#Application Security (AppSec)

What's New in Dynatrace - Release 1.278

Explore Dynatrace v1.278 updates: new documentation design, Kubernetes ownership features, enhanced OS monitoring, DQL functions, AppSec events, and security dashboards. Includes live demos and resource links.

Add to list

14 Lesons

22 minutes

On-Demand

Free-Video

What's New in Dynatrace - Release 1.282

Explore Dynatrace v1.282 updates: SAML migration, DQL functions, credential vault, AppSec enhancements, GC alerting, mobile app settings, and infrastructure monitoring improvements. Gain insights through hands-on demonstrations.

Add to list

19 Lesons

36 minutes

On-Demand

Free-Video

Dynatrace Product Updates - April 2023 (Versions 263 and 264)

Explore Dynatrace's latest features in v263 and v264, including AppSec updates, DQL commands, UI improvements, and K8s enhancements. Learn about new monitoring capabilities and product developments.

Add to list

20 Lesons

47 minutes

On-Demand

Free-Video

What's New in Dynatrace - Release 1.292

Explore Dynatrace v1.292 updates: Metrics on Grail GA, platform enhancements, AppSec improvements, and infrastructure changes. Gain insights into new features and their practical applications.

Add to list

12 Lesons

19 minutes

On-Demand

Free-Video

What's New in Dynatrace - Release 1.288

Explore Dynatrace v1.288 updates: unified services for Adobe Experience Manager and Erlang, enhanced DQL features, AppSec improvements, and new infrastructure monitoring capabilities.

Add to list

11 Lesons

19 minutes

On-Demand

Free-Video

Bugcrowd

Back to Basics - Application Security Practices in Smart Contract Auditing

Explore application security practices in smart contract auditing, focusing on Solidity, common vulnerabilities, security tools, and the growing market for blockchain security engineers.

Add to list

16 Lesons

48 minutes

On-Demand

Free-Video

Hacking and Defending APIs - Red and Blue Make Purple

Comprehensive guide to API security: attack techniques, defense strategies, and best practices for both testers and defenders. Covers BOLA, authentication, data exposure, and more.

Add to list

1 Lesons

53 minutes

On-Demand

Free-Video

Running FaaS with Scissors - DevSecOps and Serverless Security Testing - 2019

Explore DevSecOps and FaaS technologies to enhance secure code creation, utilizing OpenFaaS for faster, more consistent security assessments and continuous testing with quick feedback loops.

Add to list

1 Lesons

41 minutes

On-Demand

Free-Video

Exploiting Hardware Glitches and Side Channels in Perfect Software

Uncover vulnerabilities in flawless software through hardware glitches and side-channel attacks. Learn advanced exploitation techniques for enhancing cybersecurity defenses.

Add to list

1 Lesons

51 minutes

On-Demand

Free-Video

Increasing Web Security with the Power of HTTP Headers

Explore how HTTP headers can enhance web security, focusing on practical implementation strategies and best practices for developers and security professionals.

Add to list

1 Lesons

17 minutes

On-Demand

Free-Video

Empowering the Employee - Incident Response with a Security Bot

Explore how a Slack bot engages employees in incident response, enhancing security awareness and efficiency while providing valuable insights for quick, appropriate action.

Add to list

1 Lesons

22 minutes

On-Demand

Free-Video

Identity Theft: Attacks on SSO Systems

Explore vulnerabilities in SAML-based SSO systems, including XML signature attacks and user directory flaws. Learn how these issues can lead to identity theft and authentication bypasses in modern organizations.

Add to list

1 Lesons

31 minutes

On-Demand

Free-Video

Detecting CSRF Vulnerability Reliably - Programmatic Approach

Explore a programmatic approach to reliably detect CSRF vulnerabilities in web applications, overcoming common shortcomings of existing tools and improving automated security testing.

