Intro

This chapter features a guest renowned for his work in web application security and his contributions to the OWASP Foundation. The speakers reminisce about past experiences and collaborations, paving the way for an in-depth discussion on critical security topics.

Transcript

chevron_right

Play full episode

chevron_right

Transcript

Episode notes

In this episode Brad is joined by Matt Tesauro to talk all things OWASP, API Hacking and DevSec. Matt Tesauro is a Distinguished Engineer at NoName Labs, a member of the OWASP Global Board of Directors and Founder of 10Security, the creators of DefectDojo.

Matt Tesauro is a DevSecOps and AppSec guru with specialization in creating security programs, leveraging automation to maximize team velocity and training emerging and senior professionals. When not writing automation code in Go, Matt is pushing for DevSecOps everywhere via his involvement in open-source projects, presentations, trainings and new technology innovation.

Twitter: https://twitter.com/matt_tesauro
LinkedIn: https://www.linkedin.com/in/matttesauro/
DefectDojo: https://www.defectdojo.org/
DefectDojo on Github: https://github.com/DefectDojo/django-DefectDojo
DefectDojo commercial support: https://www.defectdojo.com/

API Security: https://www.slideshare.net/mtesauro/hacking-and-defending-apis-red-and-blue-make-purplepdf
API Security Tools: https://owasp.org/www-community/api_security_tools (always looking for additions!)

OWASP:
Become an OWASP Member: https://owasp.org/membership/
Find a local chapter: https://owasp.org/chapters/
Find a cool project: https://owasp.org/projects/
OWASP Cheat Sheets: https://cheatsheetseries.owasp.org/
OWASP Web Security Testing Guide: https://owasp.org/www-project-web-security-testing-guide/
OWASP Mobile Application Security: https://owasp.org/www-project-mobile-app-security/
OWASP API Security Top 10: https://owasp.org/www-project-api-security/
OWASP Dependency-Check: https://jeremylong.github.io/DependencyCheck/
OWASP Dependency-Track: https://dependencytrack.org/

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://x.com/cyberthreatpov

Follow Spencer on social ⬇
Spencer's Links: https://go.spenceralessi.com/links

Work with Us: https://securit360.com

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!

Get the app

Home Top podcasts Popular guests Top books