In episode 75 of the We Hack Purple Podcast, host Tanya Janca interviews Enno, a security researcher from Semgrep. They discussed all things static analysis, including; how do we come up with SAST rules, what’s important to search for, important considerations when writing rules, testing rules before wider roll out, and writing rules specifically for Semgrep.
We briefly got into The Official Docs, and content creation for both internal and external use, plus its importance when trying to scale your security efforts.
Want more Enno?
They can be found here!
https://www.linkedin.com/in/enno-liu/
https://www.youtube.com/@enncoded
https://youtu.be/g_Yrp9_ZK2c
https://twitter.com/enncoded
The video by Enno that we discussed can be watched here!
https://twitter.com/enncoded/status/1648908623152844801
Very special thanks to our sponsor: Day of Shecurity!
This annual event advocates for inclusion & diversification of gender in cybersecurity, AND it’s very soon. Day one is May 18th (virtual) and day two is May 19th, in person in Redwood City, California, United States. Tickets are FREEEEEEEEE!
View the agenda here: https://guides.dayofshecurity.com/view/314270378/
If you’re not sure, you can see videos from previous events here: https://www.youtube.com/c/DayofShecurity.
Join We Hack Purple!
Check out our brand new courses in We Hack Purple Academy. Join us in the We Hack Purple Community: A fun and safe place to learn and share your knowledge with other professionals in the field. Subscribe to our newsletter for even more free knowledge! You can find us, in audio format, on Podcast Addict, Apple Podcast, Overcast, Pod, Amazon Music, Spotify, and more!