Add to list

1 Lesons

42 minutes

On-Demand

Free-Video

Software Security Initiative Capabilities - Where to Begin

Explore key capabilities for starting a software security initiative, including penetration testing, code review, and secure design review. Learn benefits, drawbacks, and integration into mature security practices.

Add to list

1 Lesons

40 minutes

On-Demand

Free-Video

New Methods in Automated XSS Detection - Dynamic Testing Without Static Payloads

Explore innovative dynamic methods for automated XSS detection without static payloads, including techniques for Stored XSS and custom exploit generation. Learn to overcome limitations of traditional approaches.

Add to list

27 Lesons

41 minutes

On-Demand

Free-Video

Building Your Own Large Scale Web Security Scanning Infrastructure

Learn to build, scale, and integrate a robust web security scanning infrastructure into your continuous delivery pipeline, with insights on customization and comparisons to existing solutions.

Add to list

1 Lesons

39 minutes

On-Demand

Free-Video

Practical Tips for Running a Successful Bug Bounty Program

Practical tips for running a successful bug bounty program, including scope definition, communication strategies, and vulnerability rating. Insights from experienced professionals on managing crowdsourced security testing effectively.

Add to list

25 Lesons

52 minutes

On-Demand

Free-Video

Building a Modern Security Engineering Organization

Practical insights on building modern AppSec and NetSec programs, launching bug bounties, and conducting realistic attack simulations in the era of continuous deployment and DevOps.

Add to list

64 Lesons

57 minutes

On-Demand

Free-Video

IEEE Computer Society's Center for Secure Design - Helping Design More Secure Software

Explore common software design flaws and learn strategies to create more secure applications with insights from the IEEE Computer Society's Center for Secure Design workshop.

Add to list

1 Lesons

45 minutes

On-Demand

Free-Video

BSidesLV

Security Risks of Low-Code/No-Code Applications - What Could Go Wrong?

Explores security risks of low-code/no-code platforms used by business professionals. Presents research findings, demonstrates common security issues, and introduces OWASP framework for mitigating risks in business-led development.

Add to list

1 Lesons

22 minutes

On-Demand

Free-Video

Attacking and Protecting Artificial Intelligence

Explore techniques for attacking and defending AI systems, focusing on security vulnerabilities and protective measures in machine learning applications.

Add to list

1 Lesons

55 minutes

On-Demand

Free-Video

Bugcrowd

Using Bugcrowd and Jira to Streamline Application Security

Streamline application security with Bugcrowd's Jira integration. Learn how to sync vulnerability data, facilitate faster remediation, and improve communication between security and development teams.

Add to list

20 Lesons

39 minutes

On-Demand

Free-Video

Misconfigured CORS and Web Application Security Challenges

Explore CORS misconfiguration vulnerabilities and the challenges of implementing advanced browser security features, with insights on balancing security and operational complexity.

Add to list

1 Lesons

40 minutes

On-Demand

Free-Video

QARK: Android App Exploit and Static Code Analysis Tool

Explore QARK, a comprehensive tool for Android app security analysis and exploitation. Learn how it combines static code analysis, vulnerability detection, and automatic exploit generation for developers and pentesters.

Add to list

1 Lesons

50 minutes

On-Demand

Free-Video

Chimera - Securing a Cloud App Ecosystem with ZAP at Scale

Explore Chimera: a cloud-based solution using ZAP to enhance security for small developers and ISVs in large app ecosystems, making advanced scanning tools accessible without security expertise.

Add to list

1 Lesons

45 minutes

On-Demand

Free-Video

Using Third-Party Components for Building Secure Software - AppSec EU 2016

Explore secure software development, third-party component risks, and maintenance strategies for effective vulnerability management in enterprise applications.

Add to list

19 Lesons

49 minutes

On-Demand

Free-Video

Mobile Application Assessments By The Numbers - A Holistic View

Explore mobile app security through data-driven insights, examining vulnerabilities and best practices for comprehensive assessments in this OWASP presentation.

