Главная
Study mode:
on
You
History
Saved
In progress 0 courses
compleat 0 courses
#Art & Design #Adobe #ChatGPT #GitHub

#Software Security

#Sigstore #The Update Framework
Showing: 744 courses
University of Melbourne

Proving Confidentiality and Its Preservation for Mixed-Sensitivity Concurrent Programs

0 rewiews
Explore techniques for proving confidentiality in mixed-sensitivity concurrent programs and its preservation during compilation, using the Cross Domain Desktop Compositor as a case study. Discusses ongoing research on OS-level confidentiality assurance.
Add to list
15 Lesons
37 minutes
On-Demand
Free-Video
New York University (NYU)

angr: Binary Analysis Framework - Demonstration and Analysis

0 rewiews
Explore angr, a powerful binary analysis framework, through demos and source code analysis. Learn its capabilities for reverse engineering and vulnerability detection.
Add to list
6 Lesons
31 minutes
On-Demand
Free-Video
OpenSSF

Mastering OSS Security Development with Linux Foundation Education

0 rewiews
Develop secure open source software skills, from foundational to advanced, with expert-led training and certifications. Gain hands-on experience for real-world OSS security.
Add to list
1 Lesons
56 minutes
On-Demand
Free-Video
Conference on Computer-Aided Verification

Verified Software Security Down to Gates

0 rewiews
Explore hardware-software contracts synthesis, security vulnerability detection, and microarchitecture updates for verified software security. Gain insights into cutting-edge approaches for high-assurance computer systems design.
Add to list
1 Lesons
1 hour 9 minutes
On-Demand
Free-Video
Snyk

Using the Snyk CLI for Static Code Analysis

0 rewiews
Learn to use Snyk CLI for static code analysis in CI/CD pipelines. Covers installation, testing, result filtering, and practical scenarios for integrating security scans into your development workflow.
Add to list
15 Lesons
1 hour 4 minutes
On-Demand
Free-Video
INFOSEC TRAIN

How to Prepare for CSSLP Exam - CSSLP Exam Tips - Tips to Pass the CSSLP Exam

0 rewiews
Expert guidance on CSSLP exam preparation, covering exam parameters, strategies, and key domains. Learn essential tips to excel in this prestigious application security certification.
Add to list
8 Lesons
50 minutes
On-Demand
Free-Video
Snyk

Stranger Danger - Your Java Attack Surface Just Got Bigger

0 rewiews
Explore Java application security in cloud-native environments through live hacking demonstrations. Learn about common threats, vulnerabilities, and misconfigurations, along with actionable remediation strategies and best practices.
Add to list
27 Lesons
1 hour 4 minutes
On-Demand
Free-Video
Snyk

Untangle the Secrets of Your JavaScript Dependencies

0 rewiews
Explore NodeSecure, an open-source tool for analyzing JavaScript dependencies. Learn to visualize, understand, and secure your project's dependency tree with expert insights and practical demonstrations.
Add to list
19 Lesons
1 hour 26 minutes
On-Demand
Free-Video
The ASF

Making Open Source Secure by Design

0 rewiews
Discover essential strategies for enhancing open source security with insights from CISA's Section Chief, covering design principles and implementation across critical infrastructure sectors.
Add to list
1 Lesons
29 minutes
On-Demand
Free-Video
Rust

Cómo Convencer a tu Jefe de Usar Rust

0 rewiews
Descubre estrategias efectivas para persuadir a tu superior sobre los beneficios de implementar Rust en proyectos de desarrollo, mejorando la eficiencia y seguridad del código.
Add to list
1 Lesons
21 minutes
On-Demand
Free-Video
Ubuntu OnAir

Responsible Disclosure of Security Issues - UbuConLA 2017

0 rewiews
Aprende sobre la divulgación ética de vulnerabilidades de seguridad, explorando mejores prácticas y consideraciones importantes para reportar problemas de forma responsable.
Add to list
1 Lesons
36 minutes
On-Demand
Free-Video
IEEE

SrcMarker: Dual-Channel Source Code Watermarking via Scalable Code Transformations

