Explore the dangers of overlooking medium-severity vulnerabilities in application security through a live demo and expert insights. Witness how seemingly minor security flaws can be exploited to create significant attacks, emphasizing the importance of static source code analysis in identifying vulnerabilities that penetration tests might miss. Learn to leverage static application security testing as an attack technique and understand why addressing all levels of vulnerabilities is crucial for a robust AppSec program. Gain valuable knowledge from Matt Rose, Global Director of Application Security Strategy at Checkmarx, as he shares his extensive experience in secure software development lifecycles and static analysis implementation across various industries and technical environments.
When Molehill Vulnerabilities Become Mountainous Exploits
Overview
Syllabus
Introduction
What doesnt work
Initial statements
Security conscious organization
Prioritize severity
Waiting until the end
Demo
Ontime Delivery
QA
Developer Adoption
Developer Security
Questions
Taught by
OWASP Foundation
Related Courses
-
Application Security for Developers
-
DevSecOps Fundamentals
-
Application Security for Developers and DevOps Professionals
-
When Molehill Vulnerabilities Become Mountainous Exploits
-
10 Steps to Agile Development without Compromising Enterprise Security
-
Static Code Analysis of Complex PHP Application Vulnerabilities
