Best Mark And Shashank Podcasts (2025)

1
The Allplane Podcast #133: large electric aircraft with Daniel Rosen Jacobson, co-founder of Elysian Aircraft

Play Pause

2d ago

—

What is building a large scale battery-powered aircraft was more feasible than originally thought? Our guest on this episode of the podcast, Daniel Rosen Jacobson co-founder and co-CEO of Elysian Aircraft, has come on the podcast to explain how asking the right questions and conducting scientific research laid the groundwork for the truly ambitious…

1
Researching and Remediating RCEs via GitHub Actions - Bar Kaduri, Roi Nisimi - ASW #355 1:08:08

3d ago1:08:08

1:08:08

Pull requests are a core part of collaboration, whether in open or closed source. GitHub has documented some of the security consequences of misconfiguring how PRs can trigger actions. But what happens when repo owners don't read the docs? Bar Kaduri and Roi Nisimi walk through their experience in reading docs, finding vulns, demonstrating exploits…

1
Researching and Remediating RCEs via GitHub Actions - Bar Kaduri, Roi Nisimi - ASW #355 1:08:08

3d ago1:08:08

1:08:08

Pull requests are a core part of collaboration, whether in open or closed source. GitHub has documented some of the security consequences of misconfiguring how PRs can trigger actions. But what happens when repo owners don't read the docs? Bar Kaduri and Roi Nisimi walk through their experience in reading docs, finding vulns, demonstrating exploits…

1
Neo Arrives: Tele-Ops Today, AGI Tomorrow? 1:01:22

7d ago1:01:22

1:01:22

From a tiny island in Seychelles to the heartland of Ohio, we unpack a wild week in AI. First up: 1X’s “Neo” humanoid—$20k to buy or $500/month to rent—promising laundry, dishes, and errands soon…with a lot of teleoperation today. We debate whether tele-ops is a feature (not a bug), who it employs, and how quickly autonomy could follow. Then we zoo…

1
Quantum Computing Isn't A Threat To Blockchains - Yet - Sandy Carielli, Martha Bennett - ASW #354 58:52

10d ago58:52

58:52

The post quantum encryption migration is going to be a challenge, but how much of a challenge? There are several reasons why it is different from every other protocol and cypher iteration in the past. Is today's hardware up to the task? Is it just swapping out a library, or is there more to it? What is the extent of software, systems, and architect…

1
Quantum Computing Isn't A Threat To Blockchains - Yet - Martha Bennett, Sandy Carielli - ASW #354 58:52

10d ago58:52

58:52

The post quantum encryption migration is going to be a challenge, but how much of a challenge? There are several reasons why it is different from every other protocol and cypher iteration in the past. Is today's hardware up to the task? Is it just swapping out a library, or is there more to it? What is the extent of software, systems, and architect…

1
Reacting to Ransomware and Setting Secure Defaults - Rob Allen - ASW #353 1:03:39

17d ago1:03:39

1:03:39

Ransomware attacks typically don't care about memory safety and dependency scanning, they often target old, unpatched vulns and too often they succeed. Rob Allen shares some of the biggest cases he's seen, what they have in common, and what appsec teams could do better to help them. Too much software still requires custom configuration to make it m…

1
Reacting to Ransomware and Setting Secure Defaults - Rob Allen - ASW #353 1:03:39

17d ago1:03:39

1:03:39

Ransomware attacks typically don't care about memory safety and dependency scanning, they often target old, unpatched vulns and too often they succeed. Rob Allen shares some of the biggest cases he's seen, what they have in common, and what appsec teams could do better to help them. Too much software still requires custom configuration to make it m…

1
Inside the OWASP GenAI Security Project - Steve Wilson - ASW #352 1:07:32

23d ago1:07:32

1:07:32

Interest and participation in the OWASP GenAI Security Project has exploded over the last two years. Steve Wilson explains why it was important for the project to grow beyond just a Top Ten list and address more audiences than just developers. He also talks about how the growth of AI Agents influences the areas that appsec teams need to focus on. W…

1
Inside the OWASP GenAI Security Project - Steve Wilson - ASW #352 1:07:32

23d ago1:07:32

1:07:32

Interest and participation in the OWASP GenAI Security Project has exploded over the last two years. Steve Wilson explains why it was important for the project to grow beyond just a Top Ten list and address more audiences than just developers. He also talks about how the growth of AI Agents influences the areas that appsec teams need to focus on. W…

