Preview Mode Links will not work in preview mode

DevelopSec: Developing Security Awareness

Oct 18, 2017

In this episode, James talks about authorization and some common areas where it poses a risk. He also goes over some techniques to help test authorization.


For more info go to or follow us on twitter (@developsec).


Join the conversations.. join our slack channel.  Email

Sep 29, 2017

The Equifax breach was a major news story. James talks about some of the security controls mentioned and how to start a conversation within your organization about them. 

Want to listen on YouTube?  Check out our channel where we are releasing episodes starting from episode 1 at 

Sep 18, 2017

We talk about cross-site scripting (XSS) all the time, but often overlook the ability to use javascript: in anchor tags.  James talks about this unique ability and how to protect your applications from it. 

The related blog post for this can be found at 

Aug 23, 2017

We use a lot of platforms and frameworks when we develop an application. These platforms may provide security features, but do you know which ones? James talks about the importance of understanding your platforms and what to consider.

For more info go to or follow us on twitter (

Jul 31, 2017

James talks about the risk of USB thumb drives and their risk using the recent BCBS marketing campaign as an example. (  

For more info go to or follow us on twitter (