Dive in to the Pwnkit privilege escalation vulnerability with Kyle and Brian!

In this live hack webinar on the Log4Shell exploit we give a brief overview of the vulnerability and dive right into some examples of the exploit in action. We then show several real-world remediation approaches as well as other fixes outside of code. We feature a final round of fun demos, including container and IaC hacks and Java-based game hacks. We wrap up with a great list of takeaway resources and answer your questions.

A Day In the Life of a Fintech CISO - Chris Russell.

Learn about a new prolific vulnerability in an extremely popular package! We will dive in to the defective code as well as the fix!

Learn about The Big Fix campaign which Snyk is leading to help developers, and security practitioners fix security issues. Join us to get a sneak (snyk?) peak into the fun.

CISO Journey What is a like CISO role? what was it like an operational ciso v/s a field ciso? like rght now we are talking only about log4j issues and how it would have been for you. What would have been your strategy? Have you seen other field Cxo’s? What is one Unique thing, you are trying to implement? How different is this role from a regular CISO?

The Big Fix brings together developers, DevOps, and security practitioners of all skill levels to help make the internet more secure. Our goal is to make security 100x better in 2022 by finding and fixing 202,200 security vulnerabilities! Join us to help find (and fix!) security vulnerabilities while making friends and winning swag. In this short video we'll help you get started finding (and fixing!) security vulnerabilities in your applications -- it's easy!

As cloud-native technologies disrupt the Application Security (AppSec) market, forward-thinking enterprises are shifting their security to the left. A range of cutting-edge security platforms is now available, empowering developers to build secure applications within the development process. But what do secure applications look like, and why does it matter? Why are enterprises implementing security during the deployment phase?

We talk with the Claroty team and Daniel Stenberg, creator of curl, about URL Confusion Vulnerabilities.

Brian and Kyle chat with Johannes about the project!