Women in #AppSec (S04E10)10/01/2018
    34:40
  10. 18.
    A Conversation with Karen (S04E09)09/25/2018
    17:05
  11. 19.
    Back to the Lab Again with a DevOps (S04E08)09/18/2018
    26:40
  12. 20.
    A Slice of the Razor with ASP.Net Core (S04E07)09/11/2018
    28:41
  13. 21.
    A Pen Testers Transition to #AppSec: #VoteForOfer (S04E06)09/04/2018
    26:55
  14. 22.
    #AppSec Pipeline as Toolbox (S04E05)08/28/2018
    21:59
  15. 23.
    Threat Modeling with a bit of #Startup (S04E04)08/20/2018
    22:14
  16. 24.
    Securing DevOps (S04E03)08/14/2018
    34:15
  17. 25.
    CRS and an Abstraction Layer (S04E02)08/07/2018
    25:21
  18. 26.
    Google Chrome and the Case of the Disappearing HTTP (S04E01)07/30/2018
    24:32
  19. 27.
    All the Pieces You Need for an #AppSec Program: Finale(S03 E21) – Application Security PodCast06/12/2018
    29:13
  20. 28.
    OWASP, Reach Out; We Are Known and Misunderstood (S03E20) – Application Security PodCast06/05/2018
    30:54
  21. 29.
    Bug Bounty with a Side of Empathy (S03E19) – Application Security PodCast05/29/2018
    29:30
  22. 30.
    Malicious User Stories (S03E18) – Application Security PodCast05/22/2018
    22:47
  23. 31.
    Neurodiversity in Security (S03E17) – Application Security PodCast05/15/2018
    18:02
  24. 32.
    AppSec and Hardware (S03E16) – Application Security PodCast04/27/2018
    31:24
  25. 33.
    #OWASP AppSensor (S03E15) – Application Security PodCast04/20/2018
    30:29
  26. 34.
    Third Party Software is not a Cathedral, It’s a Bazaar (S03E14) – Application Security PodCast04/13/2018
    37:02
  27. 35.
    Dependency Check and Dependency Track (S03E13) – Application Security PodCast04/12/2018
    48:03
  28. 36.
    The #OWASP Threat Modeling Project (S03E12) – Application Security PodCast04/06/2018
    32:30
  29. 37.
    The #OWASP Cheat Sheet Project (S03E11) – Application Security PodCast04/05/2018
    30:40
  30. 38.
    OWASP Top 10 #10: Logging (S03E10) – Application Security PodCast03/23/2018
    33:36
  31. 39.
    Selling #AppSec Up The Chain (S03E09) – Application Security PodCast03/16/2018
    42:45
  32. 40.
    #AppSec Recommendations (S03E08) – Application Security PodCast03/09/2018
    29:07
  33. 41.
    Hustle and Flow: Dealing With Burnout in Security (S03E07) – Application Security PodCast03/02/2018
    32:30
  34. 42.
    OWASP Top 10 #4 XXE (S03E06) – Application Security PodCast02/23/2018
    24:36
  35. 43.
    SAST, DAST, and IAST. Oh My! (S03E05) – Application Security PodCast02/16/2018
    35:20
  36. 44.
    We Are Not Making It Worse (S03E04) – Application Security PodCast02/09/2018
    33:02
  37. 45.
    Insecure Deserialization (S03E03) – Application Security PodCast02/02/2018
    34:06
  38. 46.
    Security Champions (S03E02) – Application Security PodCast01/26/2018
    26:52
  39. 47.
    Shifting left (S03E01) – Application Security PodCast01/19/2018
    33:01
  40. 48.
    OWASP for everyone (S02E21) – Application Security PodCast12/05/2017
    31:41
  41. 49.
    Containers Again (S02E20) – Application Security PodCast10/24/2017
    29:31
  42. 50.
    ModSecurity and #AppSec (S02E19) – Application Security PodCast10/17/2017
    22:59
  43. 51.
    The Exploitation of IoT (S02E18) – Application Security PodCast10/10/2017
    23:56
  44. 52.
    The Future of the OWASP Proactive Controls (S02E17) – Application Security PodCast10/03/2017
    19:37
  45. 53.
    The Future of the OWASP Top 10 (S02E16) – Application Security PodCast09/25/2017
    35:44
  46. 54.
