Shashwat Sehgal has been in the tech industry broadly for 15 years. He started out as an engineer, but eventually, worked his way towards product and the business side. Outside of tech, he enjoys spending time with his family. He's into sports, loves to play tennis, but admits he hasn't played pickle ball yet because the courts are always booked. He also enjoys reading, in particular historical narratives or autobiographies.In his prior years, Shashwat noticed that developers spend a large amount of time securing business assets in the cloud. He dreamt of a world where this was just an abstraction layer on top of the cloud, making it easier for developers to complete the task.This is the creation story of P0 Security.SponsorsP0 SecuritySpeakeasyQA WolfSnapTradeLinks https://p0.dev/https://www.linkedin.com/in/shashwatsehgal/Support this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

The Haunted House of API'sToday, we are releasing another episode for Cybersecurity Awareness month, in our series entitled the Haunted House of API’s, sponsored by our friends at Traceable AI. In this series, we are building awareness around API’s, their security risks – and what you can do about it. Traceable AI is building One Platform to secure every API, so you can discover, protect, and test all your API's with contextual API security, enabling organizations to minimize risk and maximize the value API's bring to their customers.The Haunted Web: Navigating API Sprawl and Creepy CrawlersToday’s episode is titled The Haunted Web: Navigating API Sprawl and Creepy Crawlers, with Traceable’s Chief Security Officer, Richard Bird. As organizations scale and evolve, so does the complexity of their APIs. API sprawl, the uncontrolled expansion of APIs, creates a tangled web where vulnerabilities linger in the shadows. These unseen APIs become “creepy crawlers” of your digital infrastructure, creeping through your systems and posing security risks. Richard will discuss how unmanaged and undocumented APIs contribute to blind spots in security, the risks they create for organizations and the best strategies for securing a sprawling ecosystem.Discussion questions:Can you explain what we mean by "unknown APIs" and the different types, like shadow, rogue, zombie, and undocumented?Why do these APIs often go unnoticed, and how do they become security risks?What makes these APIs such an attractive target for attackers, and can you share an example of how one has been exploited?How can organizations begin to uncover these hidden APIs, and what tools or strategies are effective in doing so?In your experience, what are some common mistakes organizations make that lead to these unknown APIs being created or overlooked?SponsorsTraceableLinkshttps://www.traceable.ai/https://www.linkedin.com/in/rbird/https://richardbird.com/Support this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

The Haunted House of API'sToday, we are releasing another episode for Cybersecurity Awareness month, in our series entitled the Haunted House of API’s, sponsored by our friends at Traceable AI. In this series, we are building awareness around API’s, their security risks – and what you can do about it. Traceable AI is building One Platform to secure every API, so you can discover, protect, and test all your API's with contextual API security, enabling organizations to minimize risk and maximize the value API's bring to their customers.The Dark Corners of APIs: Uncovering Unknown APIs Lurking in the ShadowsOur episode today is titled The Dark Corners of APIs: Uncovering Unknown API’s lurking in the shadows, where we speak with Katie Paxton-Fear. APIs are the gateway to your digital infrastructure, but hidden deep in the recesses of your system are unknown APIs – shadow, rogue, zombie, and undocumented API’s. Each of these present a unique threat to your organization and can be exploited by hackers. Katie is an API hacker and researcher, and today, she will take us on a journey through the API graveyards, where hidden APIs lurk, waiting to be exploited – sharing real life examples of how these API’s have been attacked, and best practices for ensuring they don’t become your companies next security nightmare.Discussion questions:Can you explain what we mean by "unknown APIs" and the different types, like shadow, rogue, zombie, and undocumented?Why do these APIs often go unnoticed, and how do they become security risks?What makes these APIs such an attractive target for attackers, and can you share an example of how one has been exploited?How can organizations begin to uncover these hidden APIs, and what tools or strategies are effective in doing so?In your experience, what are some common mistakes organizations make that lead to these unknown APIs being created or overlooked?SponsorsTraceableLinkshttps://www.traceable.ai/https://www.linkedin.com/in/katiepf/https://insiderphd.dev/Katie's YouTube ChannelSupport this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

The Haunted House of API'sThe Witch’s Brew: Stirring Up OWASP Vulnerabilities and API TestingToday, we are kicking off an amazing series for Cybersecurity Awareness month, entitled the Haunted House of API’s, sponsored by our friends at Traceable AI. In this series, we are building awareness around API’s, their security risks – and what you can do about it. Traceable AI is building One Platform to secure every API, so you can discover, protect, and test all your API's with contextual API security, enabling organizations to minimize risk and maximize the value API's bring to their customers.In today’s episode, we will be talking with Jayesh Ahire, an expert in API testing and OWASP, will guide us through the "brew" of common vulnerabilities that haunt API ecosystems, focusing on the OWASP Top 10 for APIs. He’ll share how organizations can use API security testing to spot and neutralize these vulnerabilities before they become major exploits. By emphasizing proactive security measures, Jayesh will offer insights into creating a strong API testing framework that keeps malicious actors at bay.Discussion questions:What are some of the most common vulnerabilities in APIs that align with the OWASP Top 10, and why are they so dangerous?Why is API security testing crucial for detecting these vulnerabilities early, and how does it differ from traditional security testing?Can you share an example of how an overlooked API vulnerability led to a significant security breach?How can organizations create an effective API testing framework that addresses these vulnerabilities?What tools or methods do you recommend for continuously testing APIs and ensuring they remain secure as they evolve?SponsorsTraceableLinkshttps://www.traceable.ai/https://www.linkedin.com/in/jayesh-ahire/https://owasp.org/Support this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

