In this episode, our host Karsten Hohage talks to Thomas Barber about project “Foxhound”, an SAP-maintained fork of Firefox (the web browser) that is designed to detect security vulnerabilities in websites. Thomas discusses the history of “Foxhound”, how and why it was created, and its journey to becoming an open-source project. He talks about the importance of the collaborations that made Foxhound successful and about some of the challenges that it has faced along the way. Anyone who wants to get involved in this project is welcome to visit the GitHub page to learn more.

Guest:

Thomas Barber

Thomas’ first experience with software development was at the age of twelve when he programmed the game “Mortal Wombat” in QuickBASIC. Since then, he has worked as an embedded software developer and security expert in the automotive industry, before moving to SAP Security Research in 2019. Thomas’ interests include investigating novel techniques for the detection and automatic prevention of injection vulnerabilities and privacy violations in web applications. Thomas holds a PhD in the field of Physics from the University of Cambridge and has published papers in the fields of Particle Physics, Astronomy, and Computer Science.

• GitHub: https://github.com/tmbrbr 
• LinkedIn: https://www.linkedin.com/in/thomas-barber-b3965551/

Show Notes:

• SAP Open Source Program Office
  • SAP Open Source at SAP Community
  • SAP Open Source Twitter (@sapopensource)
  • e-mail: ospo@sap.com
• Project Foxhound – https://github.com/SAP/project-foxhound
• SAP Security Research – https://www.sap.com/about/company/innovation/icn.html#research
  
• Additional Downloads
  • Download the transcript as PDF-file

Hosted by Karsten Hohage – Product Expert in Technology and Innovation (T&I)

LinkedIn: https://www.linkedin.com/in/karsten-hohage-0180312/

The post Project “Foxhound” – Hunting Cross-Site Scripting on the Web first appeared on The Open Source Way.