show episodes
 
Test & Code is a weekly podcast hosted by Brian Okken. The show covers a wide array of topics including software engineering, development, testing, Python programming, and many related topics. When we get into the implementation specifics, that's usually Python, such as Python packaging, tox, pytest, and unittest. However, well over half of the topics are language agnostic, such as data science, DevOps, TDD, public speaking, mentoring, feature testing, NoSQL databases, end to end testing, au ...
 
The MongoDB Podcast features guest interviews including developers, startups, and founders with Developer Advocates Nic Raboy and Michael Lynn. Learn a bit about new and emerging technology, how to use the various MongoDB products and best practices, how organizations are using MongoDB, and what lead them to choose MongoDB over other databases.
 
Developer Advocate, Matthew Groves, meets with top developers and database leaders to share everything you need to know when it comes to NoSQL databases. Learn about the latest trends in web, mobile, IoT, and game development and how companies are including NoSQL databases into their technology stack. Hear tips and tricks when it comes to using NoSQL databases as well as success stories from people all around the world. This podcast is sponsored by the open source NoSQL database company, Cou ...
 
The No Fluff Just Stuff (NFJS) Software Symposium Tour has delivered over 400 events with over 65,000 attendees. NFJS speakers are well-known developers, authors, and project leaders from the software development community. Join us for news and discussion around software development. Current topics include: Java, JavaScript, Scala, Groovy, Clojure, Cloud, Docker, Software Architecture, HTML 5, CSS, NoSQL, Spring, and other development technologies.
 
The Distributed Data Podcast is your weekly source for the latest news and technical expertise to help you succeed in building large-scale distributed systems. Brought to you by the Developer Advocate team, we go in-depth with DataStax engineers and special guests from the broader data community. New episodes each Tuesday.
 
Software Engineers Wes Moncrief and Kevin Li discuss aspects of the system design interview, as well as related topics in designing large and interesting software architectures. If you're new here, I'd suggest starting with the episode "Facebook Timeline Interview". I'll also note that our first few episodes had lower quality audio than our subsequent episodes.We'd love to hear any listener feedback - email us at thesystemdesignpodcast@gmail.com
 
In today’s rapidly-changing technological environment, data offers new ways for business to improve or even completely transform business models. But with this rapid change, it’s difficult to separate hype from reality and determine what practical steps can show value in real-world implementations. In this podcast series, we set out to ask, how is Data transforming business? Expect to hear opinions from leading tech vendors and the people who rely on data for day-to-day business such as Barc ...
 
This podcast talks about how to program in Java; not your tipical system.out.println("Hello world"), but more like real issues, such as O/R setups, threading, getting certain components on the screen or troubleshooting tips and tricks in general. The format is as a podcast so that you can subscribe to it, and then take it with you and listen to it on your way to work (or on your way home), and learn a little bit more (or reinforce what you knew) from it.
 
In this podcast, hosts Vikram Ramakrishnan and Faizaan Shamsi, partners at the software consultancy QuantLayer, talk to investors and builders of the cryptocurrency arena. We discuss how industry participants think about crypto assets, how they uncover fraud in the market, and which technologies will turn the budding, nascent crypto space into the revolutionary powerhouse early market participants had hoped for.
 
Loading …
show series
 
Another short episode this week covering graphql attacks, a couple NoSQL injections, a few misconfigurations and a cool attack to reset monotonic counters on a Mifare card. [00:01:25] From CTFs to the Real World https://dayzerosec.com/tags/ctf-to-real-world/ [00:02:50] [GitHub] Exploits and Malware Policy Updates https://github.com/github/site-poli…
 
Iterative processes that include writing test code and production code together, such as TDD, help make coding fun. All of us that care about developing quality code with the help of testing can learn from each other, regardless of programming language. Today we step outside our normal Python comfort zone and talk with Gio about TDD in Swift. Gio L…
 
In episode 61, Robert Graham, the creator of masscan, joins us to talk about running internet wide port scanning the right way. My 3 main takeaways were 1) How to use the banner function correctly 2) How to figure out the fastest rate you can send packets and 3) The most common mistakes Rob sees when folks run masscan For more information, includin…
 
Enabling access control on a MongoDB deployment enforces authentication, requiring users to identify themselves. When accessing a MongoDB deployment that has access control enabled, users can only perform actions as determined by their roles. In this episode, we're joined by Matt Javaly, Curriculum Software Engineer at MongoDB University who talks …
 
pre-commit started as a framework for running linters and code formatters during git actions via git hooks. It's grown and expanded and now supports an extensive list of languages and actions and manual running of actions. But even at it's core, it's great for letting computers nitpick about whitespace and formatting, so that code reviews can focus…
 
In episode 60, we chat with AJ Yawn about AWS security, compliance in the cloud, choosing an auditor and more. My 3 main takeaways were 1) How to make compliance not suck 2) How to automate security within an AWS environment and 3) What shared responsibility means when managing cloud infrastructure For more information, including the show notes che…
 
Flake8 is a command-line tool for linting Python projects. By default, it includes lint checks provided Pyflakes, pycodestyle, and McCabe It's also a platform, and allows plugins to extend the checks. Flake8 will run third-party extensions if they are found and installed. But what does all of that mean? Anthony Sottile is a maintainer of flake8 and…
 
In episode 59, Tim Adams joins us this week to talk DNS security, Zero Trust, TLD filtering and more. My 3 main takeaways were 1) How to integrate DNS Response Policy Zones, or RPZs, to prevent access to known bad domains 2) How aged a domain should be, sort of like wine, before trusting it and 3) DNS Tunneling, how to identify it and stop it For m…
 
While organisations are gradually becoming more data-driven, there are still organisations that rely solely on instinct. According to Talend's 2021 Data Health Survey, a whopping 36% of executives are still making gut based decisions, a method which has proved time and time again to be both inefficient and unpredictable. One of the contributing fac…
 
Tim Ottinger has four questions that work great in many situations, from doing homework, to cooking, to writing code, to entire software projects. They are actually awesome questions to ask during a software project. We discuss the questions, where they came from, and look at some uses in software. The questions: What is it that needs to be done? W…
 
Ben Dowling hangs out this week to talk about IP Geolocation. My 3 main takeaways were 1) how they determine where an IP address is actually located 2) how they deal with massive amounts of crowdsourced geodata 3) how they attribute IP addresses to specific companies For more information, including the show notes check out: https://breachsense.io/p…
 
Tapani Otala is the VP of Engineering at Tidepool, an open source, not-for-profit company focused on liberating data from diabetes devices, supporting researchers, and providing great, free software to people with diabetes and their care teams. He joins us today to share details of the Tidepool solution, how it enables enhanced visibility into Diab…
 
You need tests for your web app. And it has a database. What do you do with the database during testing? Should you use the real thing? or mock it? Jeff Triplett says don't mock it. In this episode, we talk with Jeff about testing web applications, specifically Django apps, and of course talk about the downsides of database mocking. Special Guest: …
 
In episode 56, Assaf Dahan joins us to talk about ransomware, monetization techniques, attribution and getting started as a malware researcher. My 3 main takeaways were 1) why the double extortion method is so popular 2) how long it takes to exfiltrate our data 3) the most common initial attack vectors used to infect targets For more information, i…
 
Paul Done joins us today to talk in depth about the MongoDB Aggregation Framework and a new book he's written on the subject. MongoDB helps developers unlock hidden value in data and Paul has great experience helping developers take this even further leveraging the MongoDB Aggregation framework. This new, free book is available online and represent…
 
A shorter episode, but some really cool vulns none-the-less, from mitigation bypassing on D-Link routers, to a new set of WiFi protocol design flaws. [00:01:14] Security Vulnerability Detection Using Deep Learning Natural Language Processing https://arxiv.org/abs/2105.02388v1 https://samate.nist.gov/SARD/ [00:08:12] Stealing secrets with Rust Macro…
 
Playwright is an end to end automated testing framework for web apps with Python support and even a pytest plugin. Special Guest: Ryan Howard. Sponsored By: PyCharm Professional: Try PyCharm Pro for 4 months and learn how PyCharm will save you time. Promo Code: TESTANDCODE21 Support Test & Code : Python Testing Links: Playwright for Python Why Play…
 
In episode 56, Assaf Dahan joins us to talk about ransomware, monetization techniques, attribution and getting started as a malware researcher. My 3 main takeaways were 1) why the double extortion method is so popular 2) how long it takes to exfiltrate our data 3) the most common initial attack vectors used to infect targets For more information, i…
 
Kicking off the week with some awesome vulns, an "almost" padding oracle in Azure Functions, a race-condition in AWS Cognito, some sound engine bugs, and a Foxit Reader Use-after-free. [00:00:52] Arbitrary Code Execution in the Universal Turing Machine [CVE-2021-32471] Our discussion of this topic was probably a bit premature and there does seem to…
 
You'll run it everywhere there's a production system. Some kind of Metrics collector like Statsd or InfluxDB. They work like magic, reporting on the health of your application. but how does it really happen? We dive in on how these Application Performance Management tools work and how do they really "see into" your application. We demistify all thi…
 
I always learn a lot when I talk to Brett, and this episode is no exception. We talk about the packaging workflow, tools, changes, pyproject.toml, flit, setuptools, and so much more. I hope you learn as much as I did in this great discussion. Special Guest: Brett Cannon. Sponsored By: Datadog: Modern end-to-end monitoring & security. See inside any…
 
This week Jeff Foley hangs all to talk about asset discovery using amass, recon methodologies, hashcat style brute forcing vs. wordlists, extending functionality via the embedded Lua engine and more. My 3 main takeaways were 1) how to find assets that don’t share a domain name using JARM 2) how they made scanning faster by essentially lowering the …
 
With Thunkable, anyone can easily build beautiful apps, program powerful functionality with drag & drop blocks, and upload apps to the Google Play Store and Apple's App Store. In this episode, we're talking with Wei Li, and Jose Dominguez of Thunkable to learn about the platform and how they're leveraging MongoDB to help them manage millions of use…
 
Big episode this week, with a lot of discussion about CTFs, kernel drama, and Github's exploit policy. Then some really interesting exploit strategies on Tesla and Netgear, along with some simple, yet deadly issues in Wordpress and Composer. [00:00:32] An Update on the UMN Affair https://lwn.net/SubscriberLink/854645/334317047842b6c3/ https://www-u…
 
While it has taken the lead position in infrastructure management, managing data on Kubernetes is a complex subject for many in the industry. Matching users expectations for container-orchestration systems against the needs they have for their databases have unveiled a multitude of unexpected issues. In recent years, storing data within Kubernetes …
 
This week Jim Manico joins the show to talk about Cross Site Scripting, CSPs, strict dynamic, trusted types, SameSite cookies, NIST SP 800-63, password shucking and more. My 3 main takeaways were 1) how to do input validation correctly 2) why using nonces in your CSP is safer than creating an allowed list policy and 3) the right way to handle passw…
 
Loading …

Quick Reference Guide

Copyright 2021 | Sitemap | Privacy Policy | Terms of Service
Google login Twitter login Classic login