Add to list

1 Lesons

52 minutes

On-Demand

Free-Video

Security Touchpoints When Acquiring Software

Explore key security considerations and touchpoints in software acquisition, focusing on best practices for ensuring secure integration of third-party solutions.

Add to list

1 Lesons

41 minutes

On-Demand

Free-Video

Security and Insecurity of HTTP Headers

Explore HTTP header security and vulnerabilities with Dirk Wetter. Learn about potential risks and best practices for implementing secure headers in web applications.

Add to list

1 Lesons

49 minutes

On-Demand

Free-Video

Server-Side Browsing Considered Harmful

Explore server-side browsing vulnerabilities and their potential risks in web applications. Learn detection techniques and mitigation strategies for improved security.

Add to list

1 Lesons

1 hour 4 minutes

On-Demand

Free-Video

Hacking the Oracle Application Framework - Deep-Dive Penetration Testing Techniques

Explore deep-dive penetration testing techniques for complex enterprise applications, using Oracle Application Framework as a case study. Learn about static reverse engineering, mock environments, and dynamic monitoring.

Add to list

1 Lesons

34 minutes

On-Demand

Free-Video

Leveraging the ASVS in the Secure Software Development Lifecycle

Integrating OWASP ASVS into the secure software development lifecycle to create uniform security requirements, prioritize tasks, and track adherence across applications using existing tools and processes.

Add to list

17 Lesons

38 minutes

On-Demand

Free-Video

Attacking JSON - Vulnerabilities in Popular Parsers

Explore JSON parser vulnerabilities in .NET and Java, including RCE risks. Learn about attack techniques, vulnerable formats, and mitigation strategies for safer serialization implementations.

Add to list

1 Lesons

41 minutes

On-Demand

Free-Video

Black-Box Approximate Taint Tracking by Utilizing Data Partitioning

Innovative black-box taint tracking system for detecting user input data injection in commands and SQL queries, offering cost-effective and performant runtime protection without code modifications.

Add to list

14 Lesons

36 minutes

On-Demand

Free-Video

Turning Engineers into Extended Blue Team Members - Security Strategies

Strategies for empowering engineers to become part of the security team, including threat modeling, incident-driven learning, and security testing integration into development processes.

Add to list

12 Lesons

28 minutes

On-Demand

Free-Video

Wait Wait Don't Pwn Me - Security News Game Show

A live, security news game show pitting experts against each other in a battle of wits. Audience members can participate, competing for prizes while learning about current security issues in a fun, engaging format.

Add to list

1 Lesons

33 minutes

On-Demand

Free-Video

Mobile Application Security Testing - Journey to Version 2.0

Explore the evolution of mobile app security standards and best practices in this insightful talk on the journey to OWASP Mobile Security Testing Guide v2.0.

Add to list

1 Lesons

43 minutes

On-Demand

Free-Video

Squeezing the Last Drop Out of OWASP Juice Shop

Explore advanced hacking techniques and security challenges in this hands-on session with OWASP Juice Shop, led by its creator Bjoern Kimminich.

Add to list

1 Lesons

58 minutes

On-Demand

Free-Video

Nginx

Infusing Security Into the Application Development Process

Explore integrating security into software development, covering topics like SBOMs, vulnerability scanning, and supply chain security. Learn practical strategies for secure coding practices.

Add to list

31 Lesons

43 minutes

On-Demand

Free-Video

Data Science Dojo

Rapid Assessment of Service and Application Security - Application Design and Architecture

Learn a rapid methodology to assess application security, identify vulnerabilities, and improve overall security posture. Gain practical skills to evaluate design and architecture, even with limited resources.

Add to list

17 Lesons

48 minutes

On-Demand

Free-Video

Automating TLS Configuration Verification for Web Application Data Stores

Explore best practices for TLS configuration in web application data stores, focusing on MySQL, PostgreSQL, and MongoDB. Learn about tools for verifying proper server setup and survey real-world implementations.

