OWASP Podcast

From OWASP
Jump to: navigation, search
OWASP Project Header.jpg

The DevSecOps Podcast is series of recorded broadcasts, highlighting OWASP projects and chapters, and DevSecOps practitioners from around the world. The DevSecOps Podcast is available on demand, at anytime, anywhere on the planet. You are welcome to embed the broadcasts on your page, download them for your personal listening or keep up to date by subscribing to the SoundCloud Channel.

Listen to All Available Broadcasts or choose a single episode below

  1. The Vanity of Diversity w/ Loni Rosales
  2. Create and Manage Internal Tech Conferences
  3. Securing the Software Supply Chain - Live Panel for International Conference on Cyber Engagement
  4. Tel Aviv and the 2019 Global AppSec Conference
  5. Perspectives on the "Sec" in DevSecOps w/ Tanya Janca
  6. 2019 Open Security Summit Preview
  7. What is an SBOM and Why Should You Care? w/ Allan Friedman
  8. What is Chaos Engineering, an Interview with Casey Rosenthal
  9. Ladies of London Hacking Society w/ Eliza-May Austin
  10. Anticipating Failure through Threat Modeling w/ Adam Shostack
  11. We Are All Special Snowflakes with Chris Roberts
  12. A Concise Introduction to DevSecOps
  13. What's In Store for the AppSec Cali Conference w/ Richard Greenberg
  14. Epic Failures in DevSecOps w/ Aubrey Stearn
  15. Strategic Asymetry - Leveling the Playing Field w/ Chetan Conikee
  16. Threat Modeling - A Disaster Story with Edwin Kwan
  17. The DevSecOps Unicorn Rodeo w/ Stefan Streichsbier
  18. The DevSecOps Experiment with DJ Schleen
  19. Open Source Vulnerabilities - Who is Ultimately Responsible
  20. event-stream: Analysis of a Compromised npm Package
  21. Spy vs Spy in Application Security: Harvesting Adversaries
  22. Moving from Projects to Products w/ Mik Kersten
  23. The Journey to Open Source at Capital One w/ Tapabrata "Topo" Pal
  24. The Future of Software and DevOps / with Sacha Labourey
  25. How to Build Chapter Engagement at OWASP
  26. A Message from the Executive Producer
  27. 2018 AppSec EU London - Conference Preview
  28. Steps to Responsible Disclosure with Bas van Schaik,Man Yue Mo and Brian Fox
  29. RSAC 2018 - Preview of Opening Session for DevOps Connect: DevSecOps Day
  30. HackNYC 2018: Preview with Kevin E. Greene
  31. HackNYC 2018: Preview with Dr. Bill Curtis
  32. The OpenChain Project with Shane Coughlan
  33. Expanding Community Engagement at OWASP w/ Greg Anderson
  34. Thoughts on Security in the Modern Software Supply Chain with Caroline Wong and Paula Thrasher
  35. Security Processes at the Apache Software Foundation w/ Mark Thomas and Brian Fox
  36. Struts2 Vulnerabilities: Who Is Responsible?
  37. What you should know about the latest struts 2 vulnerability announcement
  38. OWASP Hacker Kids in Bangalore
  39. Less than 10 Minutes Series: OWASP DockerHub with Simon Bennetts
  40. Less than 10 Minutes Series - ModSecurity Core Rule Set Project
  41. Less than 10 Minutes Series: OWASP Summit 2017
  42. Less than 10 Minutes Series: WebGoat Project
  43. Less than 10 Minutes Series: Vicnum Project
  44. Less than 10 Minutes Series: Defect Dojo Project
  45. Less than 10 Minutes Series: Virtual Village Project
  46. Less than 10 Minutes Series: The Juice Shop Project
  47. AppSec EU 2017, Belfast Keynote Preview with Jaya Baloo
  48. Struts 2 Vulnerability Analysis
  49. AppSec EU 2017 Belfast - What to Expect
  50. Culture Hacker: How to Herd CATTs and Inspire Rebels to Change the World
  51. Shannon Lietz - Keynote Preview for AppSec EU 2017, Belfast
  52. 2016 AppSec USA – An Update on the WebGoat Project
  53. 2016 AppSec USA: The Core Rule Set Project w/ Chaim Sanders
