ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Code Scanning That Works With Your Code - Scott Norberg - ASW #317"
Episode Synopsis
Code scanning is one of the oldest appsec practices. In many cases, simple grep patterns and some fancy regular expressions are enough to find many of the obvious software mistakes. Scott Norberg shares his experience with encountering code scanners that didn't find the .NET vuln classes he needed to find and why that led him to creating a scanner from scratch. We talk about some challenges in testing tools, making smart investments in engineering time, and why working with .NET's compiler made his decisions easier. Segment Resources: -https://github.com/ScottNorberg-NCG/CodeSheriff.NET Identifying and eradicating unforgivable vulns, an unforgivable flaw (and a few others) in DeepSeek's iOS app, academics and industry looking to standardize principles and practices for memory safety, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-317
More episodes of the podcast Security Weekly Podcast Network (Audio)
Digging For Vulnerability Gold - PSW #909
15/01/2026
The Future Of Proactive Security Before Building an AI Enabled Enterprise - Erik Nost - BSW #430
14/01/2026
Are you dead?, AI Hellscape, Copilot, Blue Delta, Quishing, Confer, Aaran Leyland... - SWN #546
13/01/2026
Nudification, Spying, Ni8mare, Cisco, Chat-GPT, Chrome, SaaS, CES, Josh Marpet & More - SWN #545
09/01/2026
No FlipperZeros Allowed - PSW #908
08/01/2026
In God we trust