Add to list

1 Lesons

31 minutes

On-Demand

Free-Video

Docker Security Insights - Vulnerabilities and Best Practices

Explore Docker security vulnerabilities, countermeasures, and best practices for production environments. Learn about container risks, secrets management, content trust verification, and open-source library considerations.

Add to list

1 Lesons

27 minutes

On-Demand

Free-Video

Security BSides San Francisco

TL;DR: Applying AI to Security - Condensed Overview of AI Applications in Cybersecurity

Explore AI's impact on security: AppSec, red/blue team tactics, threat modeling. Condenses extensive research into practical applications for rapid understanding of AI in cybersecurity.

Add to list

1 Lesons

44 minutes

On-Demand

Free-Video

nullcon

Application Security for Developers - A Holistic Approach

Comprehensive overview of application security for developers, covering holistic approaches to integrate security throughout the development lifecycle.

Add to list

1 Lesons

46 minutes

On-Demand

Free-Video

nullcon

Application Security Opportunities and Challenges in a DevOps World

Panel discussion exploring application security challenges and opportunities in DevOps, featuring insights from industry leaders on integrating security into modern development practices.

Add to list

1 Lesons

57 minutes

On-Demand

Free-Video

Ekoparty Security Conference

#Eko2020 DevSecOps Space | Agustín Celano: AppSec VulnMgmt Pipelines

Enfoque práctico para gestionar vulnerabilidades en entornos CI/CD mediante AppSec pipelines, herramientas de staging y escalamiento de hallazgos en DevSecOps.

Add to list

1 Lesons

46 minutes

On-Demand

Free-Video

Security BSides San Francisco

How to Build an Application Security Program

Practical insights on creating and improving application security programs, drawing from 20 years of experience across various sectors. Covers successful strategies and pitfalls to avoid.

Add to list

1 Lesons

26 minutes

On-Demand

Free-Video

Security BSides London

Run-Time Tools to Aid Application Security Assessments

Explore runtime tracing tools and techniques for application security assessments, enhancing your ability to uncover vulnerabilities in real-world testing scenarios.

Add to list

8 Lesons

17 minutes

On-Demand

Free-Video

Creating an AppSec Pipeline With Containers in a Week - How We Failed and Succeeded

Explore the journey of implementing an AppSec pipeline using Docker containers, addressing challenges, solutions, and best practices for effective security integration in development workflows.

Add to list

19 Lesons

25 minutes

On-Demand

Free-Video

Lessons From DevOps - Taking DevOps Practices Into Your AppSec Life

Explore DevOps practices for enhancing application security, including workflow optimization, improved feedback loops, and automation techniques to streamline AppSec processes.

Add to list

34 Lesons

45 minutes

On-Demand

Free-Video

Building an AppSec Pipeline - Keeping Your Program, and Your Life, Sane

Learn to build an efficient AppSec pipeline to streamline your security program, improve workflow, and enhance overall productivity in application security management.

Add to list

43 Lesons

46 minutes

On-Demand

Free-Video

DefCamp

Building Application Security With 0 Money Down - DefCamp - 2018

Discover cost-effective strategies for building robust application security. Learn about threat modeling, inception checklists, and maturity goals to enhance your cybersecurity practices without breaking the bank.

Add to list

18 Lesons

52 minutes

On-Demand

Free-Video

SyScan360

Navigating a Sea of Pwn - Windows Phone 8 Appsec

Explore Windows Phone 8 app security, covering structure, models, restrictions, encryption, and vulnerabilities. Learn about marketplace validation and protection strategies.

Add to list

31 Lesons

36 minutes

On-Demand

Free-Video

API Security - Is it the New Application Attack Surface and How to Secure at Enterprise Scale

Explore API security challenges, threats, and enterprise-scale solutions. Learn about modern attack surfaces, recent breaches, and effective strategies for protecting sensitive data in API-driven architectures.

