May 22, 2026
•
4 min read
The myth of human-free automation, becoming an AI fleet-director, the return of Crocs and Socks - the basics
May 18, 2026
5 min read
ShinyHunters breaching the normie space, LLMs as artificial interns, and the implications of AI from the defensive side of the house.
Apr 28, 2026
Vercel and the risks of AI third-party dependencies, what security is and is not, and planning the potential funeral of pull request flows in the SDLC.
Apr 20, 2026
On Seth's recent Slack impersonator and fallout, Anthropic's Mythos in the news everywhere, and the future of vulnerability research
Apr 10, 2026
8 min read
On RSAC and BSidesSF, AI snake-oil salesmen, and the myth of the One True Secure Framework.
Mar 27, 2026
9 min read
On democratizing vulnerability management, executive positions, and non-linear career growth--all the way back from 2023.
Mar 20, 2026
On the Agentic Development Lifecycle
Mar 6, 2026
On the Risks of "AI-Native" Security Products and Rapid Software Development
Mar 2, 2026
LLM AppSec Disruption, Limitations of AI in Security, and AppSec Oversight
Feb 20, 2026
A cost/benefit analysis of vibe coding and the subsequent security burnout, and the potential democratizing of responsibility through AppSec scorecards.
Feb 13, 2026
Feb 6, 2026
7 min read
How AI tooling is transforming the security industry, development velocity, and what the malware campaign targeting ClawHub can teach us.
Jan 31, 2026
Privacy, AppSec Conferences, OWASP
Jan 9, 2026
We bring on Paul McCarty, the NPM hacker, to discuss software supply-chain security researcher, malware and npm hacking/attacks in the AI-powered era.
Dec 12, 2025
How GenAI is changing the game for career newcomers, and the exploitative nature of Generative AI Engine Optimization.
Nov 26, 2025
Lingering thoughts on the OWASP Top 10, and the impact of AI tools on AppSec consulting.
Nov 24, 2025
An insider peek into the 2025 OWASP Top 10.
Nov 14, 2025
10 min read
The destructive 90-hour startup grind vs. sustainable growth, how the AI hype cycle and security industry cyclical consolidation (buy vs. build) are transforming the future of security companies
Nov 3, 2025
OpenAI's plans to further data collection and surveillance by embedding AI into web browsing. Useful for surfing, or a major privacy concern?
Oct 21, 2025
Reminising on the past almost 8 years of Absolute AppSec, and the evolution of the AppSec industry.
Sep 19, 2025
Why we should consider context and business impact, and what phishing teaches us about humans and security.
Sep 12, 2025
Plus, the OWASP Top 10, and Security News Sources
Sep 5, 2025
DEF CON 33 Review, and the value of CTFs
Aug 22, 2025
AppSec has changed over the past year, and Anshuman has noticed it too.
Aug 15, 2025
11 min read
Application Security sits in a space where theory meets reality, with all of the associated baggage.
