Finding a Use for GenAI in AppSec - Keith Hoodlet - ASW #323

Application Security Weekly (Video)
25/03/2025 54 min
Finding a Use for GenAI in AppSec - Keith Hoodlet - ASW #323

Listen "Finding a Use for GenAI in AppSec - Keith Hoodlet - ASW #323"

Descargar episodio Ver en sitio original

Episode Synopsis

LLMs are helping devs write code, but is it secure code? How are LLMs helping appsec teams? Keith Hoodlet returns to talk about where he's seen value from genAI, where it fits in with tools like source code analysis and fuzzers, and where its limitations mean we'll be relying on humans for a while. Those limitations don't mean appsec should dismiss LLMs as a tool. It means appsec should understand how things like context windows might limit a tool's security analysis to a few files, leaving a security architecture review to humans. Segment resources: https://securing.dev/posts/ai-security-reasoning-and-bias/ https://seclists.org/dailydave/2025/q1/0 https://arxiv.org/pdf/2409.16165 https://arxiv.org/pdf/2410.05229 https://nicholas.carlini.com/writing/2025/thoughts-on-future-ai.html Show Notes: https://securityweekly.com/asw-323

More episodes of the podcast Application Security Weekly (Video)

Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351 07/10/2025
Changing the Vuln Conversation from Volume to Remediation - Francesco Cipollone - ASW #350 30/09/2025
Design Errors in Entra ID, Design Defenses in iOS, Design Difficulties in DeepSeek - ASW #349 23/09/2025
How OWASP's GenAI Security Project keeps up with the pace of AI/Agentic changes - Scott Clinton - ASW #348 16/09/2025
Limitations and Liabilities of LLM Coding - Ted Shorter, Seemant Sehgal - ASW #347 09/09/2025
AI, APIs, and the Next Cyber Battleground: Black Hat 2025 - Michael Callahan, Idan Plotnik, Josh Lemos, Chris Boehm - ASW #346 02/09/2025
Translating Security Regulations into Secure Projects - Emily Fox, Roman Zhukov - ASW #345 26/08/2025
Managing the Minimization of a Container Attack Surface - Neil Carpenter - ASW #344 19/08/2025
The Future of Supply Chain Security - Janet Worthington - ASW #343 12/08/2025
Uniting software development and application security - Jonathan Schneider, Will Vandevanter - ASW #342 05/08/2025
© 2003-2025 ZARZA | AHEAD OF OUR TIME
privacy policy
In God we trust In God we trust
PreSales Questions? Click Here
or call our toll-free line at +1-888-5002068 Miami, Florida, USA