ASW #225 - Dan Moore

10/01/2023 1h 20min

Listen "ASW #225 - Dan Moore"

Descargar episodio Ver en sitio original

Episode Synopsis

Exposed secrets from CircleCI, web hackers target the auto industry, $100K bounty for making Google smart speakers listen, inspiration from Office Space, AWS making better defaults for S3, resources for learning Rust This segment will discuss options for protecting your APIs. First, why protect them? Second, what are the options and the tradeoffs. Segment Resources: - https://stackoverflow.blog/2022/04/11/the-complete-guide-to-protecting-your-apis-with-oauth2/ - https://fusionauth.io/learn/expert-advice/ - https://fusionauth.io/learn/expert-advice/oauth/modern-guide-to-oauth - https://oauth.net/2/ - https://tools.ietf.org/html/rfc6749 - https://datatracker.ietf.org/doc/id/draft-ietf-oauth-v2-1-07.html - https://paseto.io - https://securityboulevard.com/2021/11/biggest-api-security-attacks-of-2021-so-far/ Visit https://www.securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/secweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/asw225

More episodes of the podcast Application Security Weekly (Audio)

Secure By Design Is Better Than Secure By Myth - Bob Lord - ASW #365 13/01/2026

The Upsides and Downsides of LLM-Generated Code - Chris Wysopal - ASW #364 06/01/2026

AI-Era AppSec: Transparency, Trust, and Risk Beyond the Firewall - Felipe Zipitria, Steve Springett, Aruneesh Salhotra, Ken Huang - ASW #363 30/12/2025

Modern AppSec: OWASP SAMM, AI Secure Coding, Threat Modeling & Champions - Sebastian Deleersnyder, Dustin Lehr, James Manico, Adam Shostack - ASW #362 23/12/2025

Developing Open Source Skills for Maintaining Projects - Kat Cosgrove - ASW #361 16/12/2025

Making OAuth Scale Securely for MCPs - Aaron Parecki - ASW #360 09/12/2025

Making TN Critical Infrastructure the Most Secure in the Nation - T. Gwyddon 'Data' ("Gwee-thin") Owen, James Cotter - ASW #359 02/12/2025

Figuring Out Where to Start with Secure Code - ASW #358 25/11/2025

Secure Coding as Critical Thinking Instead of Vulnspotting - Matias Madou - ASW #357 18/11/2025

Ransomware, Defaults, and Proactive Defenses - Rob Allen - ASW #356 11/11/2025

Ver todos los episodios

ZARZA We are Zarza, the prestigious firm behind major projects in information technology.

ASW #225 - Dan Moore

Listen "ASW #225 - Dan Moore"

Episode Synopsis

More episodes of the podcast Application Security Weekly (Audio)

CAPTCHA for human verification!

Googling with breathtaking tricks you ignore

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Deep web or Invisible Internet

Subdomains, a glance with the experts!

Free Internet, a prediction in Nostradamus style

Educational Technology: From traditional to digital

Localhost, there’s no place like 127.0.0.1

Googling with breathtaking tricks you ignore

Gray Hat Hacking, those with ambiguous ethics…

Internet Predators on the prowl

Dot COM: The Internet’s dominant TLD