- 32
- 11 351
ThatOneSecGuy
United Arab Emirates
Приєднався 23 жов 2020
I'm fascinated by what happens in the minds of hackers and the ones helping protect everyone and everything from them. Come with me and let's shine some light on it and see what's there. This channel will contain various cybersecurity lessons and some off-topic stuff from time to time. This channel is for those who love securing the Internet (and more) and preventing the bad guys from hacking things and for ones who are just here to gain knowledge about Security in general. Strap yourselves in for a digital deep dive and join your podcast host Harshil Shah, a.k.a. ThatOneSecGuy, as he navigates the ever-evolving landscape of cybersecurity and emerging technologies. We’ll uncover hidden gems of knowledge, from the cutting-edge tools shaping the future of security to the ever-present threats lurking in the digital shadows.
Disclaimer :- All of the opinions you find on this channel are my own and no one on this 🌏 is responsible for it! :)
Happy hacking! ;)
Disclaimer :- All of the opinions you find on this channel are my own and no one on this 🌏 is responsible for it! :)
Happy hacking! ;)
Smart Contracts Security | Shashank x Harshil Shah | @solidityscan | ThatOneSecGuy's Podcast Ep #11
Welcome to ThatOneSecGuy's Podcast with your host - Harshil Shah! 🎙️🎧
This episode of ThatOneSecGuy's Podcast dives deep into the topic of #smartcontracts security with our super insightful guest - Shashank (Co-Founder of CredShields) www.linkedin.com/in/shashank-in/
The sections of this video are as follows:
00:35: Introduction to our Guest
05:31: BlockChain 101
09:55: Web3 Development Frameworks and programming languages - Solidity, Rust, etc.
12:05: Introduction to Solidity programming language
13:46: Security Risks and Vulnerabilities in smart contracts
15:39: ShadowFi tokens Hack
26:26: Secure Coding Guidelines for Web3 development - OWASP Smart Contract Top 10, SWC Registry
29:47: Shifting Left in Web3 development (Web3 DevSecOps)
35:46: What is @solidityscan ?
37:55: How is CredShields integrating AI in their products?
42:20: How can you identify scam tokens?
🔍 What You'll Learn:
1. Blockchain 101:
A basic introduction to blockchain technology
How blockchain works and its key components
The concept of decentralized applications (dApps)
2. Web3 Development:
An overview of popular Web3 development frameworks and programming languages
A deep dive into Solidity, the primary language for smart contract development
3. Smart Contract Security Risks:
Common vulnerabilities in smart contracts, such as reentrancy attacks, integer overflows, and access control issues
Real-world examples of high-profile smart contract hacks, like the ShadowFi token hack
4. Secure Coding Practices:
Best practices for writing secure smart contracts
The importance of following coding standards and guidelines
Using security tools and frameworks to identify and mitigate vulnerabilities
Leveraging the OWASP Smart Contract Top 10 and SWC Registry for guidance
5. Web3 DevSecOps:
The concept of shifting security left in the development process
Integrating security testing and code review into the development pipeline
Using automated tools to identify and fix vulnerabilities early in the development cycle
6. Smart Contract Auditing Tools:
An introduction to SolidityScan and other tools for analyzing smart contract code
How these tools can help identify potential vulnerabilities and security risks
7. AI in Web3 Security:
The role of AI in detecting and preventing smart contract attacks
How CredShields is using AI to enhance security in its products
The future of AI-powered security solutions for Web3
8. Identifying Scam Tokens:
Tips and tricks for spotting scam tokens
Red flags to look out for when investing in cryptocurrencies
The importance of conducting thorough research before investing
🔗 Stay Connected:
For more insights on Cybersecurity topics similar to Smart Contracts security, subscribe to our channel and hit the notification bell.
Like this video? Hit the thumbs up and subscribe for more cybersecurity content!
Follow me on:
📹 UA-cam: www.youtube.com/@thatonesecguy
🖥️ Website - thatonesecguy.com/
👨🏻🏫 LinkedIn - www.linkedin.com/company/thatonesecguy-podcast/
✖️ Twitter (now, X) - x.com/thatonesecguy
📷 Instagram - thatonesecguy
for updates and more content on Cybersecurity topics and advanced concepts.
Share your thoughts on Web3 and Smart Contracts security in the comments below. Have you encountered any challenges or successes in your smart contracts security journey? Let's start a conversation!
✍️ I'd love to Hear from You!
Help the channel grow with a Like, Comment, & Subscribe!
This episode of ThatOneSecGuy's Podcast dives deep into the topic of #smartcontracts security with our super insightful guest - Shashank (Co-Founder of CredShields) www.linkedin.com/in/shashank-in/
The sections of this video are as follows:
00:35: Introduction to our Guest
05:31: BlockChain 101
09:55: Web3 Development Frameworks and programming languages - Solidity, Rust, etc.