Add to list

14 Lesons

30 minutes

On-Demand

Free-Video

Doing This One Crazy Thing Will Change Your AppSec Program Forever

Discover how to revolutionize your AppSec program through effective communication, prioritization, and innovative strategies for securing software development.

Add to list

22 Lesons

1 hour 3 minutes

On-Demand

Free-Video

Insiders Guide to Mobile AppSec with OWASP MASVS

Explore mobile app security essentials using OWASP MASVS, covering data storage, network issues, authentication, and anti-tampering. Learn practical tools and tactics for effective mobile pen testing and security assessment.

Add to list

21 Lesons

51 minutes

On-Demand

Free-Video

Why the LinkedIn Hack Could Be Your Biggest AppSec Threat

Explore account takeover threats, their long-term impact, and effective defense strategies. Learn about hacking techniques, credential stuffing, and tools to protect against evolving cyber risks.

Add to list

40 Lesons

47 minutes

On-Demand

Free-Video

A DevOps View of AppSec

Explore DevOps history and its impact on AppSec, charting a path for DevSecOps success through standardization, automation, and Agile principles.

Add to list

14 Lesons

45 minutes

On-Demand

Free-Video

Building an AppSec Program from the Ground Up - An Honest Retrospective

Learn from a 2-year journey building an AppSec program, covering successes, failures, goal-setting, and execution. Gain insights on static analysis, threat modeling, metrics, and more for effective security implementation.

Add to list

25 Lesons

56 minutes

On-Demand

Free-Video

Adapting Your AppSec

Explore strategies for integrating application security into modern development processes without hindering progress. Learn about tooling, assessments, and agile methodologies for effective security implementation.

Add to list

11 Lesons

52 minutes

On-Demand

Free-Video

AppSec Pipelines and Event-based Security - Moving Beyond a Traditional Security Test

Strategies for scaling AppSec programs using automation, continuous health checks, and event-based security to keep pace with rapid software development and delivery in large organizations.

Add to list

27 Lesons

40 minutes

On-Demand

Free-Video

Remediate The Flag - Practical AppSec Training Platform

Hands-on platform for developers to find and fix security vulnerabilities in code. Offers real-time feedback, scoring, and customizable exercises to improve application security skills.

Add to list

13 Lesons

35 minutes

On-Demand

Free-Video

AppSec - From Outsiders to Allies

Chris Wysopal explores AppSec's evolution from hacker-driven to a critical ally in software development, emphasizing the need for collaboration, shared accountability, and integrated security practices in modern development processes.

Add to list

26 Lesons

56 minutes

On-Demand

Free-Video

Why Developers Struggle with AppSec

Explore challenges developers face in application security, trust issues, and solutions for integrating security into the development process, with insights on tools and production biases.

Add to list

10 Lesons

28 minutes

On-Demand

Free-Video

RSA Conference

Cheaper by the Dozen - Application Security on a Limited Budget

Discover cost-effective application security strategies using open-source tools. Learn to implement OWASP projects, assess risks, and create a robust security program tailored to your organization's needs and budget constraints.

Add to list

16 Lesons

46 minutes

On-Demand

Free-Video

RSA Conference

When Application Security - The Wrong Way - Is the Right Thing for Your Organization

Discover innovative approaches to application security, including a "credit score" system, an exclusive security champions program, and improved scanning techniques for large-scale IT environments.

Add to list

15 Lesons

45 minutes

On-Demand

Free-Video

Security BSides San Francisco

Purple is the New Black - Modern Approaches to Application Security

Explore modern application security approaches combining defense, offense, automation, and continuous learning for various app types, including zero trust, supply chain, and microservices.

Add to list

11 Lesons

24 minutes

On-Demand

Free-Video

The Tactical Application Security Program - Getting Stuff Done

Aprenda a implementar um programa de segurança tático e eficaz, focando em avaliações ágeis, resposta a incidentes e gerenciamento de bugs. Descubra por que abordagens táticas podem ser mais efetivas que estratégias de longo prazo.