0 rewiews
Explore dual-channel source code watermarking techniques using scalable code transformations for enhanced software protection and ownership verification.
Add to list
1 Lesons
16 minutes
On-Demand
Free-Video
Ubuntu OnAir

El código abierto como ventaja competitiva en tecnologías de Ciberseguridad

0 rewiews
Explora cómo el software de código abierto fortalece la ciberseguridad, ofreciendo procesos y herramientas para gestionar dependencias, obtener información crítica y detectar violaciones de políticas.
Add to list
1 Lesons
36 minutes
On-Demand
Free-Video
PyCon US

Entendiendo y Confiando en tus Dependencias en Python

0 rewiews
Análisis de dependencias en Python: riesgos ocultos, ataques como typosquatting y estrategias para evaluar y confiar en paquetes de terceros. Herramientas y prácticas para realizar controles de seguridad efectivos.
Add to list
1 Lesons
36 minutes
On-Demand
Free-Video
DefCamp

Log4JMX - The Vulnerability that Never Existed

0 rewiews
Explore the intriguing case of Log4JMX, a supposed vulnerability that turned out to be non-existent, in this cybersecurity presentation at DefCamp Cluj-Napoca 2024.
Add to list
1 Lesons
40 minutes
On-Demand
Free-Video
media.ccc.de

Nix zu verstecken! Erstellung und Veröffentlichung von CVEs für Open Source Software

0 rewiews
Erfahrungsbericht zur Erstellung und Veröffentlichung von CVEs für Open-Source-Software. Praktische Einblicke in den Prozess, Vorteile und Herausforderungen als CVE Numbering Authority.
Add to list
14 Lesons
1 hour 1 minute
On-Demand
Free-Video
DevSecCon

DevSecOps Industry Lessons Learned and Future Steps with AI Integration

0 rewiews
Gain insights into DevSecOps evolution, AI challenges, and practical steps for organizational maturity while exploring industry-proven lessons and future perspectives for effective implementation.
Add to list
1 Lesons
21 minutes
On-Demand
Free-Video
ChariotSolutions

Securing Software by Construction: From Research to Industry - Philly ETE 2016

0 rewiews
Explore techniques for building secure software from the ground up, bridging the gap between academic research and industry practice in cybersecurity, and addressing challenges in commercializing long-term security solutions.
Add to list
22 Lesons
54 minutes
On-Demand
Free-Video
IEEE

Slow But Steady - Achieving Real Security Within Two Decades

0 rewiews
Explore strategies for achieving real security in software systems over two decades, focusing on incremental improvements, formal verification, and well-engineered infrastructure.
Add to list
25 Lesons
1 hour 7 minutes
On-Demand
Free-Video
IEEE

Protecting the Stack with Metadata Policies and Tagged Hardware

0 rewiews
Explore innovative metadata-tag based stack-protection security policies for tagged architectures, focusing on efficient cacheability and performance in unsafe languages like C.
Add to list
13 Lesons
20 minutes
On-Demand
Free-Video
IEEE

RetroWrite- Statically Instrumenting COTS Binaries for Fuzzing and Sanitization

0 rewiews
Explore static instrumentation of COTS binaries for enhanced fuzzing and sanitization using RetroWrite, a framework for rewriting position-independent code.
Add to list
11 Lesons
16 minutes
On-Demand
Free-Video
IEEE

Mitigating Spectre Attacks Using CFI Informed Speculation

0 rewiews
Mitigating Spectre attacks using Control-Flow Integrity to constrain speculative execution, combining forward and backward edge protection for comprehensive defense against non-vendor-specific vulnerabilities.
Add to list
11 Lesons
17 minutes
On-Demand
Free-Video
IEEE

Shining Light on Shadow Stacks

0 rewiews
Comprehensive analysis of shadow stack mechanisms for protecting against control-flow hijacking attacks, evaluating performance, compatibility, and security. Proposes a novel design using a dedicated register.
Add to list
15 Lesons
19 minutes
On-Demand
Free-Video
IEEE

