Audio is streamed directly from the publisher (content.rss.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
This podcast from OWASP serves as a guide for secure code review, aiming to help organizations build self-defending applications. It outlines the importance of manual code review in identifying security and logical flaws, often surpassing automated tools and penetration testing alone. The guide covers various aspects of code review, including integrating it into the software development lifecycle, establishing risk assessment, understanding application architecture, utilizing static analysis, and addressing common vulnerabilities categorized under the OWASP Top Ten. Furthermore, it provides specific guidance and code examples for reviewing security controls related to authentication, session management, cross-site scripting, insecure direct object references, and more, across different programming languages and platforms, emphasizing proactive security practices and risk mitigation. OWASP serves as a guide for secure code review, aiming to help organizations build self-defending applications. It outlines the importance of manual code review in identifying security and logical flaws, often surpassing automated tools and penetration testing alone. The guide covers various aspects of code review, including integrating it into the software development lifecycle, establishing risk assessment, understanding application architecture, utilizing static analysis, and addressing common vulnerabilities categorized under the OWASP Top Ten. Furthermore, it provides specific guidance and code examples for reviewing security controls related to authentication, session management, cross-site scripting, insecure direct object references, and more, across different programming languages and platforms, emphasizing proactive security practices and risk mitigation.