Add to list

22 Lesons

54 minutes

On-Demand

Free-Video

The Tactical Application Security Program - Getting Stuff Done

Practical approach to application security: lightweight team, agile methods, and operational excellence. Covers assessments, bug handling, and private bug bounty programs, with actionable advice for managers and practitioners.

Add to list

37 Lesons

58 minutes

On-Demand

Free-Video

AndroBugs Framework - An Android Application Security Vulnerability Scanner

Explore AndroBugs Framework, a free Android vulnerability analysis system. Learn to identify and mitigate security risks in Android apps before release, enhancing app safety and user protection.

Add to list

1 Lesons

50 minutes

On-Demand

Free-Video

Web Application Security Crossfire

Explore web application security challenges and solutions through expert insights in this panel discussion from Black Hat USA 2004.

Add to list

1 Lesons

1 hour 21 minutes

On-Demand

Free-Video

Abusing Bleeding Edge Web Standards for Appsec Glory

Explore risks and mitigation strategies for modern web security standards like SRI, CSP, and HPKP. Learn about implementation challenges, trade-offs, and potential exploits in legacy applications.

Add to list

1 Lesons

43 minutes

On-Demand

Free-Video

Devoxx

Getting Single Page Application Security Right

Explore SPA security challenges and solutions, covering XSS, CSP, session management, and CSRF in RESTful APIs. Learn practical strategies for building secure web applications using modern frameworks.

Add to list

1 Lesons

2 hours 11 minutes

On-Demand

Free-Video

USENIX

Developers and Application Security - Who is Responsible?

Explore findings on security responsibilities in software development, discussing implications of IoT and open-source components in everyday devices and applications.

Add to list

1 Lesons

32 minutes

On-Demand

Free-Video

Devoxx

Application Security in the Age of Open Source

Explore open source software's impact on application security, including its benefits, risks, and best practices for protecting organizations against vulnerabilities and compliance issues.

Add to list

1 Lesons

38 minutes

On-Demand

Free-Video

Devoxx

10 Things Developers Need to Know About Web Application Security

Explore 10 crucial web application security practices for developers, focusing on in-depth insights to make security engaging and integral to project development.

Add to list

1 Lesons

56 minutes

On-Demand

Free-Video

RSA Conference

The Application Security State of the Union

Explore the current and future landscape of AppSec, including threats, vulnerabilities, tools, and strategies. Gain insights to build robust security programs and prepare for emerging challenges.

Add to list

1 Lesons

50 minutes

On-Demand

Free-Video

GOTO Conferences

AppSec - From the OWASP Top Ten to the OWASP ASVS

Comprehensive overview of application security standards, comparing OWASP Top Ten to the more detailed ASVS, providing developers with in-depth guidance for secure software development.

Add to list

1 Lesons

52 minutes

On-Demand

Free-Video

Security BSides London

Automation in Application Security

Discover strategies for preventing application attacks through automation, enhancing security beyond traditional mitigation and detection methods.

Add to list

1 Lesons

17 minutes

On-Demand

Free-Video

Shifting Knowledge Left - Keeping up with Modern Application Security

Explore modern application security challenges in DevSecOps, including evolving web technologies, persistent vulnerabilities, and emerging framework defenses against common threats.

Add to list

1 Lesons

51 minutes

On-Demand

Free-Video

IOT and AppSec

Explore the intersection of Internet of Things (IoT) and application security, examining potential vulnerabilities and strategies for safeguarding connected devices and systems.

Add to list

1 Lesons

43 minutes

On-Demand

Free-Video

Practical AppSec - Quick Wins for More Secure Software

Practical steps to enhance application security with minimal effort, including quick wins, finding attack surfaces, and engaging developers. Introduces a software security maturity model for measuring progress.

Add to list

16 Lesons

37 minutes

On-Demand

Free-Video

Mobile AppSec - Development and Alphabet Soup

Explore mobile app security challenges, vulnerabilities, and solutions. Learn effective strategies for protecting data and applications in the rapidly evolving mobile landscape.