1
The Allplane Podcast #132: Airships w/ Michael Kendrick, Mark Dorey & James Dexter (Straightline Aviation)

25d ago

—

Is the airship ready for a big comeback? This is not some sort of retro-futurist sci-fi scenario, since there are a handful of companies working to develop a new generation modern-day iteration of this iconic type of aircraft. But, in fact, airships and, more generally, lighter than air aircraft never fully went away. The US Navy, for example, oper…

1
Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351 53:52

1M ago53:52

53:52

1
Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351 53:52

1M ago53:52

53:52

1
Sora 2, Claude 4.5 Sonnet, and the AI Browser Wars: Is NVIDIA Unstoppable? 1:13:05

1M ago1:13:05

1:13:05

By Mark and Shashank

1
Changing the Vuln Conversation from Volume to Remediation - Francesco Cipollone - ASW #350 1:14:32

1M ago1:14:32

1:14:32

Dealing with vulns tends to be a discussion about prioritization. After all, there a tons of CVEs and dependencies with known vulns. It's important to figure out how to present developers with useful vuln info that doesn't overwhelm them. Francesco Cipollone shares how to redirect that discussion to focus on remediation and how to incorporate LLMs …

1
Changing the Vuln Conversation from Volume to Remediation - Francesco Cipollone - ASW #350 1:14:32

1M ago1:14:32

1:14:32

Dealing with vulns tends to be a discussion about prioritization. After all, there a tons of CVEs and dependencies with known vulns. It's important to figure out how to present developers with useful vuln info that doesn't overwhelm them. Francesco Cipollone shares how to redirect that discussion to focus on remediation and how to incorporate LLMs …

1
Design Errors in Entra ID, Design Defenses in iOS, Design Difficulties in DeepSeek - ASW #349 58:43

1M ago58:43

58:43

In the news, Microsoft encounters a new cascade of avoidable errors with Entra ID, Apple improves iOS with hardware-backed memory safety, DeepSeek demonstrates the difficulty in reviewing models, curl reduces risk by eliminating code, preserving the context of code reviews, and more! Visit https://www.securityweekly.com/asw for all the latest episo…

1
Design Errors in Entra ID, Design Defenses in iOS, Design Difficulties in DeepSeek - ASW #349 58:43

1M ago58:43

58:43

In the news, Microsoft encounters a new cascade of avoidable errors with Entra ID, Apple improves iOS with hardware-backed memory safety, DeepSeek demonstrates the difficulty in reviewing models, curl reduces risk by eliminating code, preserving the context of code reviews, and more! Show Notes: https://securityweekly.com/asw-349…

1
Can AI reverse DNA Damage? 1:13:37

2M ago1:13:37

1:13:37

Ask a question on our Youtube Channel: https://www.youtube.com/@GenerativeAIMeetup Mark's Travel Vlog: https://www.youtube.com/@kumajourney11 Mark's Personal Youtube Channel: https://www.youtube.com/@markkuczmarski896 Attend a live event: https://genaimeetup.com/ Shashank Linked In: https://www.linkedin.com/in/shashu10/ In this episode of the Gener…

1
The Allplane Podcast #131 with Megha Bhatia, EVE Air Mobility Chief Commercial Officer

2M ago

—

Among the top contenders in the eVTOL space, EVE Air Mobility stands out—not because it's closer than others to entering service or because it generates more media headlines. In fact, what sets EVE aside from the pack is the backing of one of the world’s most successful and technologically advanced aircraft makers, Embraer, which has opted to move …

1
How OWASP's GenAI Security Project keeps up with the pace of AI/Agentic changes - Scott Clinton - ASW #348 1:08:00

2M ago1:08:00

1:08:00

This week, we chat with Scott Clinton, board member and co-chain of the OWASP GenAI Security Project. This project has become a massive organization within OWASP with hundreds of volunteers and thousands of contributors. This team has been cranking out new tools, reports and guidance for practitioners month after month for over a year now. We start…

