The power of Data is undeniable. And unharnessed - it’s nothing but chaos. Making data your ally. Using it to lead with confidence and clarity. Host Jess Carter is solving problems in real-time to reveal what’s possible. Helping communities and people thrive. This is Data Driven Leadership, a show brought to you by Resultant.
…
continue reading
内容由Stack Overflow and The Stack Overflow Podcast提供。所有播客内容(包括剧集、图形和播客描述)均由 Stack Overflow and The Stack Overflow Podcast 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
类似 The Stack Overflow Podcast 的节目
You can follow the show at @DrMayaShankar on Instagram. Apple Podcasts’ Best Show of the Year 2021 Editor's Note: Maya Shankar blends compassionate storytelling with the science of human behavior to help us understand who we are and who we become in the face of a big change. Maya is no stranger to change. “My whole childhood revolved around the violin, but that changed in a moment when I injured my hand playing a single note,” says Shankar, who was studying under Itzhak Perlman at the Juilli ...
…
continue reading
This Week in Tech is the top-ranked flagship tech podcast from TWiT.tv. Every Sunday, Leo Laporte and a roundtable of insiders explore the week's hottest tech news from AI to robots, and PCs to privacy. When it comes to tech, TWiT is IT. Records live every Sunday at 5:15pm Eastern / 2:15pm Pacific / 22:15 UTC.
…
continue reading
Some Goodness is hosted by Richard Ellis, a seasoned sales leader passionate about inviting top business minds to share their wisdom. Each episode is only 15-20 minutes, perfect for your commute or workout.
…
continue reading
Exploring the practical and exciting alternate realities that can be unleashed through cloud driven transformation and cloud native living and working. Each episode, our hosts Dave, Esmee & Rob talk to Cloud leaders and practitioners to understand how previously untapped business value can be released, how to deal with the challenges and risks that come with bold ventures and how does human experience factor into all of this? They cover Intelligent Industry, Customer Experience, Sustainabili ...
…
continue reading
What does it take to create experiences customers love, craft campaigns that captivate, and drive measurable results? Insights Unlocked features candid conversations with the builders, creators, and innovators driving some of the world’s most impactful digital transformations. Tailored for marketing, product, UX and CX leaders, each episode delivers actionable insights to help you create customer-first strategies and stay ahead in today’s competitive landscape. Each episode is about 30 minut ...
…
continue reading
A guide to the unique mindset and approach that drives Silicon Valley style disruption. Build product, raise money, and scale your startup like the best. TSP hosts Chris Saad and Yaniv Bernstein share practical advice based on decades of experience at Google, Uber, and their own startups.
…
continue reading
The Art of Manliness Podcast aims to deepen and improve every area of a man's life, from fitness and philosophy, to relationships and productivity. Engaging and edifying interviews with some of the world's most interesting doers and thinkers drop the fluff and filler to glean guests' very best, potentially life-changing, insights.
…
continue reading
Let the new games begin! Starting Thursday, December 26th, join hosts Phil Yu (aka “Angry Asian Man”) and Kiera Please as they dive into each episode of Squid Game Season 2. Joined by a lineup of special guests, they’ll unpack the deadly new challenges, explore the layered characters, and debate the moral dilemmas that will leave you questioning everything. Squid Game: The Official Podcast returns December 26th.
…
continue reading
Latin music is ascending in the U.S., and, in some surprising ways, much of the story behind the trend begins in Texas. On Viva Tejano, host J.B. Sauceda talks with legendary tejano artists and well-known tejano music fans about how the music has shaped their lives. It’s a nostalgic journey and a close look at the influences behind many of today’s biggest acts in música Mexicana. Audio subscribers to Texas Monthly can listen to episodes one week early, and get access to exclusive bonus mater ...
…
continue reading
Player FM -播客应用
使用Player FM应用程序离线!
使用Player FM应用程序离线!
))
What security teams need to understand about developers
Manage episode 454773204 series 1123725
内容由Stack Overflow and The Stack Overflow Podcast提供。所有播客内容(包括剧集、图形和播客描述)均由 Stack Overflow and The Stack Overflow Podcast 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
NightVision offers web and API security testing tools built to integrate with developers’ established workflows. NightVision identifies issues by precise area(s) of code, so devs don’t have to chase down and validate vulnerability reports, a process that eats up precious engineering resources. Get started with their docs.
Connect with Kinnaird on LinkedIn.
Stack Overflow user Cecil Curry earned a Populist badge with their exceptionally thoughtful answer to In Python how can one tell if a module comes from a C extension?.
Some great excerpts from this episode:
“From the program side, I would say if you're running a security program or you're starting from day one, there's a danger with security people and being the security person who's out of touch or doesn't know what the life of a developer is like. And you don't want to be that person. And that's not how you have actual business impact, right? So you got to embed with teams, threat model, and then do some preventative security testing, right? Testing things before it gets into production, not just relying on having a bug bounty program.”
“With code scanning, you're looking for potentially insecure patterns in the code, but with dynamic testing, you're actually testing the live application. So we're sending HTTP traffic to the application, sending malicious payloads in forms or in query parameters, et cetera, to try to elicit a response or to send something to an attacker controlled server. And so using this, we're able to. Not just have theoretical vulnerabilities, but exploitable vulnerabilities. I mean, how many times have you looked at something in GitHub security alerts and thought, yeah, that's not real. That's not exploitable. Right. So we're trying to avoid that and have higher quality touch points with developers. So when they look at something, they say, okay, that's exploitable. You showed me how. And you traced it back to code.”
