Explore Python static analysis techniques with Spencer J McIntyre in this 27-minute conference talk from Derbycon 7 (2017). Gain insights into Metasploit, static analysis overview, AST module, and Bandit tool. Learn about security assessments, definition sources, and variable sources. Discover how to use Bandit's report set root feature and see practical demonstrations through demo projects. Enhance your understanding of Python code security and analysis methods to improve your development practices.
Overview
Syllabus
Introduction
Who am I
Metasploit
Static Analysis Overview
AST Module
Bandit
Security Assessments
Definition Source
Variable Sources
Bandits
Report
Set
Root
Demo Projects