  54. The Future of DevSecOps w/ Shannon Lietz and Chris Swan, Live From IP Expo London
  55. 2016 OWASP Board Election Interviews - Part One of Four - Developer Participation
  56. 2016 OWASP Board Election Interviews – Part Two of Four – Vendor Neutrality
  57. 2016 OWASP Board Election Interviews – Part Three of Four – Most Important Issues
  58. 2016 OWASP Board Election Interviews – Part Four of Four – Members, Projects, Conferences, Chapters
  59. AppSec USA 2016 Pre-Conference Update
  60. Security as Part of Continuous Delivery with Sacha Labourey
  61. Unicorns on an Aircraft Carrier: DevOps Security at Scale with Sanjeev Sharma
  62. 2016 State of the Software Supply Chain Report Released
  63. Security as Part of DevOps and Development with Jason Schmitt
  64. 2016 AppSecEU - Update On The ASVS Project with Andrew van der Stock
  65. 2016 AppSecEU - The University Challenge
  66. Jim Manico's 100th Episode, featuring Mark Miller, Executive Producer of OWASP 24/7
  67. AppSec Europe 2016 - What To Expect
  68. Communication Patterns in Open Source Component Supply Chains
  69. Active Deception as a Methodology for Cybersecurity w/ Lawrence Pingree from Gartner
  70. Security War Games with Sam Guckenheimer at Rugged DevOps RSAC 2016
  71. DevOps, Security and Engineering at Slack
  72. Guns, Germs and Steel at RSAC 2016 with John Willis
  73. Equal Respect: Women in Technology with Chenxi Wang
  74. DevOps: Politics, People and Process with Paula Thrasher
  75. OWASP Top 10 Proactive Controls Project with Jim Manico and Katy Anton
  76. The OWASP WebGoat Project, version 7.0, with Bruce Mayhew
  77. Johanna Curiel on the Growing Pains of OWASP and Management of Project Reviews
  78. 2016 – What’s in Store for the OWASP 24/7 Podcast Series
  79. OWASP Shark Tank - Could You Convince Someone to Invest in Your Project?
  80. Security Shepherd Project w/ Mark Denihan and Paul McCann
  81. DevOps, Security and Development w/ Matt Tesauro, Shannon Lietz and Jez Humble
  82. OWASP Benchmark Project w/ Dave Wichers
  83. OWASP Application Security Verification Standard Project w/ Andrew van der Stock
  84. OWASP Board Candidate Interview - Abbas Naderi, Michael Coates, Jonathan Carter
  85. OWASP Board Candidate Interview - Bil Corry and Josh Sokol
  86. OWASP Board Candidate Interview - Milton Smith, Tobias Gondrom, Tom Brennan
  87. OWASP Security Knowledge Framework Project w/ Glenn Ten Cate
  88. OWASP Summer of Code Sprint 2015 with Fabio Cerullo
  89. OWASP Project Funding Part 2 w/ Johanna Curiel and Claudia Casanovas
  90. OWASP Project Funding w/ Josh Sokol, Dinis Cruz and Andrew van der Stock
  91. The OWASP Online Academy with John Patrick Lita and Jerry Hoff
  92. AppSec USA 2015 Overview with Ben Hagen and Michael Coates
  93. Paul Ritchie, Executive Director, Talks Present, Past and Future of OWASP
  94. OWASP Offensive Web Testing Framework with Bharadwaj Machiraju and Abraham Aranguren
  95. Tobias Gondrom on the OWASP Strategic Goals for 2015
  96. 2015 AppSecEU Pre Conference Update
  97. OWASP Project Reviews with Johanna Curiel
  98. 2015 OWASP Project Summit in NYC with Tom Brennan
  99. Seba Deleersnyder Discusses SAMM (Software Assurance Maturity Model) Summit in Dublin, Ireland
  100. 2015 AppSec California Post Mortem with Richard Greenberg and Neil Matatall
  101. John Melton and the OWASP AppSensor Project
  102. Moxie Marlinspike on Open Source Security for Mobile Devices
  103. Dibbe Edwards - DevOps and Open Source at IBM
  104. The WebGoat Project with Rick Lawson and Jason White
  105. Kevin E. Greene on OWASP and the SWAMP Project
  106. AppSec USA 2014, Denver - Damon Edwards, Matt Tesauro, Eoin Keary, Martin Knobloch
  107. OWASP Board Candidate Interviews - Mateo Martinez