773集单集
分享
Manage episode 454773204 series 1123725
内容由Stack Overflow and The Stack Overflow Podcast提供。所有播客内容(包括剧集、图形和播客描述)均由 Stack Overflow and The Stack Overflow Podcast 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
NightVision offers web and API security testing tools built to integrate with developers’ established workflows. NightVision identifies issues by precise area(s) of code, so devs don’t have to chase down and validate vulnerability reports, a process that eats up precious engineering resources. Get started with their docs.
Connect with Kinnaird on LinkedIn.
Stack Overflow user Cecil Curry earned a Populist badge with their exceptionally thoughtful answer to In Python how can one tell if a module comes from a C extension?.
Some great excerpts from this episode:
“From the program side, I would say if you're running a security program or you're starting from day one, there's a danger with security people and being the security person who's out of touch or doesn't know what the life of a developer is like. And you don't want to be that person. And that's not how you have actual business impact, right? So you got to embed with teams, threat model, and then do some preventative security testing, right? Testing things before it gets into production, not just relying on having a bug bounty program.”
“With code scanning, you're looking for potentially insecure patterns in the code, but with dynamic testing, you're actually testing the live application. So we're sending HTTP traffic to the application, sending malicious payloads in forms or in query parameters, et cetera, to try to elicit a response or to send something to an attacker controlled server. And so using this, we're able to. Not just have theoretical vulnerabilities, but exploitable vulnerabilities. I mean, how many times have you looked at something in GitHub security alerts and thought, yeah, that's not real. That's not exploitable. Right. So we're trying to avoid that and have higher quality touch points with developers. So when they look at something, they say, okay, that's exploitable. You showed me how. And you traced it back to code.”
773集单集
All episodes
×
欢迎使用Player FM
Player FM正在网上搜索高质量的播客,以便您现在享受。它是最好的播客应用程序,适用于安卓、iPhone和网络。注册以跨设备同步订阅。
类似 The Stack Overflow Podcast 的节目
The power of Data is undeniable. And unharnessed - it’s nothing but chaos. Making data your ally. Using it to lead with confidence and clarity. Host Jess Carter is solving problems in real-time to reveal what’s possible. Helping communities and people thrive. This is Data Driven Leadership, a show brought to you by Resultant.
…
continue reading
You can follow the show at @DrMayaShankar on Instagram. Apple Podcasts’ Best Show of the Year 2021 Editor's Note: Maya Shankar blends compassionate storytelling with the science of human behavior to help us understand who we are and who we become in the face of a big change. Maya is no stranger to change. “My whole childhood revolved around the violin, but that changed in a moment when I injured my hand playing a single note,” says Shankar, who was studying under Itzhak Perlman at the Juilli ...
…
continue reading
This Week in Tech is the top-ranked flagship tech podcast from TWiT.tv. Every Sunday, Leo Laporte and a roundtable of insiders explore the week's hottest tech news from AI to robots, and PCs to privacy. When it comes to tech, TWiT is IT. Records live every Sunday at 5:15pm Eastern / 2:15pm Pacific / 22:15 UTC.
…
continue reading
Some Goodness is hosted by Richard Ellis, a seasoned sales leader passionate about inviting top business minds to share their wisdom. Each episode is only 15-20 minutes, perfect for your commute or workout.
…
continue reading
Exploring the practical and exciting alternate realities that can be unleashed through cloud driven transformation and cloud native living and working. Each episode, our hosts Dave, Esmee & Rob talk to Cloud leaders and practitioners to understand how previously untapped business value can be released, how to deal with the challenges and risks that come with bold ventures and how does human experience factor into all of this? They cover Intelligent Industry, Customer Experience, Sustainabili ...
…
continue reading
What does it take to create experiences customers love, craft campaigns that captivate, and drive measurable results? Insights Unlocked features candid conversations with the builders, creators, and innovators driving some of the world’s most impactful digital transformations. Tailored for marketing, product, UX and CX leaders, each episode delivers actionable insights to help you create customer-first strategies and stay ahead in today’s competitive landscape. Each episode is about 30 minut ...
…
continue reading
A guide to the unique mindset and approach that drives Silicon Valley style disruption. Build product, raise money, and scale your startup like the best. TSP hosts Chris Saad and Yaniv Bernstein share practical advice based on decades of experience at Google, Uber, and their own startups.
…
continue reading
The Art of Manliness Podcast aims to deepen and improve every area of a man's life, from fitness and philosophy, to relationships and productivity. Engaging and edifying interviews with some of the world's most interesting doers and thinkers drop the fluff and filler to glean guests' very best, potentially life-changing, insights.
…
continue reading
Let the new games begin! Starting Thursday, December 26th, join hosts Phil Yu (aka “Angry Asian Man”) and Kiera Please as they dive into each episode of Squid Game Season 2. Joined by a lineup of special guests, they’ll unpack the deadly new challenges, explore the layered characters, and debate the moral dilemmas that will leave you questioning everything. Squid Game: The Official Podcast returns December 26th.
…
continue reading
Latin music is ascending in the U.S., and, in some surprising ways, much of the story behind the trend begins in Texas. On Viva Tejano, host J.B. Sauceda talks with legendary tejano artists and well-known tejano music fans about how the music has shaped their lives. It’s a nostalgic journey and a close look at the influences behind many of today’s biggest acts in música Mexicana. Audio subscribers to Texas Monthly can listen to episodes one week early, and get access to exclusive bonus mater ...
…
continue reading
Player FM -播客应用
使用Player FM应用程序离线!
使用Player FM应用程序离线!
