In this episode Brad is joined by Matt Tesauro to talk all things OWASP, API Hacking and DevSec. Matt Tesauro is a Distinguished Engineer at NoName Labs, a member of the OWASP Global Board of Directors and Founder of 10Security, the creators of DefectDojo.

Matt Tesauro is a DevSecOps and AppSec guru with specialization in creating security programs, leveraging automation to maximize team velocity and training emerging and senior professionals. When not writing automation code in Go, Matt is pushing for DevSecOps everywhere via his involvement in open-source projects, presentations, trainings and new technology innovation.

Twitter:   https://twitter.com/matt_tesauro
LinkedIn: https://www.linkedin.com/in/matttesauro/
DefectDojo: https://www.defectdojo.org/
DefectDojo on Github: https://github.com/DefectDojo/django-DefectDojo
DefectDojo commercial support: https://www.defectdojo.com/

API Security: https://www.slideshare.net/mtesauro/hacking-and-defending-apis-red-and-blue-make-purplepdf
API Security Tools: https://owasp.org/www-community/api_security_tools (always looking for additions!)

OWASP:
Become an OWASP Member: https://owasp.org/membership/
Find a local chapter: https://owasp.org/chapters/
Find a cool project: https://owasp.org/projects/
OWASP Cheat Sheets: https://cheatsheetseries.owasp.org/
OWASP Web Security Testing Guide: https://owasp.org/www-project-web-security-testing-guide/
OWASP Mobile Application Security: https://owasp.org/www-project-mobile-app-security/
OWASP API Security Top 10: https://owasp.org/www-project-api-security/
OWASP Dependency-Check: https://jeremylong.github.io/DependencyCheck/
OWASP Dependency-Track: https://dependencytrack.org/

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com