Nollaig Heffernan and Sean Martin weave, swerve and blast their way through a number of application security technologies looking at the history of the marketplace, the expansion of the technologies, how things stay the same even with the massive changes in continuous delivery and continuous integration.
“One man’s SQL injection is another man’s cross-site scripting.
— Nollaig Heffernan
Some of the acronyms the two unpack in this episode include SAST, DAST, IAST, WAFs, RASP and more. To make things even more interesting, many one of these, of course, have a variety of flavors to choose from.
“Is the long tail of AppSec actually a leg sticking out?
— Sean Martin