Go offline with the Player FM app!
Podcasts Worth a Listen
SPONSORED


1 Battle Camp S1: Reality Rivalries with Dana Moon & QT 1:00:36
Javan Rasokat and Andra Lezza -- When Chatbots Go Rogue - Lessons Learned from Building and Defending LLM Applications
Manage episode 472043079 series 2408745
Andra Lezza and Javan Rasokat discuss the complexities of securing AI and LLM applications. With years of experience in Application Security (AppSec), Andra and Javan share their journey and lessons from their DEF CON talk on building and defending LLMs. They explore critical vulnerabilities, prompt injection, hallucinations, and the importance of data security. This discussion sheds light on the evolving landscape of AI and LLM security, offering practical advice for developers and security professionals alike.
Javan’s blog article: Adversarial Misuse of Generative AI
Javan’s recommendation for the TLDR newsletter
Andra's book recommendation: The Cuckoo’s Egg by Cliff Stoll
FOLLOW OUR SOCIAL MEDIA:
➜Twitter: @AppSecPodcast
➜LinkedIn: The Application Security Podcast
➜YouTube: https://www.youtube.com/@ApplicationSecurityPodcast
Thanks for Listening!
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
309 episodes
Manage episode 472043079 series 2408745
Andra Lezza and Javan Rasokat discuss the complexities of securing AI and LLM applications. With years of experience in Application Security (AppSec), Andra and Javan share their journey and lessons from their DEF CON talk on building and defending LLMs. They explore critical vulnerabilities, prompt injection, hallucinations, and the importance of data security. This discussion sheds light on the evolving landscape of AI and LLM security, offering practical advice for developers and security professionals alike.
Javan’s blog article: Adversarial Misuse of Generative AI
Javan’s recommendation for the TLDR newsletter
Andra's book recommendation: The Cuckoo’s Egg by Cliff Stoll
FOLLOW OUR SOCIAL MEDIA:
➜Twitter: @AppSecPodcast
➜LinkedIn: The Application Security Podcast
➜YouTube: https://www.youtube.com/@ApplicationSecurityPodcast
Thanks for Listening!
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
309 episodes
All episodes
×
1 Javan Rasokat and Andra Lezza -- When Chatbots Go Rogue - Lessons Learned from Building and Defending LLM Applications 47:31

1 Jim Routh -- The CISO Transition to the rest of life 49:36

1 Henrik Plate -- OWASP Top 10 Open Source Risks 38:26

1 Tanya Janca -- A Secure SDLC from a Developer's Perspective 48:54

1 Mehran Koushkebaghi -- Security as a Systemic Concern: How to develop Anti-Requirements 45:08

1 Kalyani Pawar -- Shaping AppSec at Startups 39:52


1 MO Sadek -- Building an AppSec Program from Scratch 48:50

1 Brett Crawley -- Threat Modeling Gameplay with EoP 45:28

1 Matin Mavaddat - Understanding Security as a Systemic Concern: The Role of Anti-Requirements 50:20


1 François Proulx - Arbitrary Code Execution 0-day in Build Pipeline of Popular Open Source Packages 45:31

1 Steve Wilson -- The Developer's Playbook for Large Language Model Security: Building Secure AI Applications 36:32

1 Jeff Williams -- Application Detection & Response (ADR) 51:28

1 Phillip Wylie -- Pen Testing from Somebody who Knows about Pen Testing 52:08

1 Steve Springett -- Software and System Transparency 48:13

1 Irfaan Santoe -- The Power of Strategy in AppSec 40:14

1 Andrew Van Der Stock -- The New OWASP Top Ten 51:51

1 Derek Fisher -- Hiring in Cyber/AppSec 1:01:45


1 Jahanzeb Farooq -- Launching and executing an AppSec program 49:44

1 David Quisenberry -- Building Security, People, and Programs 56:54

1 Matt Rose -- Software Supply Chain Security Means Many Different Things to Different People 46:14

1 James Berthoty -- Is DAST Dead? And the future of API security 44:56

1 Mark Curphey and Simon Bennetts -- Riding the Coat Tails of ZAP, without Open Source Funding 42:32


1 Dustin Lehr -- Culture Change through Champions and Gamification 45:10

1 Francesco Cipollone -- Application Security Posture Management and the Power of Working with the Business 38:11

1 Mukund Sarma -- Developer Tools that Solve Security Problems 46:32

1 Meghan Jacquot -- Assumed Breach Red Team Engagements for AppSec 40:55
Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.