Nov 17, 2017
In this episode, James talks about open redirect and why it matters from a security perspective. He also shows how this information can be used in your personal technology use, not just in development.
For more info go to https://www.developsec.com or follow us on twitter (@developsec).
Join the conversations.....
Oct 31, 2017
You know your development language and platform, but do you really know the ins and outs of web application technology? How well do you know HTTP, HTML, etc? James talks about a few scenarios where really understanding how the technologies works helps better understand vulnerability risks.
Oct 18, 2017
In this episode, James talks about authorization and some common areas where it poses a risk. He also goes over some techniques to help test authorization.
For more info go to https://www.developsec.com or follow us on twitter (@developsec).
Join the conversations.. join our slack channel. Email
Sep 29, 2017
The Equifax breach was a major news story. James talks about some of the security controls mentioned and how to start a conversation within your organization about them.
Want to listen on YouTube? Check out our channel where we are releasing episodes starting from episode 1 at
Sep 18, 2017
We talk about cross-site scripting (XSS) all the time, but often overlook the ability to use javascript: in anchor tags. James talks about this unique ability and how to protect your applications from it.
The related blog post for this can be found at