Debugging & Dev Tools, Isolating PostgreSQL, Abusing the DevOps Pipeline, Xiaomi Flaw - ASW #209

24/08/2022 40 min

Listen "Debugging & Dev Tools, Isolating PostgreSQL, Abusing the DevOps Pipeline, Xiaomi Flaw - ASW #209"

Descargar episodio Ver en sitio original

Episode Synopsis

Ideas on debugging with IDEs, Wiz.io shares technical details behind PostgreSQL attacks in cloud service providers, looking at the attack surface of source code management systems, a Xiaomi flaw that could enable forged payments, defensive appsec design from Signal, what targeted attacks mean for threat models when the targeting goes awry Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw209

More episodes of the podcast Application Security Weekly (Video)

Secure By Design Is Better Than Secure By Myth - Bob Lord - ASW #365 13/01/2026

The Upsides and Downsides of LLM-Generated Code - Chris Wysopal - ASW #364 06/01/2026

AI-Era AppSec: Transparency, Trust, and Risk Beyond the Firewall - Felipe Zipitria, Steve Springett, Aruneesh Salhotra, Ken Huang - ASW #363 30/12/2025

Modern AppSec: OWASP SAMM, AI Secure Coding, Threat Modeling & Champions - Sebastian Deleersnyder, James Manico, Adam Shostack, Dustin Lehr - ASW #362 23/12/2025

Developing Open Source Skills for Maintaining Projects - Kat Cosgrove - ASW #361 16/12/2025

Making OAuth Scale Securely for MCPs - Aaron Parecki - ASW #360 09/12/2025

Making TN Critical Infrastructure the Most Secure in the Nation - T. Gwyddon 'Data' ("Gwee-thin") Owen, James Cotter - ASW #359 02/12/2025

Figuring Out Where to Start with Secure Code - ASW #358 25/11/2025

Secure Coding as Critical Thinking Instead of Vulnspotting - Matias Madou - ASW #357 18/11/2025

Ransomware, Defaults, and Proactive Defenses - Rob Allen - ASW #356 11/11/2025

Ver todos los episodios

ZARZA We are Zarza, the prestigious firm behind major projects in information technology.

Debugging & Dev Tools, Isolating PostgreSQL, Abusing the DevOps Pipeline, Xiaomi Flaw - ASW #209

Listen "Debugging & Dev Tools, Isolating PostgreSQL, Abusing the DevOps Pipeline, Xiaomi Flaw - ASW #209"

Episode Synopsis

More episodes of the podcast Application Security Weekly (Video)

Gray Hat Hacking, those with ambiguous ethics…

Positive Attitude, Share your ZARZA Attitude!

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Deep web or Invisible Internet

Subdomains, a glance with the experts!

Free Internet, a prediction in Nostradamus style

Educational Technology: From traditional to digital

Localhost, there’s no place like 127.0.0.1

Googling with breathtaking tricks you ignore

Gray Hat Hacking, those with ambiguous ethics…

Internet Predators on the prowl

Dot COM: The Internet’s dominant TLD