12:05: Introduction to Solidity programming language
13:46: Security Risks and Vulnerabilities in smart contracts
15:39: ShadowFi tokens Hack
26:26: Secure Coding Guidelines for Web3 development - OWASP Smart Contract Top 10, SWC Registry
29:47: Shifting Left in Web3 development (Web3 DevSecOps)
35:46: What is @solidityscan ?
37:55: How is CredShields integrating AI in their products?
42:20: How can you identify scam tokens?
🔍 What You'll Learn:
1. Blockchain 101:
A basic introduction to blockchain technology
How blockchain works and its key components
The concept of decentralized applications (dApps)
2. Web3 Development:
An overview of popular Web3 development frameworks and programming languages
A deep dive into Solidity, the primary language for smart contract development
3. Smart Contract Security Risks:
Common vulnerabilities in smart contracts, such as reentrancy attacks, integer overflows, and access control issues
Real-world examples of high-profile smart contract hacks, like the ShadowFi token hack
4. Secure Coding Practices:
Best practices for writing secure smart contracts
The importance of following coding standards and guidelines
Using security tools and frameworks to identify and mitigate vulnerabilities
Leveraging the OWASP Smart Contract Top 10 and SWC Registry for guidance
5. Web3 DevSecOps:
The concept of shifting security left in the development process
Integrating security testing and code review into the development pipeline
Using automated tools to identify and fix vulnerabilities early in the development cycle
6. Smart Contract Auditing Tools:
An introduction to SolidityScan and other tools for analyzing smart contract code
How these tools can help identify potential vulnerabilities and security risks
7. AI in Web3 Security:
The role of AI in detecting and preventing smart contract attacks
How CredShields is using AI to enhance security in its products
The future of AI-powered security solutions for Web3
8. Identifying Scam Tokens:
Tips and tricks for spotting scam tokens
Red flags to look out for when investing in cryptocurrencies
The importance of conducting thorough research before investing
🔗 Stay Connected:
For more insights on Cybersecurity topics similar to Smart Contracts security, subscribe to our channel and hit the notification bell.
Like this video? Hit the thumbs up and subscribe for more cybersecurity content!
Follow me on:
📹 UA-cam: www.youtube.com/@thatonesecguy
🖥️ Website - thatonesecguy.com/
👨🏻🏫 LinkedIn - www.linkedin.com/company/thatonesecguy-podcast/
✖️ Twitter (now, X) - x.com/thatonesecguy
📷 Instagram - thatonesecguy
for updates and more content on Cybersecurity topics and advanced concepts.
Share your thoughts on Web3 and Smart Contracts security in the comments below. Have you encountered any challenges or successes in your smart contracts security journey? Let's start a conversation!
✍️ I'd love to Hear from You!
Help the channel grow with a Like, Comment, & Subscribe!
Переглядів: 315
Відео
Machine Learning Security | Sagar Bhure x Harshil Shah | ThatOneSecGuy's Podcast EPISODE 10 (#ep10)
Переглядів 2794 місяці тому
Welcome to ThatOneSecGuy's Podcast with your host - Harshil Shah! 🎙️🎧 This episode of ThatOneSecGuy's Podcast dives deep into the topic of #machinelearning security our super insightful guest - Sagar Bhure (www.linkedin.com/in/sagarbhure/) The sections of this video are as follows: 00:34: Introduction to our guest 01:21: What is machine learning and how does it work? How is it different from Ar...
Let's Go Phishing | Siddharth Kumar x Harshil Shah | ThatOneSecGuy's Podcast EPISODE 09 ( #009 )
Переглядів 2674 місяці тому
Welcome to ThatOneSecGuy's Podcast with your host - Harshil Shah! 🎙️🎧 This episode of ThatOneSecGuy's Podcast dives deep into the topic of #phishing threats and email security with our super awesome social engineering expert - Siddharth Kumar (www.linkedin.com/in/siddharth-kumar-02992413b/) The sections of this video are as follows: 00:18: Introduction to our guest 03:39: Types of #phishingatta...
Malware Analysis | Shyam Sundar Ramaswami x Harshil | ThatOneSecGuy's Podcast EPISODE 08 ( #008 )
Переглядів 3735 місяців тому
Welcome to ThatOneSecGuy's Podcast with your host - Harshil Shah! 🎙️🎧 This episode of ThatOneSecGuy's Podcast dives deep into the topic of Malware Analysis with our super awesome expert - Shyam Sundar Ramaswami (www.linkedin.com/in/shyam-sundar-ramaswami-he-him-batman-50204966/) The sections of this video are as follows: 00:24: Introduction to our guest 01:53: How has the landscape of malware a...
