Preview Mode Links will not work in preview mode

DevelopSec: Developing Security Awareness

Nov 17, 2017

In this episode, James talks about open redirect and why it matters from a security perspective. He also shows how this information can be used in your personal technology use, not just in development.


For more info go to or follow us on twitter (@developsec).


Join the conversations.....

Oct 31, 2017

You know your development language and platform, but do you really know the ins and outs of web application technology? How well do you know HTTP, HTML, etc? James talks about a few scenarios where really understanding how the technologies works helps better understand vulnerability risks.

For more info go to

Oct 18, 2017

In this episode, James talks about authorization and some common areas where it poses a risk. He also goes over some techniques to help test authorization.


For more info go to or follow us on twitter (@developsec).


Join the conversations.. join our slack channel.  Email

Sep 29, 2017

The Equifax breach was a major news story. James talks about some of the security controls mentioned and how to start a conversation within your organization about them. 

Want to listen on YouTube?  Check out our channel where we are releasing episodes starting from episode 1 at 

Sep 18, 2017

We talk about cross-site scripting (XSS) all the time, but often overlook the ability to use javascript: in anchor tags.  James talks about this unique ability and how to protect your applications from it. 

The related blog post for this can be found at