1
How OWASP's GenAI Security Project keeps up with the pace of AI/Agentic changes - Scott Clinton - ASW #348 1:08:00

2M ago1:08:00

1:08:00

This week, we chat with Scott Clinton, board member and co-chain of the OWASP GenAI Security Project. This project has become a massive organization within OWASP with hundreds of volunteers and thousands of contributors. This team has been cranking out new tools, reports and guidance for practitioners month after month for over a year now. We start…

1
Limitations and Liabilities of LLM Coding - Seemant Sehgal, Ted Shorter - ASW #347 1:17:09

2M ago1:17:09

1:17:09

Up first, the ASW news of the week. At Black Hat 2025, Doug White interviews Ted Shorter, CTO of Keyfactor, about the quantum revolution already knocking on cybersecurity's door. They discuss the terrifying reality of quantum computing's power to break RSA and ECC encryption—the very foundations of modern digital life. With 2030 set as the deadline…

1
Limitations and Liabilities of LLM Coding - Ted Shorter, Seemant Sehgal - ASW #347 1:17:09

2M ago1:17:09

1:17:09

Up first, the ASW news of the week. At Black Hat 2025, Doug White interviews Ted Shorter, CTO of Keyfactor, about the quantum revolution already knocking on cybersecurity's door. They discuss the terrifying reality of quantum computing's power to break RSA and ECC encryption—the very foundations of modern digital life. With 2030 set as the deadline…

1
The Allplane Podcast #130 with Mukund Karanjikar, CleanJoule founder and CEO

2M ago

—

The world badly needs sustainable aviation fuel (SAF) and, fortunately, there is not shortage of entrepreneurs willing to take on the challenge to scale up production. Now, are all SAF pathways the same? Of course not. Today on the podcast we will talk with Mukund Karanjikar, founder and CEO of CleanJoule, a SAF startup based in Utah that is develo…

1
AI, APIs, and the Next Cyber Battleground: Black Hat 2025 - Michael Callahan, Idan Plotnik, Josh Lemos, Chris Boehm - ASW #346 1:08:11

2M ago1:08:11

1:08:11

In this must-see BlackHat 2025 interview, Doug White sits down with Michael Callahan, CMO at Salt Security, for a high-stakes conversation about Agentic AI, Model Context Protocol (MCP) servers, and the massive API security risks reshaping the cyber landscape. Broadcast live from the CyberRisk TV studio at Mandalay Bay, Las Vegas, the discussion pu…

1
AI, APIs, and the Next Cyber Battleground: Black Hat 2025 - Chris Boehm, Idan Plotnik, Josh Lemos, Michael Callahan - ASW #346 1:08:11

2M ago1:08:11

1:08:11

In this must-see BlackHat 2025 interview, Doug White sits down with Michael Callahan, CMO at Salt Security, for a high-stakes conversation about Agentic AI, Model Context Protocol (MCP) servers, and the massive API security risks reshaping the cyber landscape. Broadcast live from the CyberRisk TV studio at Mandalay Bay, Las Vegas, the discussion pu…

1
The Allplane Podcast #129 with Shashank Nigam (Simpliflying / Sustainability in the Air)

2M ago

—

In this episode of the we welcome Shashank Nigam, who, together with Dirk Singer, has co-authored the Sustainability in the Air book series, two volumes that cover many of the most prominent entrepreneurs, companies and projects striving to make air travel cleaner and more sustainable. Now, Shashank is no newcomer to the aviation industry. He is al…

1
How to Vibe Code 57:44

2M ago57:44

57:44

Ask a question on our Youtube Channel: https://www.youtube.com/@GenerativeAIMeetup Mark's Travel Vlog: https://www.youtube.com/@kumajourney11 Mark's Personal Youtube Channel: https://www.youtube.com/@markkuczmarski896 Attend a live event: https://genaimeetup.com/ Shashank Linked In: https://www.linkedin.com/in/shashu10/ Mark Linked in: https://www.…

1
Translating Security Regulations into Secure Projects - Roman Zhukov, Emily Fox - ASW #345 1:13:31

2M ago1:13:31

1:13:31

The EU Cyber Resilience Act joins the long list of regulations intended to improve the security of software delivered to users. Emily Fox and Roman Zhukov share their experience education regulators on open source software and educating open source projects on security. They talk about creating a baseline for security that addresses technical items…