Software Supply Chain Security: Securing Ideation to Delivery | ThatOneSecGuy's Podcast EP 07 #007
Переглядів 2215 місяців тому
Welcome to ThatOneSecGuy's Podcast with your host - Harshil Shah! 🎙️🎧 This episode of ThatOneSecGuy's Podcast dives deep into the topic of Software Supply Chain Security with an expert - Akash Ravi (www.linkedin.com/in/akash-ravi/) The sections of this video are as follows: 01:52: Foundations of software supply chain security and why it is such a critical issue in today's interconnected world? ...
Shift Left? Wait, Is This DevSecOps? Join me with @abhaybhargav | ThatOneSecGuy's Podcast #006
Переглядів 1885 місяців тому
Welcome to ThatOneSecGuy's Podcast with your host - Harshil Shah! 🎙️🎧 This episode of ThatOneSecGuy's Podcast dives deep into the topic of #devsecops Our guest for this episode is the esteemed Founder of AppSecEngineer - Mr. Abhay Bhargav (www.linkedin.com/in/abhaybhargav/) The sections of this video are as follows: 00:18: Introduction to our Guest 01:42: Why DevSecOps is crucial in today's sof...
Modern SOC & Detection Engineering from a CISOs Perspective | ThatOneSecGuy's Podcast EPISODE #005
Переглядів 1715 місяців тому
Welcome to ThatOneSecGuy's Podcast with your host - Harshil Shah! 🎙️🎧 This episode of ThatOneSecGuy's Podcast dives deep into the topic of Modern Security Operations Center ( #soc ) and Detection Engineering. Our guest for this episode is the esteemed Chief Information Security Officer ( #ciso ) of #razorpay - Mr. Hilal Ahmad Lone. The sections of this video are as follows: 00:23: Introduction ...
Threat Hunting 101 with @SubhashPopuri | ThatOneSecGuy's Podcast EPISODE 04 ( #004 )
Переглядів 4426 місяців тому
Welcome to ThatOneSecGuy's Podcast with your host - Harshil Shah! 🎙️🎧 This episode of ThatOneSecGuy's Podcast provides deep technical insights about threat hunting in the real world from an industry expert. The sections of this video are as follows: 00:28: Introduction to our Guest 01:51: Threat Hunting and it's importance 03:43: Indicators of Compromise (IoCs) and Indicators of Attack (IoAs) a...
Fuzzing Like A Boss with @DhirajDMishra | ThatOneSecGuy's Podcast EPISODE 03 ( #003 )
Переглядів 4376 місяців тому
Fuzzing Like A Boss with @DhirajDMishra | ThatOneSecGuy's Podcast EPISODE 03 ( #003 )
Understanding the Bug Bounty Mindset with Armaan Pathan | ThatOneSecGuy's Podcast EPISODE 02 (#002 )
Переглядів 1,2 тис.6 місяців тому
Understanding the Bug Bounty Mindset with Armaan Pathan | ThatOneSecGuy's Podcast EPISODE 02 (#002 )
Deciphering Cyber Governance, Risk and Compliance with Ankita Priyam | ThatOneSecGuy's Podcast EP 01
Переглядів 4566 місяців тому
Deciphering Cyber Governance, Risk and Compliance with Ankita Priyam | ThatOneSecGuy's Podcast EP 01
Appreciate the detailed breakdown! Could you help me with something unrelated: I have a SafePal wallet with USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). How should I go about transferring them to Binance?
Great analysis, thank you! A bit off-topic, but I wanted to ask: I have a SafePal wallet with USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). What's the best way to send them to Binance?
Hi sir, I missed the live session wanna ask a small query regarding to phishing, what are the future works or what are the companies trying to expect on the coming phishing detectors? what are the requirements for some tool/ technology for the companies over the existing tools or frameworks?
Great discussion guys. I still remember my prof Siko telling me about the sleepless nights they spent reversing the entire solar winds suite of tools when they first discovered something fishy going on in the fireeye network. 😅 they eventually went on to tell solar winds that they’ve been completely pwned to their very core
Support ❤️
Love you bro keep uploading
I still use Nano 😅
Nano supremacy!
Excited for this one!!
Nice
Informative 👍
Good podcast!
Informative , will see for these guidelines in web projects
Very nice
😍
Good discussion for beginners
Great stuff! Awesome insights Harshil and Ankita! 👏🏼
One of the finest discussion I have heard on GRC…..amazing initiative
Big fan Armaan sir Following you since your were in ganpat University Big fan sir
👏👏👏
Informative
True
🎉
Amazing
Great
Well said
Insightful
Very nice😊
Niceeee
Very insightful
Amazing
All the best Harshil!
All the best