Talos - Neutralizing Vulnerabilities with Security Workarounds for Rapid Response

0 rewiews
Neutralizing vulnerabilities using error-handling code for rapid response, minimizing patch delays while maintaining functionality. Explores automated security workarounds to mitigate risks in popular Linux server applications.
Add to list
15 Lesons
20 minutes
On-Demand
Free-Video
IEEE

A Generic Approach to Automatic Deobfuscation of Executable Code

0 rewiews
Explore a generic approach to automatically deobfuscate executable code, applicable to various obfuscation techniques. Learn about semantics-preserving transformations and their effectiveness in extracting internal logic from obfuscated malware.
Add to list
16 Lesons
20 minutes
On-Demand
Free-Video
IEEE

Heapster- Analyzing the Security of Dynamic Allocators for Monolithic Firmware Images

0 rewiews
Explore Heapster's innovative approach to analyzing dynamic allocators in monolithic firmware, enhancing security through advanced identification and evaluation techniques.
Add to list
12 Lesons
19 minutes
On-Demand
Free-Video
ChariotSolutions

Software Security: Keeping Pace with Rapid Development

0 rewiews
Explore strategies for scaling software security assurance to match rapid development, addressing vulnerabilities, and maintaining effectiveness in fast-paced delivery environments.
Add to list
12 Lesons
39 minutes
On-Demand
Free-Video
HackerOne

Hacker-Powered Security in Agile Software Development - Webinar

0 rewiews
Explore hacker-powered security in agile software development, covering open source risks, bug bounty benefits, and integrating security into continuous delivery workflows.
Add to list
22 Lesons
1 hour
On-Demand
Free-Video
HackerOne

Attack Surface Reduction Strategies for Enhanced Security

0 rewiews
Explore attack surface reduction strategies with Google Project Zero's Natalie Silvanovich, focusing on innovative techniques to enhance system security and minimize vulnerabilities.
Add to list
1 Lesons
39 minutes
On-Demand
Free-Video
Bugcrowd

Finding and Exploiting Hidden Functionality in Windows DLLs - LevelUpX Series 14

0 rewiews
Explore hidden Windows DLL functionality, common bug patterns, and exploitation techniques for bug bounty hunters. Learn tools and methods to uncover vulnerabilities in web servers and network services.
Add to list
8 Lesons
45 minutes
On-Demand
Free-Video
Linux Foundation

Census II of Open Source Software Application Libraries the World Depends On

0 rewiews
Explore key findings on widely used FOSS libraries in production applications, their impact on the economy, and how organizations can leverage this research to enhance operations.
Add to list
16 Lesons
1 hour 11 minutes
On-Demand
Free-Video
SyScan360

Pwning Adobe Reader - Exploiting Vulnerabilities and Security Flaws

0 rewiews
Explore advanced techniques for exploiting vulnerabilities in Adobe Reader, focusing on security flaws and potential attack vectors in this popular PDF software.
Add to list
1 Lesons
50 minutes
On-Demand
Free-Video
SyScan360

Back to the Core - Exploring Fundamental Security Concepts

0 rewiews
Explore advanced techniques for analyzing and exploiting core system vulnerabilities in this in-depth security presentation from SyScan'15 Singapore.
Add to list
1 Lesons
42 minutes
On-Demand
Free-Video
Recon Conference

Recon Brussels 2018 - Starcraft: Emulating a Buffer Overflow for Fun and Profit

0 rewiews
Explore reverse engineering techniques used to emulate a buffer overflow in StarCraft, addressing challenges in preserving popular mods while enhancing game security.
Add to list
1 Lesons
1 hour 5 minutes
On-Demand
Free-Video
LASCON

Realizing Software Security Maturity - The Growing Pains and Gains

0 rewiews
Explore the challenges and opportunities of implementing a comprehensive application security program using the Software Assurance Maturity Model (SAMM) to guide success beyond basic OWASP Top 10 compliance.
Add to list
1 Lesons
47 minutes
On-Demand
Free-Video
LASCON

