|
Abhay Bhargav
@
abhaybhargav
At an airport near you
|
|
DevSecOps Greasemonkey, Passionate Builder and Breaker of Security Things, Obsessed with automating things, Eternal Student, Dad, Nice Guy. Tweets are mine.
|
|
|
4.204
Tweetovi
|
521
Pratim
|
1.668
Osobe koje vas prate
|
| Tweetovi |
| Abhay Bhargav proslijedio/la je tweet | ||
|
DynamoDB
@dynamodb
|
6 h |
|
Want to allow row-level access to a DynamoDB table based on an Amazon Cognito ID? Use this AWS Identity & Access Management policy: go.aws/2RiarzK pic.twitter.com/UocwUyNQ5a
|
||
|
||
| Abhay Bhargav proslijedio/la je tweet | ||
|
Nikhil Jois
@nikhiljoisr
|
3. velj |
|
This led to an amazing lunch meeting involving @shachinb , @abhaybhargav , @tunky , @bondijois and yours truly. 3 companies in wildly different markets with founders who speak Kannada. @we45 @getmarkk @binaizelabs
( Thanks @shiladitya ) Gotta #Lovetwitter twitter.com/shiladitya/sta… pic.twitter.com/6P84O9RSEB
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
30. sij |
|
Stoked to be bringing 2 classes to @BlackHatEvents #BHUSA in 2020. The #DevSecOps MasterClass => bit.ly/2uOKxMw
The #Kubernetes masterclass => bit.ly/2vA1hr7. We've typically sold out, so register now for early-bird prices #BHUSA2020 pic.twitter.com/UPElycmSPB
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
29. sij |
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
27. sij |
|
View from where I am speaking today 😀 #nyc pic.twitter.com/UEGLKbWSfV
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
27. sij |
|
In fact, in several cases (like crypto) not reusing libs is a surefire way of shooting yourself in the foot. I’d focus my energies on understanding how the developer chooses libs that they use and grade them on that, more than efforts at finding the arbitrary super-coder
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
27. sij |
|
Real code typically has a ton of imports. If the libraries are vetted, planned and security scanned, I don’t see why anyone should constantly reinvent the wheel as a “demonstration of skill”. I thought code reuse was a good thing. Clearly there’s gate keeping everywhere
|
||
|
|
||
| Abhay Bhargav proslijedio/la je tweet | ||
|
Black Hat
@BlackHatEvents
|
25. sij |
|
Gain a deep understanding of secrets management principles, concepts and techniques, plus the tools for attacking and defending multiple environments in interactive #BHASIA course with @abhaybhargav ow.ly/3oPc30qcb0b
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
25. sij |
|
Great keynote by @alexstamos about the dichotomy of certain security and engineering choices and why it’s hard to do this at scale. Overall it was a great event and I had a lot of fun! Till next year
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
25. sij |
|
Glad to see that people are looking at other people (and teams) to solve appsec problems, rather than relying only on tools. Cloud and newer forms of app delivery requires custom solutions. One size never fits all. 4/
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
25. sij |
|
#serverless adoption seems to be skyrocketing. Nearly everyone I spoke to had some lambda footprint that was fast growing. As I say this, I am headed to a training where I am teaching serverless secure coding. 3/
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
25. sij |
|
One of the great things I heard throughout the event and resonated with, is that we need to treat developers as our customers and realize that developer-first is the way to go. This is a HUGE departure from my experience with our #appsec industry from the past 2/
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
25. sij |
|
Some takeaways from another great experience @AppSecCali. First of all, thanks to great team organizing it @RAGreenberg, @haral, @act1vand0 and many others. They’ve always upped their game. For me, having some students say that it was the best class they attended was 🤘1/
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
25. sij |
|
Indeed. Very nice breakdown of actual threats vs notions of “security control”
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
25. sij |
|
Not sure about how accurate this is. But such a cool concept! Love the fact that we can use it to teach ourselves and kids about plants twitter.com/david_hunt/sta…
|
||
|
|
||
| Abhay Bhargav proslijedio/la je tweet | ||
|
Hdiv Security
@hdivsecurity
|
24. sij |
|
“Empower your developers to adopt security by introducing Feedback Loops and Collaboration Flows” according to @abhaybhargav
we couldn’t agree more, Abhay! @AppSecCali
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
25. sij |
|
I literally said the same thing in my talk 😀
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
24. sij |
|
Enjoying some coffee with a great view. My talk @AppSecCali on alt #DevSecOps pipelines with #serverless and step-functions is at 10:55 am at the sand and sea room. Stop by and listen to be wax eloquent on cloud-native pipelines if you’re interested pic.twitter.com/kCWjOz8a6p
|
||
|
|
||
| Abhay Bhargav proslijedio/la je tweet | ||
|
Nithin Jois
@bondijois
|
23. sij |
|
Last day for the early bird discount for our renowned #DevSecOps Masterclass Training at #BHASIA! It's filled with a ton of labs and examples!
Go ahead and register now to learn everything there is about integrating security into your #DevOps pipelines -> blackhat.com/asia-20/traini…
|
||
|
|
||
|
|
Abhay Bhargav
@abhaybhargav
|
23. sij |
|
Today is the last day for the early bird discounts for our revolutionary #cloudnative secrets training at #BHASIA register now for the most compressive training on secret mgmt, key mgmt on cloud, #k8s and everything in the middle blackhat.com/asia-20/traini…
|
||
|
|
||