Paul's Security Weekly Subscribe

The Infinite Window – Paul’s Security Weekly #572

August 24, 2018

Full Audio

View Show Index

Segments

1. Tod Beardsley, Rapid7 –

Tod Beardsley is the Director of Research at Rapid7. Paul talks to Tod about his recent projects Sonar and Heisenberg. They also discuss Tod's Under the Hoodie pentest report.

Full Show Notes: https://wiki.securityweekly.com/Episode572

Hosts

Paul Asadoorian

Principal Security Researcher at Eclypsium

https://securitypodcaster.com

Security Researcher

https://jasonwood.io/

Sr. InfoSec Consultant at Online Business Sytems

https://www.obsglobal.com/

2. PHP Type Juggling Vulnerabilities, Netsparker –

Sven Morgenroth is a security researcher at Netsparker. He found filter bypasses for Chrome's XSS auditor and several web application firewalls. He comes on the show to discuss PHP Type Juggling Vulnerabilities.

Full Show Notes: https://wiki.securityweekly.com/Episode572

3. Burp Suite 2.0, DNC, and NotPetya –

The Untold story of NotPetya, New Apache Struts RCE Flaw, How door cameras are creating dilemmas for police, Google gets sued for tracking you even when your location history is off, and Artificial Whiskey is coming, and one company is betting you'll drink up.

Full Show Notes; https://wiki.securityweekly.com/Episode572

4. Burp Suite 2.0, DNC, and NotPetya – Paul’s Security Weekly #572

The Untold story of NotPetya, New Apache Struts RCE Flaw, How door cameras are creating dilemmas for police, Google gets sued for tracking you even when your location history is off, and Artificial Whiskey is coming, and one company is betting you'll drink up. Full Show Notes: https://wiki.securityweekly.com/Episode572 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

5. Tod Beardsley, Rapid7 – Paul’s Security Weekly #572

Tod Beardsley is the Director of Research at Rapid7. Paul talks to Tod about his recent projects Sonar and Heisenberg. They also discuss Tod's Under the Hoodie pentest report. Full Show Notes: https://wiki.securityweekly.com/Episode572 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

6. PHP Type Juggling Vulnerabilities, Netsparker – Paul’s Security Weekly #572

Sven Morgenroth is a security researcher at Netsparker. He found filter bypasses for Chrome's XSS auditor and several web application firewalls. He comes on the show to discuss PHP Type Juggling Vulnerabilities. Full Show Notes: https://wiki.securityweekly.com/Episode572 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

Related

Security Architecture

Hacker Heroes – Haroon Meer – PSW Vault

December 25, 2024

Unraveling Cybersecurity Complexity: A Conversation with Haroon Meer Haroon Meer, an influential figure in the world of cybersecurity, takes center stage in this podcast interview. With a deep reservoir of knowledge and a track record of tackling complex security challenges, Haroon has established himself as a key player in the InfoSec domain. ...

Compliance & Privacy – SWN Vault

December 24, 2024

Josh Marpet and Doug talk about Compliance and Privacy for about 30 minutes but it could have been a lot more.

Asset Management

Say Easy, Do Hard, Minimum Viable Security – Part 1 – Jon Fredrickson – BSW Vault

December 23, 2024

Check out this episode from the BSW Vault, hand picked by main host Matt Alderman! This segment was originally published on January 3, 2023. With the current macro economic head winds, 2023 budgets are either frozen or are flat. Where should CISOs focus these limited budgets to maximize the most out of their security program? In this segment, we i...