Closing the Gap: Countering Attackers' First Mover Advantage

0 rewiews
Explore strategies to rapidly respond and remediate software vulnerabilities, focusing on the widespread impact of bad hygiene and the critical need for swift action in cybersecurity.
Add to list
1 Lesons
44 minutes
On-Demand
Free-Video
LASCON

The Role of Empathy in Vulnerability Disclosure Practices for Software Vendors - 2017

0 rewiews
Explore empathy's role in vulnerability disclosure, focusing on cross-functional collaboration, customer-centric decision-making, and building trust through effective communication in software security.
Add to list
25 Lesons
46 minutes
On-Demand
Free-Video
USENIX Enigma Conference

Stack Overflow: A Story of Two Security Tales - Enhancing Software Security

0 rewiews
Exploring Stack Overflow's dual impact on software security: potential vulnerabilities and effective solutions. Highlights research findings and proposes design tweaks to enhance secure development practices.
Add to list
1 Lesons
19 minutes
On-Demand
Free-Video
LASCON

Assessing Software Security Initiative Maturity: OpenSAMM and BSIMM Comparison - 2019

0 rewiews
Explore OpenSAMM and BSIMM methodologies for evaluating software security maturity, comparing their features and learning best practices for implementation.
Add to list
1 Lesons
44 minutes
On-Demand
Free-Video
LASCON

Securability - Enhancing Security Practices in Organizations

0 rewiews
Explore strategies for enhancing security practices and improving overall organizational resilience in this insightful talk by Shannon Leitz.
Add to list
1 Lesons
45 minutes
On-Demand
Free-Video
USENIX Enigma Conference

As We May Code: Augmenting Software Security with Automated Reasoning

0 rewiews
Exploring how cloud services and automated reasoning revolutionize software security, from development to bug detection, with examples from Microsoft's "Project Springfield" and future implications.
Add to list
7 Lesons
19 minutes
On-Demand
Free-Video
LASCON

Threat Modeling for Secure Software Design

0 rewiews
Practical strategies for threat modeling in secure software design, including risk management techniques to address potential threats and integrate with real-world development priorities.
Add to list
1 Lesons
52 minutes
On-Demand
Free-Video
Association for Computing Machinery (ACM)

Enforcing Unique Code Target Property for Control-Flow Integrity

0 rewiews
Explore control-flow integrity enhancement through unique code target property, addressing challenges in Intel PT implementation, security enforcement, and efficiency optimization.
Add to list
18 Lesons
24 minutes
On-Demand
Free-Video
ChariotSolutions

Secure by Design: Insights and Pitfalls

0 rewiews
Explore secure software design principles, their benefits, and potential pitfalls. Learn from real-world examples and gain insights on crafting more secure code through thoughtful design choices.
Add to list
32 Lesons
1 hour
On-Demand
Free-Video
TheIACR

Side-Channel Attacks

0 rewiews
Explore side-channel attacks, including Spectre, timing attacks, and countermeasures. Learn about developer knowledge, resistance techniques, and future directions in cybersecurity.
Add to list
31 Lesons
1 hour 14 minutes
On-Demand
Free-Video
Bill Buchanan OBE

CeH Unit 1 - Business Aspects of Penetration Testing

0 rewiews
Explore business aspects of penetration testing, including key terms, threats, data protection, and security procedures. Learn about ethical hacking and its role in cybersecurity.
Add to list
11 Lesons
34 minutes
On-Demand
Free-Video

Microsoft Vulnerability Research: How to Be a Finder as a Vendor - Notacon 11

0 rewiews
Explore Microsoft's approach to vulnerability research, focusing on third-party findings, reporting processes, and lessons learned from case studies. Gain insights into effective vulnerability management.
Add to list
29 Lesons
33 minutes
On-Demand
Free-Video

Succeeding with Enterprise Software Security Key Performance Indicators

0 rewiews
Learn to implement and measure effective enterprise software security KPIs. Discover strategies for aligning security goals with organizational objectives and improving development processes.
Add to list
16 Lesons
58 minutes
On-Demand
Free-Video
Linux Foundation