  108. OWASP Board Candidate Interviews - Jim Manico, Timur Khrotko
  109. OWASP Board Candidate Interviews - Andrew van der Stock, Nigel Phair, Abbas Naderi
  110. OWASP 2014 Board Candidate Interviews - Israel Bryski, Matt Konda, Bil Corry and Tahir Khan
  111. Jonathan Carter - OWASP and Mobile Security
  112. OWASP Statement on the Security of the Internet 2014

  113. Sarah Baso : The Final OWASP Interview
  114. Wait! Wait! Don’t pwn me! from AppSec Europe 2014
  115. Eoin Keary on Women in Security and Growing an OWASP Chapter
  116. Achim Hoffmann and the o-Saft Project for Scanning SSL Connections
  117. OWASP Top 10 Privacy Risks Project with Florian Stahl and Stefan Burgmair

  118. The Run Up to a Massive Cyber Security Month with Tom Brennan
  119. Wolfgang Goerlich on a Real World Example of The Phoenix Project in Action
  120. The OWASP Hacky Easter Challenge with Ivan Bütler
  121. Dwayne Melancon - What InfoSec Can Learn from Video Games
  122. The OWASP Top Ten Proactive Controls Project with Jim Bird

  123. Melissa Elliot on the HeartBleed Bug at Yahoo
  124. 2014 AppSec APAC - Post Mortem (English)
  125. The OWASP Cornucopia Project with Colin Watson
  126. The OWASP WebSpa Project with Yiannis Pavlosoglou and Jim Manico
  127. 2014 AppSec APAC : History and Overview (Japanese and English)

  128. AppSec Europe 2014 : What To Expect with Host Adrian Winckles
  129. AppSec USA 2013 : Mark Arnold Talks about the Boston OWASP Chapter
  130. Not Making a Statement is a Statement in its Own Right
  131. National Security Awareness Month #NCSAM
  132. AppSec APAC 2014 with Tobias Gondrom - What to Expect

  133. AppSec USA 2013: Larry Conklin and the Code Review Book Project
  134. AppSec USA 2013: Jim Manico - Life After OWASP Podcasting
  135. AppSec USA 2013: Zed Attack Proxy Project with Simon Bennetts
  136. AppSec USA 2013: Abbas Naderi and the OWASP PHP Security Project)
  137. AppSec USA 2013: Michael Coates on the AppSensor Project

  138. The OWASP Application Security CISO Guide with Marco Morana and Tobias Gondrom
  139. The Purpose of OWASP, an Interview with Co-Founder Dennis Groves
  140. Wait! Wait! Don't pwn me! - Full recording from AppSec USA 2013
  141. Sarah Baso - What does it take to support 43,000 members in 100+ countries?
  142. Samantha Groves - Getting the Most from OWASP Projects

  143. Kate Hartmann - The Future of Virtual Chapter Meetings
  144. Kelly Santalucia - Growing OWASP and the Outreach Programs
  145. Tom Brennan - What to Expect at AppSecUSA 2013
  146. AppSec USA 2013 - OWASP Panel on Using Components with Known Vulnerabilities

Syndication

RSS feed is available here: Feed-icon-32x32.png

iTunes feed here

As of May 26, 2019, we have had 366,768 plays in total

As of August 29, 2017, we had over 221,000+ plays of the broadcast.

As of July 7, 2016, we had over 151,000+ plays of the broadcast.
As of March 21, 2016, we had over 133,500+ plays of the broadcast.
As of February 25, 2016, we had over 127,000+ plays of the broadcast.
As of January 22, 2016, we had over 120,000+ plays of the broadcast.
As of November 24, 2015, we had over 114,100+ plays of the broadcast.
As of September 3, 2015, we had over 102,500+ plays of the broadcast.
As of July 31, 2015, we had over 98,800+ plays of the broadcast.
As of June 29, 2015, we had over 92,000+ plays of the broadcast.