Elkhan Shabanov was born in the Soviet Union, and started out in the tech world. He eventually left tech to try some other types of businesses, but eventually returned. He has done a few early stage startups in the past, in particular in the 3d printing space before it was cool. Six years ago, he joined his current venture. Outside of tech, he enjoys traveling, and is in a competition with his daughter to see how many countries he can visit. When he reads, he prefers to go back to the books he has read and enjoyed before, and being in Texas, he is a big fan of grilling out on his big green egg.As I mentioned, six years ago Elkhan joined a company that wanted to be more than a software development shop. He and the founder of the company wanted to build a company that did more than throw bodies at a problem - but actually because a long term partner to their clients.This is the creation story of Digicode.SponsorsSpeakeasyQA WolfSnapTradeLinkshttps://www.mydigicode.com/https://www.linkedin.com/in/elkhanshabanov/Support this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

Vishal Agarwal was born in India, and did his schooling in Darjeeling. He noted that this city exports some of the best tea in the world! Prior to his current venture, he was the chief marketing officer for Choxi. Outside of tech, he is an avid tennis lover and follows cricket and basketball closely. Though, he admits, now that he has a 2.5 year old child, his time is mostly dedicated to him.In attempting to solve the problem of "splitting the check", Vishal discovered that restaurants had a real problem with having multiple tablets for the many order and delivery services - like GrubHub, DoorDash, etc. When he saw this problem proliferate, he validated that people were willing to pay for a solution.This is the creation story of Checkmate.SponsorsSpeakeasyQA WolfSnapTradeLinkshttps://www.itsacheckmate.com/https://www.linkedin.com/in/vishalagarwal82/ Support this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

Heiki Riesenkampf is from a tiny country called Estonia, later studying computer science in London and doing his post grad in Zurich. He has been into machine learning since before all of the hype it has now. Outside of technology, he dreams of being a macroeconomist, and spends a ton of time reading about the topic. He lives in New York now, and frequently takes in the architecture, fashion and local art scene.Previously, Heiki spent time working for a VC, eventually building a product in a completely different domain. After personally realizing that he didn't want to be known for the product he was building, he pivoted towards building something that impacted him personally as an immigrant.This is the creation story of Commonbase.SponsorsP0 SecuritySpeakeasyQA WolfSnapTradeLinkshttps://commonbase.com/https://www.linkedin.com/in/heikirSupport this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

Guy Guzner first computer when he was 5, which was a Commodore 64, where he learned to program in BASIC. As a teed, get started getting into the internet, back with dialup and a modem. He startec hacking into places where he shouldn't be, and eventually got into trouble - but now, he has flipped that for good and works to protect systems now. Outside of tech, he plays tennis, and likes to ski. He also plays guitar, jamming Led Zeppling and 80's / 90's rock.After selling his past company to Symantec, he stayed on to help existing and future companies. What he realized was that people were still mis-using their identities. He observed this behavior, and decided to take identity to the next level.This is the creation story of Savvy Security.SponsorsP0 SecuritySpeakeasyQA WolfSnapTradeLinkshttps://www.savvy.security/https://www.linkedin.com/in/guyguzner/Support this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

Rob Grazioli started his life in Brooklyn NY, but moved to Italy for his Dad's job, and lived there from age 5 to 13. He ended up moving back to the states for High School and College, and finds that it's difficult to separate tech and work from his life. Outside of tech, he enjoys exercising, and has always been an athlete, most recently picking up basketball. He really loves to make things, learn how things work, and to munch on Oreos.Eight years ago, Rob and his partners started a company called Density, allowing businesses to count the number of people in a room. After growing that business, Rob realized that he wanted to get back to building things. And, after working with early businesses, he found his passion in being founders for hire.This is the creation story of Bread.SponsorsP0 SecuritySpeakeasyQA WolfSnapTradeLinkshttps://www.madebybread.com/https://www.linkedin.com/in/robert-j-grazioli/Support this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

Sebastian Raffaele grew up in a small, working class family in Australia. He had a crazy life, growing up in social housing, having to find his way. He found inspiration from his family members, who always pushed him to follow his passions. He left high school early, and jumped straight away into the work force. In 2014 he was introduced to crypto, and got hooked. Outside of tech and finance, he has always been into the creative spaces, specifically music. He likes to spend time with his fiancé, likes trying new foods, and tries to surround himself with high quality people.Sebastian realized that the manual processes for a trader are overwhelming, along with making it difficult to be consistent. And alongside this, he saw the cycle of manual traders returning the money they made to the market - sort of like "the house always wins" in casinos. He wanted to build something close the gap for these traders, and solve this problem.This is the creation story of Minotaur Trading Systems.SponsorsP0 SecuritySpeakeasyQA WolfSnapTradeLinkshttps://minotaurtradingsystems.com/Support this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy