Zero Signal
Welcome back to Zero Signal! In this special re-release, Conor Sherman and Stuart Mitchell sit down with Clint Gibler—Head of Security Research at Semgrep, creator of the TLDRsec newsletter, and host of the Modern Security Podcast. Recorded live at Black Hat, Clint breaks down how artificial intelligence is rewriting the playbook for application security, vulnerability discovery, and developer workflows.AI is rapidly transforming cybersecurity, moving from a speculative future tech to an active force automating penetration testing and reshaping how security teams interact with codebases. In this conversation, Clint examines the practical implications, cost structures, and future prospects of deploying AI in security pipelines.More Conversations from Black Hat:The Zero Signal team will be in attendance on the ground again at Black Hat USA 2026, catching up with industry pioneers and capturing more amazing conversations on the cutting edge of cyber defense. Stay tuned for our upcoming on-site coverage!In the meantime, you can dive back into our full library of live event interviews by checking out the Full Black Hat 2025 Episode Playlist on YouTube: https://youtube.com/playlist?list=PLvtGUUDFmi-b-fELkdzirA9yYEcNVfVVJ&si=-6dc4A24dfJWyENp [https://youtube.com/playlist?list=PLvtGUUDFmi-b-fELkdzirA9yYEcNVfVVJ&si=-6dc4A24dfJWyENp]Continued Reading & Resources: * TLDRsec Newsletter: https://tldrsec.com [https://tldrsec.com] * The Modern Security Podcast: https://modernsecurity.io [https://modernsecurity.io] * Semgrep Code Analysis Platform: https://semgrep.dev [https://semgrep.dev] * OWASP Top 10 for LLMs & Applications: https://owasp.org [https://owasp.org] * Google Project Zero Vulnerability Research: https://googleprojectzero.blogspot.com [https://googleprojectzero.blogspot.com] * DeepMind Camel Framework (Agent Separation): https://github.com/camel-ai/camel [https://github.com/camel-ai/camel] * Socket Supply Chain Security Platform: https://socket.dev [https://socket.dev] * Hugging Face Model Repository: https://huggingface.co [https://huggingface.co] * Trail of Bits Security Tools & Research: https://trailofbits.com [https://trailofbits.com] * Building Secure and Reliable Systems (Google Books): https://sre.google/books/building-secure-and-reliable-systems [https://www.google.com/search?q=https://sre.google/books/building-secure-and-reliable-systems] * ComplianceAsCode GitHub Repository: https://github.com/ComplianceAsCode/content [https://github.com/ComplianceAsCode/content] * 00:00 AI's Impact on Penetration Testing * 03:19 The Future of Junior Pen Testers * 05:42 Working with AI: A New Paradigm * 10:31 Trusting AI Outputs * 12:31 Shifting Down: A New Security Approach * 15:20 Making Security Invisible for Developers * 16:44 The Role of AI in Security and Development * 19:04 Integrating Security into Vibe Coding * 21:21 Human in the Loop: Balancing Automation and Oversight * 25:27 Emerging Security Risks in AI Infrastructure * 29:41 Understanding Prompt Injection Challenges * 31:05 Innovative Solutions in AI Security * 32:28 Risks of Model Integration and Code Execution * 34:14 Navigating AI Model Adoption in Organizations * 38:52 Career Pathways in Cybersecurity About the Guest:Clint Gibler is the Head of Security Research at Semgrep, where he focuses on static analysis, developer enablement, and scaling AppSec programs. He is the creator of TLDRsec, a premier weekly newsletter providing deeply technical, actionable security summaries to thousands of industry professionals. Key Topics:Meet our Sponsors:Hampton North is the premier US-based cybersecurity search firm: https://hamptonnorth.com/?utm_source=website&utm_medium=podcast&utm_campaign=aware_global_swsd_all&utm_content=zero-signal [https://www.google.com/search?q=https://hamptonnorth.com/%3Futm_source%3Dwebsite%26utm_medium%3Dpodcast%26utm_campaign%3Daware_global_swsd_all%26utm_content%3Dzero-signal]Sysdig is the leader in AI-powered real-time cloud defense: https://www.sysdig.com/?utm_source=website&utm_medium=podcast&utm_campaign=aware_global_swsd_all&utm_content=zero-signal [https://www.google.com/search?q=https://www.sysdig.com/%3Futm_source%3Dwebsite%26utm_medium%3Dpodcast%26utm_campaign%3Daware_global_swsd_all%26utm_content%3Dzero-signal]
40 episodios
Comentarios
0Sé la primera persona en comentar
¡Regístrate ahora y únete a la comunidad de Zero Signal!