Thanks for your continuing support.

OWASP Podcast Series Hosted by Jim Manico

Subscribe
itunes.jpg Feed-icon-32x32.png

<paypal>OWASP Podcast</paypal>
# Date Actions Description
98 March 3, 2014 Listen Now Yiannis Pavlosoglou discussing The OWASP WebSpa Project. More info on SoundCloud.
97 November 2, 2013 Listen Now Les Hazlewood discussing Apache SHIRO
96 November 2, 2013 Listen Now Nabil Hannan discussing BSIMM
95 June 13, 2013 Listen Now Professor Daniel J. Bernstein (Crypto Worst Practices) You can also watch or obtain the slides for this lecture
94 February 18, 2013 Listen Now Professor Bart Preneel (Crypto Basics) You can also watch or obtain the slides for this lecture
93 September 30, 2012 Listen Now | Show Transcript Professor Frank Piessens You can also watch or obtain the slides for this lecture
92 June 19, 2012 Listen Now AppSec Research 2012 Team
91 May 3, 2012 Listen Now Troy Hunt (.NET Security)
90 February 17, 2012 Listen Now Raul Siles (Session Management Cheat Sheet )
89 November 28, 2011 Listen Now Jack Mannino and Joey Peloquin (Mobile)
88 September 19, 2011 Listen Now Jason Li (Global Projects Committee)
87 July 20, 2011 Listen Now John Heimann (Oracle)
** July 16, 2011 Listen Now Dave Wichers, Sebastien Deleersnyder, Michael Coates, Christian Heinrich (2012 OWASP Election Candidates)
86 July 7, 2011 Listen Now Kevin Mahaffey, Jack Mannino and Chris Wysopal (Mobile Security)
85 June 22, 2011 Listen Now Ken van Wyk (iGoat)
84 May 10, 2011 Listen Now Alex Behar (DDoS Mitigation)
83 March 19, 2011 Listen Now Dave Ferguson (Forgot Password)
82 February 7, 2011 Listen Now Dave Wichers (OWASP Board Member)
81 January 8, 2011 Listen Now Brian Chess (Non-SaaS Static Analysis)
80 December 11, 2010 Listen Now Chris Wysopal (SaaS Static Analysis)
79 November 27, 2010 Listen Now Tony UV (Threat Modeling)
78 October 13, 2010 Listen Now AppSec Roundtable with Jeff Williams, Andrew van der Stock, Tom Brennan, Samy, Jeremiah Grossman and Jim Manico (Complete Chaos)
77 October 13, 2010 Listen Now Rafal Los
76 September 22, 2010 Listen Now Bill Cheswick (Account Lockout)
75 September 15, 2010 Listen Now Brandon Sterne (Content Security Policy)
74 September 2, 2010 Listen Now Eoin Keary (Code Review)
73 June 30, 2010 Listen Now Jeremiah Grossman and Robert Hansen
72 June 25, 2010 Listen Now Interview with Ivan Ristic (WAF)
71 April 19, 2010 Listen Now Top Ten with Robert Hansen (Redirects)
70 April 19, 2010 Listen Now Top Ten with Michael Coates (TLS)
69 April 19, 2010 Listen Now Top Ten with Eric Sheridan (CSRF)
68 April 19, 2010 Listen Now Top Ten with Kevin Kenan (Cryptographic Storage)
67 April 19, 2010 Listen Now | Show Transcript Top Ten with Jeff Williams (XSS)
66 April 14, 2010 Listen Now Interview with Brad Arkin (Adobe)
65 April 13, 2010 Listen Now AppSec Roundtable with Boaz Gelbord, Dan Cornell, Jeff Williams, Johannes Ullrich and Jim Manico (File Upload)
64 March 30, 2010 Listen Now Interview with Andy Ellis (Availability)
63 March 17, 2010 Listen Now Interview with Ed Bellis (eCommerce)
62 March 12, 2010 Listen Now | Show Notes Interview with Amichai Shulman (WAF)
61 March 10, 2010 Listen Now | Show Notes Interview with Richard Bejtlich (Network Monitoring)