Protect Yourself from Malicious Dependencies with One Cool Trick

0 rewiews
Learn strategies to safeguard your projects from harmful dependencies. Discover effective techniques for identifying and mitigating risks in your software supply chain.
Add to list
1 Lesons
42 minutes
On-Demand
Free-Video
Linux Foundation

Cybersecurity Challenges and Community-Based Risk Management

0 rewiews
Explore cybersecurity challenges, risk management, and global tech trends with insights on patents, licensing, and community-based approaches to digital security.
Add to list
16 Lesons
48 minutes
On-Demand
Free-Video
Linux Foundation

Policy Compliance with Sigstore - From Signing Software to Validating the Whole Software Supply Chain

0 rewiews
Explore sigstore for software signing and verification, and learn how to implement policy compliance in cloud-native software build and deployment processes using automation and tools.
Add to list
9 Lesons
34 minutes
On-Demand
Free-Video
Linux Foundation

Finding Multiple Bug Effects for More Precise Exploitability Estimation

0 rewiews
Explore advanced techniques for estimating software vulnerabilities and enhancing exploit detection through multi-effect bug analysis and precise exploitability assessment.
Add to list
1 Lesons
32 minutes
On-Demand
Free-Video
Linux Foundation

Struts2 Vulnerability Workshop - Securing Applications Against Supply Chain Attacks

0 rewiews
Explore software supply chain attacks, open source vulnerabilities, and security measures in modern development practices through hands-on exercises and real-world examples.
Add to list
22 Lesons
32 minutes
On-Demand
Free-Video

Vulnerable by Design - The Backdoor That Came Through the Front

0 rewiews
Explore vulnerabilities in software design, historical backdoors, and their implications for security. Learn about notable cases and techniques for creating and detecting backdoors.
Add to list
36 Lesons
33 minutes
On-Demand
Free-Video

Large Scale Application Security

0 rewiews
Explore large-scale application security strategies and best practices with insights from industry expert Charlie Eriksen at BsidesRI 2013.
Add to list
1 Lesons
41 minutes
On-Demand
Free-Video

The Goodness is Baked In - Baking Assurance into Software

0 rewiews
Explore software assurance techniques to enhance security from the development stage, focusing on baking in goodness for robust and reliable applications.
Add to list
1 Lesons
33 minutes
On-Demand
Free-Video

Baking in Security - Lecture 1.2.5

0 rewiews
Explore essential security practices for software development, emphasizing the importance of integrating security measures from the start of the development process.
Add to list
1 Lesons
40 minutes
On-Demand
Free-Video
Linux Foundation

Software Security Insights: A Conversation with Window Snyder - Intel's Chief Software Security Officer

0 rewiews
Window Snyder discusses security challenges in open source and commercial software, hacking tactics, and strategies for improving application security, emphasizing the importance of security skills and addressing fear and shame.
Add to list
10 Lesons
28 minutes
On-Demand
Free-Video
Linux Foundation

Keeping Up with CVEs - Security Response Management Best Practices

0 rewiews
Explore security update challenges, best practices, and tools for managing vulnerabilities in released products. Learn strategies to efficiently handle CVEs and maintain software security.
Add to list
22 Lesons
41 minutes
On-Demand
Free-Video
OWASP Foundation

Exploiting Hardware Glitches and Side Channels in Perfect Software

0 rewiews
Uncover vulnerabilities in flawless software through hardware glitches and side-channel attacks. Learn advanced exploitation techniques for enhancing cybersecurity defenses.
Add to list
1 Lesons
51 minutes
On-Demand
Free-Video
OWASP Foundation

Secure Agile Development According to SAMM

0 rewiews
Learn to integrate security into Agile development using SAMM principles. Explore challenges, practical solutions, and a hygiene approach for effective secure software development.
Add to list
10 Lesons
34 minutes
On-Demand
Free-Video
OWASP Foundation

OWASP SAMM2 - Your Dynamic Software Security Journey

0 rewiews
Explore OWASP SAMM2's dynamic approach to software security, enhancing your development practices and strengthening application defenses throughout the lifecycle.
Add to list
1 Lesons
46 minutes
On-Demand
Free-Video
OWASP Foundation

