Application Security Weekly (Video)

About all things AppSec, DevOps, and DevSecOps. Hosted by Mike Shema and John Kinsella, the podcast focuses on helping its audience find and fix software flaws effectively.

Managing Secrets - Vlad Matsiiako - ASW #327 04/22/2025

More WAFs in Blocking Mode and More Security Headaches from LLMs - Sandy Carielli, Janet Worthington - ASW #326 04/15/2025

In Search of Secure Design - ASW #325 04/08/2025

Avoiding Appsec's Worst Practices - ASW #324 04/01/2025

Finding a Use for GenAI in AppSec - Keith Hoodlet - ASW #323 03/25/2025

Redlining the Smart Contract Top 10 - Shashank - ASW #322 03/18/2025

Skype Hangs Up, Android Backdoors, Jailbreak Research, Pretend AirTags, Wallbleed - ASW #321 03/11/2025

CISA's Secure by Design Principles, Pledge, and Progress - Jack Cable - ASW #321 03/11/2025

QR Codes Replacing SMS, MS Pulls VSCode Extension, Threat Modeling, Bybit Hack - ASW #320 03/04/2025

Keeping Curl Successful and Secure Over the Decades - Daniel Stenberg - ASW #320 03/04/2025

Regex DoS, LLM Backdoors, Secure AI Architectures, Rust Survey - ASW #319 02/25/2025

Developer Environments, Developer Experience, and Security - Dan Moore - ASW #319 02/25/2025

Top 10 Web Hacking Techniques of 2024 - James Kettle - ASW #318 02/18/2025

Unforgivable Vulns, DeepSeek iOS App Security Flaws, Memory Safety Standards - ASW #317 02/11/2025

Code Scanning That Works With Your Code - Scott Norberg - ASW #317 02/11/2025

New SLAP & FLOP Attacks, OCSP Fades Away, DeepSeek's ClickHouse, OAuth 2.0 Security - ASW #316 02/04/2025

Threat Modeling That Helps the Business - Sandy Carielli, Akira Brand - ASW #316 02/04/2025

Opengrep & Semgrep, Hacking Subarus, Hacking Synths, Stealing Cookies, and RANsacked - ASW #315 01/28/2025

Security the AI SDLC - Niv Braun - ASW #315 01/28/2025

Appsec Predictions for 2025 - Cody Scott - ASW #314 01/21/2025

PyPI's Quarantine, Phishing & Awareness, Porting Fishshell to Rust, Cyber Trust Mark - ASW #313 01/14/2025

Discussing Useful Security Requirements with Developers - Ixchel Ruiz - ASW #313 01/14/2025

Removing Rust, Double Clickjacking, h3i CLI, JWT Mistakes, Reviewing Recursion - ASW #312 01/07/2025

DefectDojo and Bringing Quality Appsec Tools to Small Appsec Teams - Greg Anderson - ASW #312 01/07/2025

Ancient Curl Bug, AWS re:Invent, Malware in NPM, Census III Report, MS OTP - ASW #311 12/16/2024

Applying Usability and Transparency to Security - Hannah Sutor - ASW #311 12/16/2024

AI's Junk Vulns, Web3 Backdoor, LLM CTFs, 5 GenAI Mistakes, Top Ten for LLMs - ASW #310 12/10/2024

Looking Back on 2024 - ASW #310 12/10/2024

Fuzzing Barcodes, Fuzzing with AI, AI vs. Scammers, CWEs, Repo Swatting - ASW #309 12/03/2024

Adding Observability with OpenTelemetry - Adriana Villela - ASW #309 12/03/2024