all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Absolute AppSec Ep. #195 - 2022 CVEs, CORS, GraphQL

Add to bookmarks
Jan. 18, 2023, 6:15 a.m. | Absolute AppSec

Absolute AppSec www.youtube.com

Ken (@cktricky) and Seth (@sethlaw) take a step away from the news to review technical articles and research released in the last couple of weeks. This includes analysis done by Jerry Gamblin on total CVEs released during 2022, a new tool for exploiting weak CORS configurations, an excellent writeup on usage along with an intentionally-vulnerable GraphQL application, and finally some thoughts on prototype pollution style vulnerabilities in other interpreted languages (specifically python).

absolute analysis application appsec articles cors cves exploiting graphql languages research review technical technical articles tool vulnerabilities vulnerable writeup

Visit resource

More from www.youtube.com / Absolute AppSec

Absolute AppSec Ep. #242 - LLMs Exploiting Vulns, State of DevSecOps 1 day, 3 hours ago | www.youtube.com
absolute analysis appsec article +14
Absolute AppSec episode with Bryan Schmidt 3 days, 8 hours ago | www.youtube.com
absolute appsec bryan engineering +13
Absolute AppSec episode with Dustin Lehr 1 week ago | www.youtube.com
Absolute AppSec Ep. #241 - Secure Defaults, Using LLMs for Code Review 1 week, 1 day ago | www.youtube.com
absolute appsec code code review +8
Absolute AppSec Ep. #240 - Code Smells, XZ Backdoor, Hallucinations 2 weeks, 1 day ago | www.youtube.com
absolute appsec backdoor code +18
Absolute AppSec Ep. #239 4 weeks, 1 day ago | www.youtube.com
absolute appsec
Absolute AppSec Ep. #238 1 month ago | www.youtube.com
absolute appsec
Absolute AppSec Ep. #237 1 month, 1 week ago | www.youtube.com
absolute appsec
Absolute AppSec Ep. #236 - Memory Safe Languages, LLM Supply Chain Security 1 month, 2 weeks ago | www.youtube.com
absolute appsec back basics +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Systems Security Officer (ISSO) (Remote within HR Virginia area)

@ OneZero Solutions | Portsmouth, VA, USA
View on infosec-jobs.com

Security Analyst

@ UNDP | Tripoli (LBY), Libya
View on infosec-jobs.com

Senior Incident Response Consultant

@ Google | United Kingdom
View on infosec-jobs.com

Product Manager II, Threat Intelligence, Google Cloud

@ Google | Austin, TX, USA; Reston, VA, USA
View on infosec-jobs.com

Cloud Security Analyst

@ Cloud Peritus | Bengaluru, India
View on infosec-jobs.com
View more jobs