1
Translating Security Regulations into Secure Projects - Emily Fox, Roman Zhukov - ASW #345 1:13:31

2M ago1:13:31

1:13:31

The EU Cyber Resilience Act joins the long list of regulations intended to improve the security of software delivered to users. Emily Fox and Roman Zhukov share their experience education regulators on open source software and educating open source projects on security. They talk about creating a baseline for security that addresses technical items…

1
GPT-5: One Model to Rule Them All? Consolidation, Comparisons, and AI's Educational Edge 1:05:07

3M ago1:05:07

1:05:07

Ask a question on our Youtube Channel: https://www.youtube.com/@GenerativeAIMeetup Mark's Travel Vlog: https://www.youtube.com/@kumajourney11 Mark's Personal Youtube Channel: https://www.youtube.com/@markkuczmarski896 Attend a live event: https://genaimeetup.com/ Shashank Linked In: https://www.linkedin.com/in/shashu10/ Mark Linked in: https://www.…

1
Managing the Minimization of a Container Attack Surface - Neil Carpenter - ASW #344 1:08:17

3M ago1:08:17

1:08:17

A smaller attack surface should lead to a smaller list of CVEs to track, which in turn should lead to a smaller set of vulns that you should care about. But in practice, keeping something like a container image small has a lot of challenges in terms of what should be considered minimal. Neil Carpenter shares advice and anecdotes on what it takes to…

1
Managing the Minimization of a Container Attack Surface - Neil Carpenter - ASW #344 1:08:17

3M ago1:08:17

1:08:17

A smaller attack surface should lead to a smaller list of CVEs to track, which in turn should lead to a smaller set of vulns that you should care about. But in practice, keeping something like a container image small has a lot of challenges in terms of what should be considered minimal. Neil Carpenter shares advice and anecdotes on what it takes to…

1
The Future of Supply Chain Security - Janet Worthington - ASW #343 42:13

3M ago42:13

42:13

Open source software is a massive contribution that provides everything from foundational frameworks to tiny single-purpose libraries. We walk through the dimensions of trust and provenance in the software supply chain with Janet Worthington. And we discuss how even with new code generated by LLMs and new terms like slopsquatting, a lot of the most…

1
The Future of Supply Chain Security - Janet Worthington - ASW #343 42:13

3M ago42:13

42:13

Open source software is a massive contribution that provides everything from foundational frameworks to tiny single-purpose libraries. We walk through the dimensions of trust and provenance in the software supply chain with Janet Worthington. And we discuss how even with new code generated by LLMs and new terms like slopsquatting, a lot of the most…

1
AI's Explosive Week: Claude 4.1, OpenAI's Open-Source Return, and Google's Mind-Blowing World Models 1:12:20

3M ago1:12:20

1:12:20

Youtube Channel: https://www.youtube.com/@GenerativeAIMeetup Mark's Travel Channel: https://www.youtube.com/@kumajourney11 Mark's Channel: https://www.youtube.com/@markkuczmarski896 Gen AI Meetup: https://genaimeetup.com/ Shashank Linked In: https://www.linkedin.com/in/shashu10/ Mark Linked in: https://www.linkedin.com/in/markkuczmarski/ Join hosts…

1
Uniting software development and application security - Will Vandevanter, Jonathan Schneider - ASW #342 58:07

3M ago58:07

58:07

Maintaining code is a lot more than keeping dependencies up to date. It involved everything from keeping old code running to changing frameworks to even changing implementation languages. Jonathan Schneider talks about the engineering considerations of refactoring and rewriting code, why code maintenance is important to appsec, and how to build con…

1
Uniting software development and application security - Jonathan Schneider, Will Vandevanter - ASW #342 58:07

3M ago58:07

58:07

Maintaining code is a lot more than keeping dependencies up to date. It involved everything from keeping old code running to changing frameworks to even changing implementation languages. Jonathan Schneider talks about the engineering considerations of refactoring and rewriting code, why code maintenance is important to appsec, and how to build con…

1
How Product-Led Security Leads to Paved Roads - Julia Knecht - ASW #341 1:04:11

3M ago1:04:11

1:04:11

A successful strategy in appsec is to build platforms with defaults and designs that ease the burden of security choices for developers. But there's an important difference between expecting (or requiring!) developers to use a platform and building a platform that developers embrace. Julia Knecht shares her experience in building platforms with an …

