Episode 19: "IDOR, APIs, and Passwords OH My!" ft. Jullian Gerhart

https://is1-ssl.mzstatic.com/image/thumb/Podcasts126/v4/7e/11/5f/7e115fd5-a59e-079f-6a86-d20416f425dd/mza_3343987066666809373.jpg/600x600bb.jpg

War Stories

Zac Davis

22 episodes

3 days ago

Zac Davis hosts War Stories, a podcast featuring stories from real life penetration testers. Zac covers their background, favorite tools, and stories that define their career. Sponsored by ⁠Cyber Coffee⁠. Real hackers need real caffeine. ⁠www.sevnx.com/shop

Technology

RSS

All content for War Stories is the property of Zac Davis and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/40259400/40259400-1707081381248-fb48c8527db19.jpg

Episode 19: "IDOR, APIs, and Passwords OH My!" ft. Jullian Gerhart

War Stories

46 minutes 23 seconds

1 year ago

Episode 19: "IDOR, APIs, and Passwords OH My!" ft. Jullian Gerhart

This week Zac sits down with Jullian Gerhart. Jullian is a Managing Consultant at NCC Group, which specializes in application security and application security pentesting. Jullian is also a contributor to the Application Defense Alliance (https://appdefensealliance.dev/) working to create a standardized framework for securing applications in the Google Play and Apple App Stores. Zac and Jullian discuss the current state of application security, their favorite web application security vulnerability (LOVE LIVE IDOR), and we get a great story from Jullian about compromising extremely sensitive information from an unsecured API.

Produced www.sevnx.com

CyberCoffee

drinkcybercoffee.com

Use promo code WAR10 to save 10%