Preview Mode Links will not work in preview mode

DevelopSec: Developing Security Awareness

Feb 21, 2014

Here we are in 2014 and we still have SQL Injection issues.  James Jardine discusses what SQL Injection is, how attackers take advantage of it and how developers can protect against it. 


Feb 14, 2014

In this episode, James Jardine talks about web proxies and how they are used.  Whether you are a developer, QA tester, or pen tester, web proxies are essential to your testing efforts.  Some Proxies discussed:

  • Burp Suite - http://portswigger.net/
  • Fiddler - http://www.telerik.com/download/fiddler
  • Zap Proxy...


Feb 7, 2014

In this episode, James talks about these external systems that are connected to our networks.  It is speculated that the Target breach was done through an HVAC system that was connected to the Internet.   How many devices these days connect to the internet and have default passwords for the vendor to manage them.  I...