404

The page you requested doesn't exist

We could not locate the page: /blog/appsec-cali-2019

Try one of the featured posts or search the archive below.

Featured Posts

BlogBlog
How to securely build product features using AI APIs

How to securely build product features using AI APIs

A Practitioner’s Guide to Consuming AI

Rami McCarthy
Rami McCarthy
BlogBlog
AI and Machine Learning in Cybersecurity

AI and Machine Learning in Cybersecurity

An overview of current applications of AI/ML to cybersecurity with relevant links and a vision of where things are headed.

Clint Gibler
Clint Gibler
What I Learned Watching All 44 AppSec Cali 2019 Talks

What I Learned Watching All 44 AppSec Cali 2019 Talks

2 Days | 4 Rooms | ~32 Hours of Talks

Clint Gibler
Clint Gibler
BlogBlog
Keep Hackers Out of Your Kubernetes Cluster with These 5 Simple Tricks!

Keep Hackers Out of Your Kubernetes Cluster with These 5 Simple Tricks!

A threat-informed roadmap for securing Kubernetes clusters

Christophe Tafani-Dereeper
Christophe Tafani-Dereeper
BlogBlog
AI Resources - Part 1

AI Resources - Part 1

A collection of interesting AI tools, products, resources, papers, and more I’ve come across.

Clint Gibler
Clint Gibler
BlogBlog
An Overview of Software Supply Chain Security

An Overview of Software Supply Chain Security

A breakdown of what constitutes the software supply chain and how to secure each stage

Clint Gibler
Francis Odum
Clint Gibler, +1

Archive

NewsletterNewsletter
[tl;dr sec] #260 - Reddit's Self Hosted Code Scanning, Build an Offensive AI Agent, OpenSSF's Package Analysis

[tl;dr sec] #260 - Reddit's Self Hosted Code Scanning, Build an Offensive AI Agent, OpenSSF's Package Analysis

Reddit's flexible code scanner for any CLI tool, an agent that analyzes JS and tests routes, new tool to scan OSS packages

Clint Gibler
Clint Gibler
NewsletterNewsletter
[tl;dr sec] #259 - What Sucks in Security, Supply Chain Firewall, AWS re:Invent Security Talks

[tl;dr sec] #259 - What Sucks in Security, Supply Chain Firewall, AWS re:Invent Security Talks

Insights from 50+ security leaders, OSS tool to protect devs from malicious dependencies, playlist of re:Invent's security talks

Clint Gibler
Clint Gibler
BlogBlog
What sucks in security? Research findings from 50+ security leaders

What sucks in security? Research findings from 50+ security leaders

A deep dive into what CISOs are actually complaining about

Maya Kaczorowski
Maya Kaczorowski
NewsletterNewsletter
[tl;dr sec] #258 - AI-powered Fuzzing and SAST, What Hackers know about your AWS Account, EDR Vulnerabilities

[tl;dr sec] #258 - AI-powered Fuzzing and SAST, What Hackers know about your AWS Account, EDR Vulnerabilities

Google's AI-powered fuzzing and augmenting SAST with AI, new OSINT/recon service for public AWS identifiers, finding EDR vulns with fuzzing

Clint Gibler
Clint Gibler
NewsletterNewsletter
[tl;dr sec] #257 - Autonomous AI Hacking, Buying us-east-1, macOS Security

[tl;dr sec] #257 - Autonomous AI Hacking, Buying us-east-1, macOS Security

AI finds an authentication bypass, what happens when you buy an AWS region name domain, fuzzing macOS and sandbox escapes

Clint Gibler
Clint Gibler
NewsletterNewsletter
[tl;dr sec] #256 - AI SOC Analyst, Detection Engineering, How to Ransomware in AWS

[tl;dr sec] #256 - AI SOC Analyst, Detection Engineering, How to Ransomware in AWS

NVIDIA's AI SOC analyst you can speak to, embracing TDD and detection as code, tips on how 2 ransomware

Clint Gibler
Clint Gibler
BlogBlog
Systems Thinking for Cybersecurity Professionals

Systems Thinking for Cybersecurity Professionals

Let's hit RESET!

Laksh Raghavan
Laksh Raghavan
NewsletterNewsletter
[tl;dr sec] #255 - AI finds 0day in SQLite, Cloud Security Tools, Auto-generate Terraform Secure Guardrails

[tl;dr sec] #255 - AI finds 0day in SQLite, Cloud Security Tools, Auto-generate Terraform Secure Guardrails

Google Project Zero's LLM-powered variant analysis, deobfuscating IAM polices and a real-time SCP error monitor, using LLMs to create secure by default Terraform modules

Clint Gibler
Clint Gibler
NewsletterNewsletter
[tl;dr sec] #254 - Cloud CTFs, AI + AppSec, Awesome Threat Detection

[tl;dr sec] #254 - Cloud CTFs, AI + AppSec, Awesome Threat Detection

Practice your GCP and Azure security skills, scaling AppSec with LLMs, a curated list of awesome threat detection and hunting resources

Clint Gibler
Clint Gibler
NewsletterNewsletter
[tl;dr sec] #253 - State of Cloud Security, Applying AI to Cybersecurity, Living Off The Land ESXi

[tl;dr sec] #253 - State of Cloud Security, Applying AI to Cybersecurity, Living Off The Land ESXi

Datadog's 2024 update, lots of resources on AI + security, VMware ESXi built-ins adversaries use

Clint Gibler
Clint Gibler
NewsletterNewsletter
[tl;dr sec] #252 - Perfecting Ransomware on AWS, Kubernetes-native Threat Detection, MITRE Caldera Bounty Hunter

[tl;dr sec] #252 - Perfecting Ransomware on AWS, Kubernetes-native Threat Detection, MITRE Caldera Bounty Hunter

Simulate ransomware with KMS XKS + your key, Venator, a new OSS tool, new Caldera plugin to emulate complete, realistic cyber attack chains

Clint Gibler
Clint Gibler
NewsletterNewsletter
[tl;dr sec] #251 - Vuln Discovery at Scale, Multi-Cloud Testing Tool, AI-powered Container Scanning

[tl;dr sec] #251 - Vuln Discovery at Scale, Multi-Cloud Testing Tool, AI-powered Container Scanning

Finding dangling DNS records and secrets at scale, new tool with 80+ attack techniques, NVIDIA's AI blueprint to auto-triage your container CVEs

Clint Gibler
Clint Gibler
FirstBack
12345678
Next Last