60 February 5, 2010 Listen Now Interview with Jeremiah Grossman and Robert Hansen (Google pays for vulns)
59 February 3, 2010 Listen Now AppSec Roundtable with Boaz Gelbord, Ben Tomhave, Dan Cornell, Jeff Williams, Andrew van der Stock and Jim Manico (Aurora+)
58 February 2, 2010 Listen Now Interview with Ron Gula (Web Server Scanning, IDS/IPS)
57 December 21, 2009 Listen Now | Show Notes Interview with David Linthicum (Cloud Computing)
56 December 7, 2009 Listen Now | Show Notes Interview with Adar Weidman (Regular Expression DOS)
55 November 26, 2009 Listen Now | Show Notes AppSec Roundtable with Boaz Gelbord, Jason Lam, Jim Manico and Jeff Williams (AppSec Justification)
54 November 24, 2009 Listen Now Interview with George Hesse (German Chapter Leader)
53 November 24, 2009 Listen Now Interview with Amichai Shulman (WAF)
52 November 5, 2009 Listen Now Sandro Gauci (wafw00f)
51 October 30, 2009 Listen Now | Show Transcript Interview with Michael Coates (Real Time Defenses, OWASP AppSensor)
50 October 30, 2009 Listen Now Interview with Eldad Chai (Business Logic Attacks)
49 October 30, 2009 Listen Now Interview with Andre Riancho (OWASP w3af)
48 October 30, 2009 Listen Now Interview with Giorgio Fedon (Browser Security in Banking)
47 October 23, 2009 Listen Now Interview with Erlend Oftedal (Agile)
46 October 23, 2009 Listen Now Interview with Luca Carettoni and Stefano Di Paola (HTTP Parameter Pollution)
45 October 16, 2009 Listen Now | Show Notes Interview with Buanzo (Enigform )
44 October 8, 2009 Listen Now | Show Notes Interview with Andy Steingruebl (PayPal Secure Development Manager)
43 October 2, 2009 Listen Now | Show Notes Interview with Mike Smith (http://www.guerilla-ciso.com/)
42 October 1, 2009 Listen Now | Show Notes Roundtable with Matt Fisher, Jim Manico, Dan Philpott, Jack Whitsitt and Doug Wilson (FISMA, US Federal Cybersecurity)
41 September 26, 2009 Listen Now | Show Notes | Show Transcript Interview with David Rice (Author of Geekonomics)
40 September 23, 2009 Listen Now | Show Notes Interview with Rohit Sethi (OWASP J2EE Pattern Project)
39 August 25, 2009 Listen Now | Show Notes Interview with Gunnar Peterson (Webservices)
38 August 25, 2009 Listen Now | Show Notes Interview with the OWASP Global Education Committee
37 August 22, 2009 Listen Now | Show Notes Interview with Jason Lam and Johannes Ullrich (SANS Institute)
36 August 15, 2009 Listen Now | Show Notes May 2009 News Commentary Recorded July 23 with Boaz Gelbord, Andre Gironda, Jason Lam, Jim Manico, Alex Smolen, Ben Tomhave, Andrew van der Stock and Jeff Williams (part 2)
35 August 4, 2009 Listen Now | Show Notes Interview with Anton Chuvakin, Ph.D (PCI)
34 July 30, 2009 Listen Now | Show Notes Interview with Amichai Shulman (WAF)
33 July 25, 2009 Listen Now | Show Notes Interview with Paolo Perego (OWASP Orizon)
32 July 21, 2009 Listen Now | Show Notes May 2009 News Commentary Recorded June 11 with Arshan Dabirsiaghi, Boaz Gelbord, Jim Manico, Andrew van der Stock and Jeff Williams (part 1)
31 July 4, 2009 Listen Now | Show Notes | Show Transcript Interview with Mark Curphey (OWASP Founder)
30 July 2, 2009 Listen Now | Show Notes Interview with Billy Hoffman and Matt Wood (HP Application Security Research)
29 June 30, 2009 Listen Now | Show Notes Interview with Justin Clarke (SQL Injection)
28 June 26, 2009 Listen Now | Show Notes Interview with Ross J. Anderson
27 June 26, 2009 Listen Now | Show Notes Interview with Rafal Los (The Skeletor of AppSec)
26 June 17, 2009 Listen Now | Show Notes April 2009 News Commentary Recorded May 28 with Tom Brennan, Andre Gironda, Jim Manico, Alex Smolen and Jeff Williams (part 2)
25 June 15, 2009 Listen Now | Show Notes Interview with James McGovern
24 June 12, 2009 Listen Now | Show Notes April 2009 News Commentary Recorded May 14 with Andre Gironda, Jim Manico, Alex Smolen and Jeff Williams (part 1)
23 June 1, 2009 Listen Now | Show Notes Interview with Dr. Boaz Gelbord
22 May 22, 2009 Listen Now | Show Notes Interview with Dan Cornell (Membership Committee)
21 May 20, 2009 Listen Now | Show Notes | Show Transcript Interview with Richard Stallman
20 May 13, 2009 Listen Now | Show Notes Interview with Mike Bailey
19 May 11, 2009 Listen Now | Show Notes March 2009 News Commentary by Arshan Dabirsiaghi, Andre Gironda, Jim Manico and Jeff Williams (part 2)
18 April 30, 2009 Listen Now | Show Notes Interview with Jeremiah Grossman
17 April 21, 2009 Listen Now | Show Notes Interview with Robert Hansen
16 April 9, 2009 Listen Now | Show Notes Dave Aitel (Demonstrates Cool)
15 April 4, 2009 Listen Now | Show Notes Brian Chess (BSIMM)
14 March 25, 2009 Listen Now | Show Notes Pravir Chandra (OWASP SAMM)
13 March 23, 2009 Listen Now | Show Notes March 2009 News Commentary by Arshan Dabirsiaghi, Andre Gironda, Jim Manico and Jeff Williams (part 1)
12 March 11, 2009 Listen Now | Show Notes Interview with Ryan Barnett (OWASP ModSecurity Core Ruleset)
11 March 4, 2009 Listen Now | Show Notes Interview with MITRE (Steve Christey and Bob Martin)
10 February 26, 2009 Listen Now | Show Notes | Show Transcript Interview with Ken van Wyk
9 February 20, 2009 Listen Now | Show Notes February 2009 News Commentary by Arshan Dabirsiaghi, Andre Gironda, Jim Manico and Jeff Williams (part 2)
8 February 20, 2009 Listen Now | Show Notes February 2009 News Commentary by Arshan Dabirsiaghi, Andre Gironda, Jim Manico and Jeff Williams (part 1)
7 January 30, 2009 Listen Now | Show Notes Interview with Jeff Williams
6 January 24, 2009 Listen Now | Show Notes Roundtable with Andre Gironda, Brian Holyfield, Jim Manico, Marcin Wielgoszewski
5 January 15, 2009 Listen Now | Show Notes Interview with Gary McGraw
4 January 13, 2009 Listen Now | Show Notes Interview with Andrew van der Stock (OWASP Developers Guide)
3 December 30, 2009 Listen Now | Show Notes Interview with Matt Tesauro (OWASP Live CD)
2 December 20, 2008 Listen Now | Show Notes Interview with Stephen Craig Evans (OWASP WebGoat/ModSecurity Project)
1 November 21, 2008 Listen Now | Show Notes News Commentary by Arshan Dabirsiaghi, Jeremiah Grossman, Jim Manico and Jeff Williams

Contributors and Sponsors of the Original Series

Host and Executive Producer

Co-hosts

  • Matt Tesauro
  • Thomas Herela

Mastering, Effects, Audio Tech, Producer

  • Kevin Coons from ManaTribe

Artwork

  • Larry Casey
  • Gareth Heyes

Transcript

Sponsors


Host and Executive Producer

Guest Podcasters and contributors

Artwork

  • Larry Casey
  • Gareth Heyes

Sponsors

OWASP_Podcast_200x200.jpg

Larry Casey

OWASP_Podcast2_200x200.jpg

Gareth Heyes