    Threat Modeling (S02E15) – Application Security PodCast09/19/2017
    47:06
  47. 55.
    Passwords, Identity, and #AppSec (S02E14) – Application Security PodCast09/12/2017
    32:06
  48. 56.
    Hacking APIs and Web Services with DevSlop (S02E13) – Application Security PodCast09/05/2017
    34:46
  49. 57.
    Agile #AppSec (S02E12) – Application Security PodCast08/29/2017
    44:33
  50. 58.
    Docker Security and AppSec (S02E11) – Application Security PodCast08/22/2017
    44:46
  51. 59.
    Proactive Controls, AppSec USA, and Gartners MQ on AppSec Testing (S02E10) – Application Security PodCast08/17/2017
    22:49
  52. 60.
    Blackhat Security Conference (S02E09) – Application Security PodCast08/08/2017
    21:14
  53. 61.
    The OWASP Top 10 Proactive Controls (S02E08) – Application Security PodCast07/25/2017
    43:31
  54. 62.
    MORE OWASP! (S02E07) – Application Security PodCast07/04/2017
    36:30
  55. 63.
    The OWASP Threat Dragon (S02E06) – Application Security PodCast06/27/2017
    31:30
  56. 64.
    I Just Like Static Analysis. Static Analysis is My Favorite (S02E05) – Application Security PodCast06/19/2017
    39:30
  57. 65.
    Continuous Integration in .NET(S02E04) – Application Security PodCast06/14/2017
    27:32
  58. 66.
    The Technical Debt Ceiling (S02E03) – Application Security PodCast06/06/2017
    22:00
  59. 67.
    Controversy within the OWASP Top 10 RC (S02E02) – Application Security PodCast05/30/2017
    31:20
  60. 68.
    Security in the Design and Architecture (S02E01) – Application Security PodCast05/22/2017
    54:14
  61. 69.
    Conclusion: The End…of Season 1 (S01E18) – Application Security PodCast01/26/2017
    18:54
  62. 70.
    Interview: #DtSR and What Makes a Good Security Consultant? (S01E17) – Application Security PodCast01/12/2017
    37:06
  63. 71.
    Interview: Think like an Attacker or Accountant? (S01E16) – Application Security PodCast01/04/2017
    28:59
  64. 72.
    Interview: The Mindset to Reverse Engineer (S01E15) – Application Security PodCast12/21/2016
    25:30
  65. 73.
    Talk: AppSec Awareness: A Blue Print for Security Culture Change (S01E14) – Application Security PodCast12/13/2016
    46:44
  66. 74.
    Interview: Natural Paranoia as a Career Path? A Transition to Security (S01E13) – Application Security PodCast12/06/2016
    37:05
  67. 75.
    Foundations: Security Community at Any Scale (S01E12) – Application Security PodCast11/29/2016
    27:11
  68. 76.
    Interview: The Soft Skills of AppSec (S01E11) – Application Security PodCast11/16/2016
    38:19
  69. 77.
    Interview: PASTA: Not Just for Breakfast Anymore (S01E10) – Application Security PodCast11/08/2016
    38:52
  70. 78.
    Interview: An Inner Glimpse of the Microsoft SDL (S01E09) – Application Security PodCast11/02/2016
    49:43
  71. 79.
    Interview: Security Must Meet the Needs of the Business (S01E08) – Application Security PodCast10/25/2016
    36:57
  72. 80.
    Foundations: Web Application Pen Testing – Part 2 (S01E07) – Application Security PodCast10/18/2016
    31:38
  73. 81.
    Foundations: Web Application Pen Testing – Part 1 (S01E06) – Application Security PodCast10/18/2016
    31:20
  74. 82.
    Foundations: Development Security Maturity (S01E05) – Application Security PodCast10/11/2016
    48:03
  75. 83.
    Foundations: Privacy and Data Protection (S01E04) – Application Security PodCast10/04/2016
    21:38
  76. 84.
    Foundations: Security in the Methodology (S01E03) – Application Security PodCast09/26/2016
    27:59
  77. 85.
    Foundations: The Activities of the Secure Development Lifecycle (S01E02) – Application Security PodCast09/20/2016
    44:07
  78. 86.
    Introductions and why #AppSec? (S01E01) – Application Security PodCast09/13/2016
    31:21

Listen to Application Security PodCast now.

Listen to Application Security PodCast in full in the Spotify app