Monday, March 29, 2021

TikTok Analysis, Patching Patches, CI/CD Integrity, Faster Fuzzing, & Slack Safety – ASW #145

Security and privacy technical analysis of TikTok, subtle parsing problems, chain of trust through a CI/CD pipeline, faster fuzzing even without source code, interplay of application security and application safety!

2:25 – SolarWinds Experimenting With New Software Build System in Wake of Breach
7:47 – TikTok vs Douyin — A Security and Privacy Analysis
13:07 – Analyzing attacks taking advantage of the Exchange Server vulnerabilities
17:07 – Secure containerized environments with updated threat matrix for Kubernetes
19:05 – SaltStack: further injection vulnerabilities
22:13 – Finding undocumented x86 instructions on modern processors
25:35 – Un-bee-lievable Performance: Fast Coverage-guided Fuzzing with Honeybee and Intel Processor Trace

Visit https://www.securityweekly.com/asw for all the latest episodes!

Show Notes: https://securityweekly.com/asw145

The post TikTok Analysis, Patching Patches, CI/CD Integrity, Faster Fuzzing, & Slack Safety – ASW #145 appeared first on Malware Devil.



https://malwaredevil.com/2021/03/29/tiktok-analysis-patching-patches-ci-cd-integrity-faster-fuzzing-slack-safety-asw-145/?utm_source=rss&utm_medium=rss&utm_campaign=tiktok-analysis-patching-patches-ci-cd-integrity-faster-fuzzing-slack-safety-asw-145

No comments:

Post a Comment

Barbary Pirates and Russian Cybercrime

In 1801, the United States had a small Navy. Thomas Jefferson deployed almost half that Navy—three frigates and a schooner—to the Barbary C...