Rebecca Trapani
- @errbufferoverfl
- Patchwork Quilter of Code Snippets and Infrastructure
- they / them
- Wadawurrung Land
• security culture advocate
• patchwork quilter of code snippets and infrastructure
• advocate of dopamine driven development
• python/golang
• patchwork quilter of code snippets and infrastructure
• advocate of dopamine driven development
• python/golang
Positions
Senior Security Consultant
- Loop Secure
- Apr 2019 - Jan 2021
Founding Board Member & Head of Recruitment
- Hackers Helping Hackers
- Jun 2017 - Nov 2019
Senior Security Consultant
- Assurance
- Jan 2017 - Mar 2019
2021
Oct 16, 2021
Oct 16, 2021
Co-Hosted a podcast episode
🎙How to Analyze Code for Vulnerabilities using Joern
The team spoke to Vickie Li & Suchakra Sharma about the process of analyzing application code to find security vulnerabilities.
In this episode, Vickie and Suchakra demonstrated how to use the open-source code analysis tool Joern to make code analysis more efficient.
This is the second edition of How to Analyze Code for Vulnerabilities, this time about how to do it efficiently using Joern.
🔗 https://youtu.be/qtGRNb_2Khs
The team spoke to Vickie Li & Suchakra Sharma about the process of analyzing application code to find security vulnerabilities.
In this episode, Vickie and Suchakra demonstrated how to use the open-source code analysis tool Joern to make code analysis more efficient.
This is the second edition of How to Analyze Code for Vulnerabilities, this time about how to do it efficiently using Joern.
🔗 https://youtu.be/qtGRNb_2Khs
Sep 19, 2021
Spoke at a conference
🎙I recently had the pleasure of presenting my talk "Collapsology: Why exposed RDP isn't your biggest threat" at Pyconline 2021 & BSides Perth.
In this talk, I recounted the rise and fall of empires and what they can teach us about modern-day corporate security culture and tools that we can use to help identify these threats before they become full-blown vulnerabilities.
I posted a list of resources on my website.
If you missed out on both sessions you can catch up on the recording, available on YouTube:
🚀 https://youtu.be/iP1EPNQ0CjY
In this talk, I recounted the rise and fall of empires and what they can teach us about modern-day corporate security culture and tools that we can use to help identify these threats before they become full-blown vulnerabilities.
I posted a list of resources on my website.
If you missed out on both sessions you can catch up on the recording, available on YouTube:
🚀 https://youtu.be/iP1EPNQ0CjY
Sep 18, 2021
Sep 18, 2021
Co-hosted a podcast
🎙Software Security at Rocketship Pace with Alex Rosenzweig
We spoke to Alex about how in the age of DevOps the software delivery lifecycle is moving more rapidly than ever before. Which has broken a number of traditional models of security assurance for software. In this show, we did a deep dive into an automation-driven methodology for software security assurance covering everything from high-level design goals to low-level code examples.
🔗 https://youtu.be/EZWIIrkdKqU
We spoke to Alex about how in the age of DevOps the software delivery lifecycle is moving more rapidly than ever before. Which has broken a number of traditional models of security assurance for software. In this show, we did a deep dive into an automation-driven methodology for software security assurance covering everything from high-level design goals to low-level code examples.
🔗 https://youtu.be/EZWIIrkdKqU
Sep 07, 2021
Wrote a talk
🚀Just finished writing my conference talk for Pyconline 2021 & BSides Perth on "Collapsology: Why exposed RDP isn't your biggest threat" where we recount the rise and fall of empires and what they can teach us about modern day corporate security culture and tools that we can use to help identify these threats before they become full blown vulnerabilities.
Both conferences are online, for those in locked down states and tickets are still on sale for both events and can be purchased here:
Image Alt: A photo of three columns in the Forum in Rome, Italy tinted pink. In a pink square the text "Lessons lost in time / Your security culture / Will fall like empires"
Both conferences are online, for those in locked down states and tickets are still on sale for both events and can be purchased here:
- Pyconline
- Bsides Perth - Tickets are pay what you want, with all proceeds going straight to 0xCC a security training conference, for women, by women.
Image Alt: A photo of three columns in the Forum in Rome, Italy tinted pink. In a pink square the text "Lessons lost in time / Your security culture / Will fall like empires"
Aug 21, 2021
Co-Hosted a podcast episode
🎙How to do Code Review - The Offensive Security Way
We join Shubham Shah to learn how to leverage code review as part of the bug hunting process and find high and critical risk vulnerabilities in software.
🔗 https://youtu.be/fb-t3WWHsMQ
We join Shubham Shah to learn how to leverage code review as part of the bug hunting process and find high and critical risk vulnerabilities in software.
🔗 https://youtu.be/fb-t3WWHsMQ
Loading...