PSW #655 | SC Media
Remote access, DDOS, Pen testing

PSW #655

June 12, 2020

Sponsored By

sponsor
Visit https://securityweekly.com/plextrac for more information!

We’ll discuss how organizations can improve their vulnerability management life cycle and demo some quick ways to get started with vulnerability management and combining penetration test results. Then walking through the whole life cycle of a vulnerability.

To learn more about PlexTrac, visit: https://securityweekly.com/plextracVisit https://www.securityweekly.com/psw for all the latest episodes!
Full Episode Show Notes

Enhancing Vulnerability Management By Including Penetration Testing Results

Hosts

Jeff Man

Jeff Man – Sr. InfoSec Consultant

Lee Neely

Lee Neely – Senior Cyber Analyst

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Scott Lyons

Scott Lyons – CEO

Tyler Robinson

Tyler Robinson – Managing Director of Network Operations

Guests

Dan DeCloss

Dan DeCloss – President / CEO

Announcements

  • We are looking for high-quality guest suggestions for all of our podcasts to fill our Q3 recording schedule! Submit your suggestions for guests by visiting securityweekly.com/guests and submitting the form! We review suggestions monthly and will reach out to you once reviewed!

As web applications have evolved from static HTML pages into fully-fledged applications with a native feel to them, web browsers continue to provide developers with truly novel functionality. The resulting paradigm shift from merely rendering web pages to acting as an OS-agnostic abstraction layer poses unique challenges to everyone involved with web application security, including automated web application security scanning solutions.Visit https://www.securityweekly.com/psw for all the latest episodes!
Full Episode Show Notes

New Web Technology & Impact on Automated Security Testing

Here’s a quick intro: https://web.dev/fugu-status/

A list of related APIs that are either planned or already available: https://goo.gle/fugu-api-tracker

For more background: https://javascript-conference.com/blog/making-the-web-more-powerful-with-project-fugu/ (the “Mission: A more powerful web” part)

Hosts

Lee Neely

Lee Neely – Senior Cyber Analyst

Matt Alderman

Matt Alderman – CEO

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Scott Lyons

Scott Lyons – CEO

Tyler Robinson

Tyler Robinson – Managing Director of Network Operations

Guests

Benjamin Daniel Mussler

Benjamin Daniel Mussler – Senior Security Researcher

Announcements

  • Learn how to prevent account takeover attacks in our next webcast with Google Cloud! Register for our upcoming webcasts or virtual trainings by visiting securityweekly.com/webcasts. Or visit securityweekly.com/ondemand to view our previously recorded webcasts!

Hospital-busting hacker crew may be behind ransomware attack that made Honda halt car factories, 3 common misconceptions about PCI compliance, SMBleed could allow a remote attacker to leak kernel memory, Kubernetes Falls to Cryptomining via Machine-Learning Framework, and The F-words hidden superpower: How Repeating it can increase your pain threshold!Visit https://www.securityweekly.com/psw for all the latest episodes!
Full Episode Show Notes

OSS Vulnerabilities, UPnP Flaws, & 0-Days for Bad People

Hosts

Jeff Man

Jeff Man – Sr. InfoSec Consultant

Lee Neely

Lee Neely – Senior Cyber Analyst

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Scott Lyons

Scott Lyons – CEO

Tyler Robinson

Tyler Robinson – Managing Director of Network Operations

Announcements

  • Join us at InfoSecWorld 2020 – June 22nd-24th now a fully virtual event! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020, click the register button to register with our discount code!
  • Join the Security Weekly Mailing List & receive your invite to our community Discord server by visiting securityweekly.com/subscribe and clicking the button to join the list!
prestitial ad