1
How Product-Led Security Leads to Paved Roads - Julia Knecht - ASW #341 1:04:11

3M ago1:04:11

1:04:11

A successful strategy in appsec is to build platforms with defaults and designs that ease the burden of security choices for developers. But there's an important difference between expecting (or requiring!) developers to use a platform and building a platform that developers embrace. Julia Knecht shares her experience in building platforms with an …

1
The Allplane Podcast #128 with Otto Aviation COO Scott Drennan

4M ago

—

In this episode of the podcast we’ll explore one of the most truly disruptive clean-sheet aircraft projects currently underway. Scott Drennan is President and Chief Operations Officer (COO) of Otto Aviation, a US startup aircraft maker that is developing an ultra-efficient executive jet. The Phantom 3500 uses a teardrop-shaped design to take full a…

1
Rise of Compromised LLMs - Sohrob Kazerounian - ASW #340 1:06:35

4M ago1:06:35

1:06:35

AI is more than LLMs. Machine learning algorithms have been part of infosec solutions for a long time. For appsec practitioners, a key concern is always going to be how to evaluate the security of software or a system. In some cases, it doesn't matter if a human or an LLM generated code -- the code needs to be reviewed for common flaws and design p…

1
Rise of Compromised LLMs - Sohrob Kazerounian - ASW #340 1:06:35

4M ago1:06:35

1:06:35

AI is more than LLMs. Machine learning algorithms have been part of infosec solutions for a long time. For appsec practitioners, a key concern is always going to be how to evaluate the security of software or a system. In some cases, it doesn't matter if a human or an LLM generated code -- the code needs to be reviewed for common flaws and design p…

1
Grok 4, AI Browsers, and Mark Zuckerbergs 6GW Data Center 1:29:27

4M ago1:29:27

1:29:27

Youtube Channel: https://www.youtube.com/@GenerativeAIMeetup Mark's Travel Channel: https://www.youtube.com/@kumajourney11 Mark's Channel: https://www.youtube.com/@markkuczmarski896 Gen AI Meetup: https://genaimeetup.com/ Shashank Linked In: https://www.linkedin.com/in/shashu10/ Mark Linked in: https://www.linkedin.com/in/markkuczmarski/…

1
Getting Started with Security Basics on the Way to Finding a Specialization - ASW #339 1:07:50

4M ago1:07:50

1:07:50

What are some appsec basics? There's no monolithic appsec role. Broadly speaking, appsec tends to branch into engineering or compliance paths, each with different areas of focus despite having shared vocabularies and the (hopefully!) shared goal of protecting software, data, and users. The better question is, "What do you want to secure?" We discus…

1
Getting Started with Security Basics on the Way to Finding a Specialization - ASW #339 1:07:50

4M ago1:07:50

1:07:50

What are some appsec basics? There's no monolithic appsec role. Broadly speaking, appsec tends to branch into engineering or compliance paths, each with different areas of focus despite having shared vocabularies and the (hopefully!) shared goal of protecting software, data, and users. The better question is, "What do you want to secure?" We discus…

1
Checking in on the State of Appsec in 2025 - Sandy Carielli, Janet Worthington - ASW #338 1:07:15

4M ago1:07:15

1:07:15

Appsec still deals with ancient vulns like SQL injection and XSS. And now LLMs are generating code along side humans. Sandy Carielli and Janet Worthington join us once again to discuss what all this new code means for appsec practices. On a positive note, the prevalence of those ancient vulns seems to be diminishing, but the rising use of LLMs is e…

1
Checking in on the State of Appsec in 2025 - Janet Worthington, Sandy Carielli - ASW #338 1:07:15

4M ago1:07:15

1:07:15

Appsec still deals with ancient vulns like SQL injection and XSS. And now LLMs are generating code along side humans. Sandy Carielli and Janet Worthington join us once again to discuss what all this new code means for appsec practices. On a positive note, the prevalence of those ancient vulns seems to be diminishing, but the rising use of LLMs is e…

1
Why the US economy will crash 1:18:03

4M ago1:18:03

1:18:03

Listen to the podcast: https://podcast.genaimeetup.com/ Join the Meetup: https://genaimeetup.com/ Subscribe to Mark's youtube channel: https://www.youtube.com/@UCqLp0T6WBwxmuJdmo4mUW5A Youtube: https://www.youtube.com/@GenerativeAIMeetupBy Mark and Shashank