Effective Usage Analysis: The Shortest Path Between Developer and Accelerated Product Releases

0 rewiews
Discover how effective usage analysis prioritizes vulnerabilities, enabling developers to focus on exploitable risks, streamline remediation, and accelerate product delivery.
Add to list
9 Lesons
30 minutes
On-Demand
Free-Video
OWASP Foundation

Weakest in the Herd - Securing End-of-Life Software

0 rewiews
Explore strategies for identifying, assessing, and securing end-of-life software, including risk factors, potential threats, and mitigation techniques to enhance overall system security.
Add to list
14 Lesons
51 minutes
On-Demand
Free-Video
OWASP Foundation

The Unabridged History of Application Security - Keynote

0 rewiews
Comprehensive overview of application security's evolution, highlighting industry improvements and OWASP's global impact. Offers optimistic perspective on progress and future challenges in software security.
Add to list
1 Lesons
42 minutes
On-Demand
Free-Video
OWASP Foundation

Embedding GDPR into the Software Development Lifecycle

0 rewiews
Practical guide to integrating GDPR requirements into software development lifecycle, covering privacy awareness, risk analysis, secure coding, threat modeling, and breach notification processes.
Add to list
1 Lesons
44 minutes
On-Demand
Free-Video
OWASP Foundation

Dangerous Optimizations and the Loss of Causality in C and C++ Programming

0 rewiews
Explore compiler optimizations in C/C++ that can lead to software vulnerabilities. Learn about mitigation strategies and the importance of maintaining causality in code.
Add to list
18 Lesons
45 minutes
On-Demand
Free-Video
OWASP Foundation

Embedding GDPR Into the Secure Development Lifecycle

0 rewiews
Practical guide to integrating GDPR requirements into software development lifecycle, covering privacy awareness, risk analysis, secure coding, and breach notification processes.
Add to list
27 Lesons
44 minutes
On-Demand
Free-Video
OWASP Foundation

When Bandit Strikes - Defending Your Python Code

0 rewiews
Learn to defend Python code against security threats with insights from experts Will Bengtson and Travis McPeak. Discover proactive strategies and best practices for enhancing your application's security posture.
Add to list
1 Lesons
41 minutes
On-Demand
Free-Video
OWASP Foundation

Scaling a Software Security Initiative - Lessons from BSIMM

0 rewiews
Insights on scaling software security initiatives from BSIMM, covering best practices, challenges, and strategies for implementing robust security measures across large organizations.
Add to list
1 Lesons
51 minutes
On-Demand
Free-Video
OWASP Foundation

Do Certain Types of Developers or Teams Write More Secure Code?

0 rewiews
Explore factors influencing secure code development, including team dynamics, developer experience, and human factors. Gain insights into improving software security practices.
Add to list
31 Lesons
43 minutes
On-Demand
Free-Video
OWASP Foundation

Application Security Verification Standard - OWASP Flagship Project

0 rewiews
Comprehensive guide to OWASP's Application Security Verification Standard, covering its history, development, and implementation strategies for robust application security.
Add to list
10 Lesons
24 minutes
On-Demand
Free-Video
OWASP Foundation

Software Security 5D Framework - Evolution of Security Verification

0 rewiews
Explore the OWASP Software Security 5D Framework and its impact on integrating security bugs into the software lifecycle, revolutionizing traditional assessment methods.
Add to list
27 Lesons
31 minutes
On-Demand
Free-Video
OWASP Foundation

How to Review Code for Vulnerabilities - OWASP Standard Classification

0 rewiews
Learn effective strategies for identifying vulnerabilities through source code review, including key concepts, starting points, and automation techniques. Practice reviewing code samples to enhance your application security skills.
Add to list
1 Lesons
28 minutes
On-Demand
Free-Video
OWASP Foundation

Mitigate Risks in Code - Protect Your Software-based Supply Chain

0 rewiews
Explore strategies to mitigate risks in code and safeguard your software-based supply chain, enhancing overall security and resilience in software development.
Add to list
1 Lesons
49 minutes
On-Demand
Free-Video
OWASP Foundation

