Sveriges mest populära poddar
The Cyber Threat Perspective
Teknologi

Episode 16: OWASP API Hacking and DevSec with Matt Tesauro

34 min16 november 2022

In this episode Brad is joined by Matt Tesauro to talk all things OWASP, API Hacking and DevSec. Matt Tesauro is a Distinguished Engineer at NoName Labs, a member of the OWASP Global Board of Directors and Founder of 10Security, the creators of DefectDojo.

Matt Tesauro is a DevSecOps and AppSec guru with specialization in creating security programs, leveraging automation to maximize team velocity and training emerging and senior professionals. When not writing automation code in Go, Matt is pushing for DevSecOps everywhere via his involvement in open-source projects, presentations, trainings and new technology innovation.

Twitter:   https://twitter.com/matt_tesauro
LinkedIn: https://www.linkedin.com/in/matttesauro/
DefectDojo: https://www.defectdojo.org/
DefectDojo on Github: https://github.com/DefectDojo/django-DefectDojo
DefectDojo commercial support: https://www.defectdojo.com/

API Security: https://www.slideshare.net/mtesauro/hacking-and-defending-apis-red-and-blue-make-purplepdf
API Security Tools: https://owasp.org/www-community/api_security_tools (always looking for additions!)

OWASP:
Become an OWASP Member: https://owasp.org/membership/
Find a local chapter: https://owasp.org/chapters/
Find a cool project: https://owasp.org/projects/
OWASP Cheat Sheets: https://cheatsheetseries.owasp.org/
OWASP Web Security Testing Guide: https://owasp.org/www-project-web-security-testing-guide/
OWASP Mobile Application Security: https://owasp.org/www-project-mobile-app-security/
OWASP API Security Top 10: https://owasp.org/www-project-api-security/
OWASP Dependency-Check: https://jeremylong.github.io/DependencyCheck/
OWASP Dependency-Track: https://dependencytrack.org/


Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://x.com/cyberthreatpov

Follow Spencer on social ⬇
Spencer's Links: https://spenceralessi.com

Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.

Fler avsnitt av The Cyber Threat Perspective

Visa alla avsnitt av The Cyber Threat Perspective
Episode 185 | A Toddler with a Bazooka: The Real Risk of AI Agents
46 min
Episode 184 | Active Directory Isn't Dead. It's Just Undefended.
29 min
Episode 183 | OWASP Top 10 Part 2: Security Misconfigurations That Get You Hacked
29 min
Episode 182: Patching Crisis — Vulns Now #1 Attack Vector (2026 Verizon DBIR)
31 min
[Replay] Episode 159: How to Break Into Cybersecurity — What Actually Works
45 min
Episode 181: AI Zero Days (Google Threat Intelligence Report)
41 min
Episode 180: Cybersecurity Echo Chambers — How to Think Critically in a Hype-Driven Industry
29 min
Episode 179: OWASP Top 10 Part 1 - Broken Access Control, IDOR, and CORS Explained
29 min
Episode 178: Internal Security Controls That Actually Frustrate Attackers
31 min
Episode 177: Claude Mythos — What It Actually Does, What It Doesn't, and What Your Organization Should Do Now
42 min

The Cyber Threat Perspective med SecurIT360 finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.