Add to list

1 Lesons

42 minutes

On-Demand

Free-Video

Mitigating Business Risks with Application Security

Explore strategies for mitigating business risks through application security, covering software assurance, supply chain management, and best practices for secure development.

Add to list

27 Lesons

55 minutes

On-Demand

Free-Video

New Farming Methods for the Epistemological Wasteland of Application Security

Explore innovative approaches to application security, focusing on early-stage security testing and practical tools for immediate implementation in development processes and delivery pipelines.

Add to list

1 Lesons

48 minutes

On-Demand

Free-Video

Doing AppSec at Scale - DevOps + Agile + CI/CD == AppSec Pipelines

Scaling AppSec through DevOps, Agile, and CI/CD practices. Learn strategies to efficiently manage application security across large organizations using automation, orchestration, and ChatOps.

Add to list

22 Lesons

45 minutes

On-Demand

Free-Video

AppSec Inception - Exploiting Software Culture

Explore software security culture and its exploitation with insights from Aspect Security's CEO Jeff Williams in this thought-provoking talk on application security challenges.

Add to list

1 Lesons

36 minutes

On-Demand

Free-Video

Application Security & User Experience

Explore the intersection of application security and user experience, focusing on balancing robust protection with seamless interactions in software design.

Add to list

1 Lesons

39 minutes

On-Demand

Free-Video

Keeping Up with the Web Application Security

Explore strategies for maintaining robust web application security in an ever-evolving digital landscape. Learn from industry experts about current threats and effective countermeasures.

Add to list

1 Lesons

47 minutes

On-Demand

Free-Video

Six Key Metrics - A Look at the Future of AppSec

Explore six crucial metrics shaping the future of application security. Gain insights into emerging trends and strategies for enhancing your organization's AppSec practices.

Add to list

1 Lesons

38 minutes

On-Demand

Free-Video

Application Security Debt and Application Interest Rates

Explore application security debt and interest rates with Chris Wysopal from Veracode. Learn strategies to manage and mitigate security risks in software development.

Add to list

1 Lesons

35 minutes

On-Demand

Free-Video

IEEE

Stack Overflow Considered Harmful - The Impact of Copy & Paste on Android Application Security

Explores the security implications of developers copying code from Stack Overflow into Android apps, revealing alarming rates of insecure snippet usage in popular applications.

Add to list

1 Lesons

21 minutes

On-Demand

Free-Video

Kick Starting an Application Security Program

Learn strategies to initiate and develop an effective application security program, focusing on key elements and best practices for implementation.

Add to list

1 Lesons

26 minutes

On-Demand

Free-Video

iOS Application Security Assessment and Automation - Introducing SIRA

Automated iOS app security assessment tool SIRA demonstrated, revealing common flaws in AppStore products. Explores risks, testing methods, and future improvements for mobile app security.

Add to list

21 Lesons

52 minutes

On-Demand

Free-Video

Big Data for Web Application Security

Explore how big data analytics can enhance web application security, with real-world examples of proactive and reactive security measures using MapReduce and Cascading.

Add to list

6 Lesons

20 minutes

On-Demand

Free-Video

Web Application Security

Explore web application security fundamentals and best practices with expert Jeremiah Grossman in this comprehensive conference talk from Black Hat Europe 2001.

Add to list

1 Lesons

1 hour 18 minutes

On-Demand

Free-Video

Web Application Security

Explore web application security fundamentals, vulnerabilities, and best practices with industry experts Dennis Groves and Bill Pennington in this comprehensive conference talk.

Add to list

1 Lesons

1 hour 12 minutes

On-Demand

Free-Video

Windows 2003 - Web Application Security

Explore web application security vulnerabilities and defense strategies for Windows 2003 servers, focusing on practical techniques and real-world scenarios.

Add to list

1 Lesons

49 minutes

On-Demand

Free-Video

Java Decompilation & Application Security