Over a Decade of Software Security - What Have We Learned

0 rewiews
Explore key insights and lessons from a decade of software security evolution, highlighting crucial developments and best practices for modern cybersecurity professionals.
Add to list
1 Lesons
53 minutes
On-Demand
Free-Video
OWASP Foundation

Reducing Software Vulnerability at a Global Scale

0 rewiews
Explore strategies for reducing software vulnerabilities on a global scale, leveraging collective efforts of millions to enhance cybersecurity and protect digital ecosystems.
Add to list
1 Lesons
59 minutes
On-Demand
Free-Video
OWASP Foundation

OWASP SAMM Project - Introduction to Software Assurance Maturity Model

0 rewiews
Explore the OWASP SAMM framework for software assurance, learning key strategies to integrate security practices throughout the software development lifecycle.
Add to list
1 Lesons
1 hour
On-Demand
Free-Video
OWASP Foundation

OWASP Open Application Security Curriculum Project

0 rewiews
Learn essential application security concepts and practices from OWASP's comprehensive curriculum, designed to enhance your skills in identifying and mitigating software vulnerabilities.
Add to list
1 Lesons
59 minutes
On-Demand
Free-Video
OWASP Foundation

Scaling AppSec through Education

0 rewiews
Strategies for scaling application security through developer education, addressing the imbalance between security teams and developers and emphasizing code review for early bug detection.
Add to list
1 Lesons
31 minutes
On-Demand
Free-Video
OWASP Foundation

The Cavalry Is Us: Protecting the Public Good in the Internet of Things Era

0 rewiews
Exploring cybersecurity challenges in the Internet of Things era and the need for collective action to protect public interests and safety in an increasingly connected world.
Add to list
33 Lesons
50 minutes
On-Demand
Free-Video
Docker

Securing the Software Supply Chain with TUF and Docker - Protecting Against Distribution Attacks

0 rewiews
Explore secure software updates with TUF framework, focusing on key revocation, mitigating attacks, and integrating with Docker's Notary for enhanced software supply chain security.
Add to list
17 Lesons
40 minutes
On-Demand
Free-Video
Docker

Talking TUF: Securing Software Distribution

0 rewiews
Explore The Update Framework (TUF) for securing software update systems. Learn how to integrate this flexible security framework to protect against vulnerabilities and enhance software distribution safety.
Add to list
1 Lesons
41 minutes
On-Demand
Free-Video
OWASP Foundation

Software Security Metrics - Developing Key Indicators for Executives

0 rewiews
Techniques for effective communication with executives about software security, focusing on developing meaningful metrics to demonstrate progress and maturity in security capabilities.
Add to list
18 Lesons
50 minutes
On-Demand
Free-Video
OWASP Foundation

Preventing Security Bugs through Software Design

0 rewiews
Learn strategies to prevent security vulnerabilities through API and framework design, focusing on SQL injection and XSS prevention techniques used successfully at Google.
Add to list
13 Lesons
51 minutes
On-Demand
Free-Video
OWASP Foundation

Software Security Initiative Capabilities - Where to Begin

0 rewiews
Explore key capabilities for starting a software security initiative, including penetration testing, code review, and secure design review. Learn benefits, drawbacks, and integration into mature security practices.
Add to list
1 Lesons
40 minutes
On-Demand
Free-Video
OWASP Foundation

50 Shades of AppSec - Lessons from Diverse Application Security Scenarios

0 rewiews
Explore the diverse landscape of application security, from sophisticated to absurd, and learn valuable lessons for future security efforts in this engaging keynote by Troy Hunt.
Add to list
1 Lesons
1 hour 5 minutes
On-Demand
Free-Video
OWASP Foundation

How to Find the Next Great Deserialization CVE - AppSecUSA 2016

0 rewiews
Explore deserialization attacks, learn to find and exploit vulnerabilities, and discover open-source protection methods. Gain insights into the challenges of traditional AppSec defenses against these threats.
Add to list
1 Lesons
35 minutes
On-Demand
Free-Video
OWASP Foundation

