Rephonic
Artwork for The Boring AppSec Podcast

The Boring AppSec Podcast

The Boring AppSec Podcast
Cybersecurity
Application Security
AI In Cybersecurity
Dryrun Security
Vulnerability Management
Generative AI
API Security
ACTO
Context Engineering
Security Culture
Software Development
Profit Security
Startup Culture
Entrepreneurship
Github
Policy Enforcement
Kubernetes
Appsec
Artificial Intelligence
AI Agents

In this podcast, we will talk about our experiences having worked at different companies - from startups to big enterprises, from tech companies to security companies, and from building side projects to building startups. We will talk about the good, the bad, and everything in between. So join us for some fun, some real, and some super hot takes about all things Security in the Boring AppSec Podca... more

4 ratings
PublishesTwice monthlyEpisodes37Founded2 years ago
Number of ListenersCategory
Technology

Listen to this Podcast

Listen on Apple PodcastsListen on SpotifyListen on CastboxListen on Podcast AddictListen on Pocket CastsListen on OvercastListen on YouTube MusicListen on RSS
Artwork for The Boring AppSec Podcast
 Guests Hosts Charts Talking Points

Latest Episodes

Ep 37: The Future of Security Testing in an AI-Driven World with Jason Haddix

In this episode, Jason Haddix (CEO of Arcanum Information Security and creator of the Bug Hunter’s Methodology) joins us to examine how AI is changing penetration testing and security research. He explains that while AI agents can automate reconnaiss... more

11 Mar 20261 hr 1 min

Ep 36: Discussing AI's Current State of Affairs

In this episode, we examine what is shifting in AI, AppSec, and product security and what remains fundamentally the same.

For years, application security has operated on a familiar model: siloed reviews, tool-driven findings, and periodic assessment... more

2 Mar 202650 min

Ep 35: Exploring Security After Determinism with Jens Ernstberger

In this episode, we sit down with Jens to explore why AI agents fundamentally break traditional security assumptions, from API keys and browser sessions to composability and access control.

Drawing parallels to DeFi exploits and smart contract failu... more

16 Feb 202649 min

Security at Scale in a Probabilistic World with Ankur Chakraborty

In this episode, Ankur Chakraborty discusses the evolution of AI security, emphasizing the importance of foundational security principles in the context of generative AI. He explores the challenges of scaling security measures in an era of rapid feat... more

2 Feb 202656 min

Key Facts

Accepts Guests
Contact Information
Podcast Host
Number of Listeners
Find out how many people listen to this podcast per episode and each month.

Similar Podcasts

People also subscribe to these shows.

Three Buddy Problem
Three Buddy ProblemSecurity Conversations

Recent Guests

Jens Ernstberger
Co-founder of Context.dev, focused on safe agent management and authorization
Context.dev
Episode: Ep 35: Exploring Security After Determinism with Jens Ernstberger
Ian Livingstone
CEO and co-founder of Keycard, a builder specializing in infrastructure abstraction.
Keycard
Episode: The Future of Identity in AI Agents with Ian Livingstone
Travis McPeak
Founder and security leader with extensive experience in developer security and automation.
Cursor
Episode: The Future of Developer Security with Travis McPeak
Aryaman Behera
Co-founder and CEO of Repello AI
Repello AI
Episode: The Attacker's Perspective on AI Security with Aryaman Behera
Ads Dawson
Staff AI security researcher at Dreadnode with over 13 years of experience in offensive security and web application pentesting, and a founding figure in AI security.
Dreadnode
Episode: The Future of Autonomous Red Teaming with Ads Dawson
Vineeth Sai
Generative AI security engineer and project lead for the OASP AI Vulnerability Scoring System
Meta
Episode: Navigating AI's New Security Landscape with Vineeth Sai
Harry Wetherald
Co-founder and CEO of Maze
Maze
Episode: Agentic AI: Transforming Vulnerability Management with Harry Wetherald
Ken Johnson
Co-founder and CTO of DryRun Security, an AI native code security company
DryRun Security
Episode: Ken Johnson
Casey Ellis
Founder of Bug Crowd and co-founder of disclose.io project
Bug Crowd
Episode: Casey Ellis

Hosts

Anshuman Bh
Co-host of the show, sharing insights and experiences from his diverse career in technology and application security, particularly focusing on practical approaches and opinions on AppSec topics.
Sandesh
Co-host of the podcast, contributing personal anecdotes and perspectives on the evolving field of security, influenced by his experience across various organizations.

Chart Rankings

How this podcast ranks in the Apple Podcasts, Spotify and YouTube charts.

Apple Podcasts
#78
Mexico/Technology
Apple Podcasts
#110
India/Technology

Talking Points

Recent interactions between the hosts and their guests.

