Publishing Details
About This Podcast
The cybersecurity podcast about application security and those who practice it. Hosted by tech industry veterans, each episode focuses on a specific area of cybersecurity, with the hosts and their guests sharing their practitioners’ experiences and opinions, sprinkled liberally with a solid dose of humor and anecdotes.
Explore Statistics
Recent Episodes
S2E6 OWASP Top 10 Turns 20: Still Valid, Still Controversial
The OWASP Top 10 has been the web application security yardstick for over two decades now, from its first edition in 2003 to the latest 2025 update, with its changes of format and scope often…
S2E5 Dune and Gloom Under the AppSec Tree: From Shai-Hulud to React2Shell
Supply-chain vulnerabilities are getting more frequent and dangerous, with the Shai-Hulud npm worm and React2Shell RCE vulnerability being just two of the recent ones. In this episode of AppSec…
S2E4 20,000 Apps Under the Sea: Deep Dive into Vibe Coding Security
Vibe coding is allowing even non-developers to produce fully functional web applications by using LLMs to generate code – but how secure are they? In this episode of AppSec Serialized, special…
S2E3 Conducting the AppSec Symphony: From Noise to ASPM Harmony
Application security posture management (ASPM) has become a crucial pillar of AppSec programs by aggregating, correlating, and prioritizing vulnerability reports arriving from various testing…
S2E2 Prompt and Circumstance: LLM Vulnerability Scanning
Large language models are transforming software development by making it easier to write and connect code, but they also introduce serious security risks. Vulnerabilities like LLM command injection,…
S2E1 Revving the (Scan) Engine
At the heart of any DAST product is a scan engine that needs to be fast and accurate while keeping up with how the latest applications and APIs are being built and attacked. As AI-assisted…
S1E6 AppSec Tech Below the Deck
Application security engineers connect security to engineering in more ways than one. Without their efforts, skills, and tools, even the best-laid application security policies and programs would…
S1E5 CISO on the Seesaw
The role of Chief Information Security Officer, or CISO, is crucial for any sizable organization yet often misunderstood as purely a compliance paperwork post. In reality, CISOs have to balance…
S1E4 Another Code Brick in the Wall
Software supply-chain security is one aspect of cybersecurity that affects every sizable application out there and also every organization that uses web apps and APIs. Application frameworks and…
S1E3 APIs Wide Open
APIs are the secret door through which so many application attacks are executed in recent years. Compared to graphical user interfaces, they are far easier to build and deploy but far harder to test…
S1E2 Machine Learning When the Perimeter is Burning
Knowing what sites, apps, and APIs you’re exposing to the Internet is crucial for determining your realistic risk level and making accurate security decisions. In this episode, Frank Catucci and Dan…
S1E1 Hot Cross-Site Fun
Cross-site scripting (XSS) is one of the oldest web vulnerability types and still a very real threat. In this episode, Frank Catucci and Dan Murphy talk about the origins of cross-site scripting,…
Frequently Asked Questions
AppSec Serialized by Invicti has published 12 episodes since September 2024, covering topics in Technology.
AppSec Serialized by Invicti is currently moderate with new episodes monthly. Average episode length is 28m.