Bugs Ruin Everything - Keynote on Vulnerability Analysis and Exploitation

0 rewiews
Explore vulnerability analysis techniques, their strengths and weaknesses, and real-world case studies with security expert Charlie Miller in this engaging keynote from AppSecEU 2016.
Add to list
35 Lesons
53 minutes
On-Demand
Free-Video
OWASP Foundation

AppSec Awareness - A Blueprint for Security Culture Change

0 rewiews
Discover strategies for building a sustainable security culture through AppSec awareness, focusing on human factors, knowledge sharing, and effective program architecture.
Add to list
45 Lesons
46 minutes
On-Demand
Free-Video
OWASP Foundation

OWASP Security Knowledge Framework - Project Overview and Best Practices

0 rewiews
Explore OWASP Security Knowledge Framework with project lead Glenn Ten Cate, discussing goals, milestones, and best coding practices for this essential security tool.
Add to list
1 Lesons
54 minutes
On-Demand
Free-Video
OWASP Foundation

Skillful, Scalable Full-Stack Security in a State of Constant Flux

0 rewiews
Approaches to maintaining secure full-stack posture at scale in changing environments. Discusses automation vs. human testing, analytics in continuous security, and scaling with human validation and intelligence.
Add to list
1 Lesons
41 minutes
On-Demand
Free-Video
OWASP Foundation

Benchmarking Application Security Across Industries

0 rewiews
Insights from 200,000+ application assessments reveal industry-specific software security trends, vulnerabilities, and best practices. Benchmark your AppSec program against peers for improved security outcomes.
Add to list
1 Lesons
46 minutes
On-Demand
Free-Video
OWASP Foundation

Securing Software's Future: Why API Design Matters

0 rewiews
Explore how API design can prevent vulnerabilities, guide developers towards secure implementations, and shape the future of software security through better development environments.
Add to list
28 Lesons
48 minutes
On-Demand
Free-Video
OWASP Foundation

Practical Threat Modeling with Microsoft's Threat Modeling Tool 2016

0 rewiews
Learn practical threat modeling using Microsoft's Threat Modeling Tool 2016. Explore data flow-based techniques, risk assessment, and countermeasures for effective application security.
Add to list
23 Lesons
44 minutes
On-Demand
Free-Video
OWASP Foundation

Threat Modeling - A Brief History and the Unified Approach at Intuit

0 rewiews
Unified approach to threat modeling combining STRIDE and asset-based methods. Focuses on identifying assets, attacker profiles, and controls for software architecture and system deployments.
Add to list
18 Lesons
40 minutes
On-Demand
Free-Video
OWASP Foundation

Insecure Expectations - Testing for Common Security Issues in Rails Applications

0 rewiews
Explore hands-on examples of security testing in Rails, learn about common vulnerabilities, and discover a new open-source tool for simplified security test writing. Gain practical skills to enhance your application's security.
Add to list
1 Lesons
46 minutes
On-Demand
Free-Video
OWASP Foundation

Verifying Software for Security Bugs - Dynamic Analysis and Fuzzing Testing

0 rewiews
Learn dynamic analysis and fuzzing techniques to verify software security, including mitigations and vulnerability checks. Explore BinSecSweeper, an open-source tool for binary analysis on Windows and Linux.
Add to list
30 Lesons
50 minutes
On-Demand
Free-Video
OWASP Foundation

Tagging Your Code with a Useful Assurance Label

0 rewiews
Learn to focus software vulnerability assessments on critical weaknesses across the development lifecycle, and create an "assurance tag" for binaries to enhance security efforts.
Add to list
1 Lesons
31 minutes
On-Demand
Free-Video
OWASP Foundation

Wait Wait... Don't Tell Me Software Security - Panel Discussion

0 rewiews
Panel discussion testing AppSec knowledge with industry experts through engaging quiz-style segments. Covers current security news, trends, and challenges in an entertaining format.
Add to list
1 Lesons
42 minutes
On-Demand
Free-Video