The Future of Identity in AI Agents with Ian Livingstone
Q: How does Keycard technically prevent a confused deputy attack when an agent is tricked into calling a destructive tool?
Keycard helps to identify and authenticate tools and agents, applying access controls to prevent unauthorized actions.
The Future of Identity in AI Agents with Ian Livingstone
Q: How do you think about verifying the agent intent in an agent tech sort of workflow?
We need to step back and talk about the three pillars of problems when it comes to agentic security, focusing on supply chain problems, Denny and Axis problem, and data security challenges.
Architecting AI Security: Standards and Agentic Systems with Ken Huang
Q: What should security professionals do to contribute to AI security?
They should engage in research-oriented learning, collaborate with groups like Owasp, and consistently code or write about their findings.
Scaling Product Security In The AI Era with Teja Myneedu
Q: What are some novel threats introduced by integrating LLMs directly into a product?
Novel threats include prompt injection and the complexities of authorization when using agents as decision-making tools, which create new risks in the trust model.
Scaling Product Security In The AI Era with Teja Myneedu
Q: What was the single most surprising or counterintuitive lesson that you've learned about what makes a security program successful?
The biggest lesson I've learned is that security by obscurity isn't completely harmful; sometimes you need to make incremental improvements rather than strive for perfection.

Audience Metrics

Listeners, social reach, demographics and more for this podcast.

Listeners per Episode
Gender Skew
Location
Interests
Professions
Age Range
Household Income
Social Media Reach

Frequently Asked Questions About The Boring AppSec Podcast

What is The Boring AppSec Podcast about and what kind of topics does it cover?

This series explores the intersection of application security and technology, featuring discussions that highlight both the challenges and innovations in the field. Episodes often include insights from industry experts, delving into topics such as AI security, vulnerability management, and the evolution of cybersecurity practices. The unique blend of personal stories from hosts who have worked across diverse organizations—from startups to large enterprises—provides listeners with both relatable experiences and practical advice on navigating the complexities of security. With accessible language and engaging narratives, the content aims to demystify intricate security concepts while enabling a better understanding of current industry standar... more

Where can I find podcast stats for The Boring AppSec Podcast?

Rephonic provides a wide range of podcast stats for The Boring AppSec Podcast. We scanned the web and collated all of the information that we could find in our comprehensive podcast database. See how many people listen to The Boring AppSec Podcast and access YouTube viewership numbers, download stats, audience demographics, chart rankings, ratings, reviews and more.

How many listeners does The Boring AppSec Podcast get?

Rephonic provides a full set of podcast information for three million podcasts, including the number of listeners. View further listenership figures for The Boring AppSec Podcast, including podcast download numbers and subscriber numbers, so you can make better decisions about which podcasts to sponsor or be a guest on. You will need to upgrade your account to access this premium data.

What are the audience demographics for The Boring AppSec Podcast?

Rephonic provides comprehensive predictive audience data for The Boring AppSec Podcast, including gender skew, age, country, political leaning, income, professions, education level, and interests. You can access these listener demographics by upgrading your account.

How many subscribers and views does The Boring AppSec Podcast have?

To see how many followers or subscribers The Boring AppSec Podcast has on Spotify and other platforms such as Castbox and Podcast Addict, simply upgrade your account. You'll also find viewership figures for their YouTube channel if they have one.

Which podcasts are similar to The Boring AppSec Podcast?

These podcasts share a similar audience with The Boring AppSec Podcast:

1. Three Buddy Problem

How many episodes of The Boring AppSec Podcast are there?

The Boring AppSec Podcast launched 2 years ago and published 37 episodes to date. You can find more information about this podcast including rankings, audience demographics and engagement in our podcast database.

How do I contact The Boring AppSec Podcast?

Our systems regularly scour the web to find email addresses and social media links for this podcast. We scanned the web and collated all of the contact information that we could find in our podcast database. But in the unlikely event that you can't find what you're looking for, our concierge service lets you request our research team to source better contacts for you.

Where can I see ratings and reviews for The Boring AppSec Podcast?

Rephonic pulls ratings and reviews for The Boring AppSec Podcast from multiple sources, including Spotify, Apple Podcasts, Castbox, and Podcast Addict.

View all the reviews in one place instead of visiting each platform individually and use this information to decide if a show is worth pitching or not.

How do I access podcast episode transcripts for The Boring AppSec Podcast?

Rephonic provides full transcripts for episodes of The Boring AppSec Podcast. Search within each transcript for your keywords, whether they be topics, brands or people, and figure out if it's worth pitching as a guest or sponsor. You can even set-up alerts to get notified when your keywords are mentioned.

What guests have appeared on The Boring AppSec Podcast?

Recent guests on The Boring AppSec Podcast include:

1. Jens Ernstberger
2. Ian Livingstone
3. Travis McPeak
4. Aryaman Behera
5. Ads Dawson
6. Vineeth Sai
7. Harry Wetherald
8. Ken Johnson

To view more recent guests and their details, simply upgrade your Rephonic account. You'll also get access to a typical guest profile to help you decide if the show is worth pitching.

Find and pitch the right podcasts

We help savvy brands, marketers and PR professionals to find the right podcasts for any topic or niche. Get the data and contacts you need to pitch podcasts at scale and turn listeners into customers.
Try it free for 7 days