Preview Mode Links will not work in preview mode

DevelopSec: Developing Security Awareness

Dec 15, 2015

James discusses Open Redirects, or on the OWASP Top 10 what is referred to as Unvalidated Redirects and Forwards (https://www.owasp.org/index.php/Top_10_2013-A10-Unvalidated_Redirects_and_Forwards)  This is an introduction to what an Open Redirect is, why it is an issue, how to protect against it and how to test for...


Dec 11, 2015

James discusses Hacking, what is it, why is it important.  It is more than what you see in the media of the bad guys hacking computers.  It is a curiosity, a hobby, an interesting in pushing limits.  Some amazing things have come out of hacking.  Check out this episode for more ramblings.


Nov 24, 2015

James discussing some things to consider this holiday season when searching for that perfect gift.  It is important to understand the privacy policy (what is collected and how it is used) as well as the technologies the gift uses (Bluetooth, wifi, etc).  This discussion addresses both consumers and the companies that...


Nov 21, 2015

James Jardine provides an overview of Dynamic Analysis and why it is important.  Like any automation, there are pros and cons.   Listen to find out why dynamic analysis is useful. 

 

Some links to some dynamic analysis options that are available:

WhiteHat Security (http://www.whitehatsec.com)

HP - Web...


Nov 9, 2015

Join James Jardine as he discusses what Response Splitting/Header Injection is and how it works.  He also discusses how ASP.Net helps defend against this attack. 

This is a quick overview of the vulnerability and a great starting point for anyone learning security concepts.