Mastering Web Security: Myths, Strategies & More! • Scott Helme & Sebastian Brandes • GOTO 2023
About this talk
This interview was recorded at GOTO Copenhagen for GOTO Unscripted. #GOTOcon #GOTOunscripted #GOTOcph http://gotopia.tech Read the full transcription of this interview here: https://gotopia.tech/articles/304 Scott Helme - Security Researcher, Hacker & Founder of Report URI & Security Headers @ScottHelme Sebastian Brandes - Senior Principal Product Manager at F5 @SebastianBrandes2300 RESOURCES Scott https://twitter.com/Scott_Helme https://linkedin.com/in/scotthelme https://scotthelme.co.uk https://github.com/ScottHelme Sebastian https://twitter.com/br4ndes https://www.linkedin.com/in/sebastianbk https://github.com/sebastianbk Links Sebastian: https://youtu.be/BX0TVzHOJgQ https://crawler.ninja https://docs.report-uri.com/setup/wizard Scott: https://youtu.be/K9MwaSRdA94 https://research.checkpoint.com/2019/hacking-fortnite Troy: https://youtu.be/pxPEdUFdayA Jim: https://youtu.be/nvzMN5Z8DJI Scott pt. 1: https://youtu.be/zvCXUozuI2A Scott pt. 2: https://youtu.be/8PlCfYflz_A DESCRIPTION Get deep into the realm of application security, debunking myths around filters and emphasizing the power of a comprehensive defense strategy. Sebastian Brandes and Scott Helme share practical tips, highlight valuable resources, and underscore the critical role of organizational commitment in securing applications effectively. Watch this interview to revamp your security approach with their actionable insights! TIMECODES 00:00 Intro 00:38 Unveiling web security vulnerabilities 04:45 Securing the modern web: Strategies & challenges 14:21 Beyond boundaries: Securing shadow IT & legacy apps 22:33 The fallacy of filters: A false sense of security 27:26 Training strategies in AppSec: Balancing automation & education 31:22 Outro RECOMMENDED BOOKS Liz Rice • Container Security • https://amzn.to/3oU4iJe Andy Greenberg • Tracers in the Dark • https://amzn.to/3Sg3Ncz Thomas J. Holt, Adam M. Bossler & Kathryn C. Seigfried-Spellar • Cybercrime and Digital Forensics • https://amzn.to/3vRLe73 Aaron Parecki • OAuth 2.0 Simplified • https://amzn.to/2A3IMOf Erdal Ozkaya • Cybersecurity: The Beginner's Guide • https://amzn.to/2T6OIj3 https://twitter.com/GOTOcon https://www.linkedin.com/company/goto- https://www.facebook.com/GOTOConferences #Cybersecurity #Cryptojacking #ApplicationSecurity #Web3 #Cybercrime #Cybercriminals #Ransomeware #OWASP #GlobalAppSecStudy #AppSec #CrosssiteScripting #Programming #SoftwareEngineering #SebastianBrandes #ScottHelme Looking for a unique learning experience? Attend the next GOTO conference near you! Get your ticket at https://gotopia.tech Sign up for updates and specials at https://gotopia.tech/newsletter SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily. https://www.youtube.com/user/GotoConferences/?sub_confirmation=1
Stay Updated
Get notified about new features and conference additions.
