أفضل بودكاسات App Development (2025)

1
Deep Dive 195 – Embedded Development Jakob Czekansky 1:14:32

15d ago1:14:32

1:14:32

Embedded Systems stecken heute in nahezu jedem Gerät. Moderne Autos, Spülmaschinen bis hin zu Flugzeugen würden ohne die verbauten Mikrocontroller nicht funktionieren. Doch wie genau entstehen eingebettete Systeme? Wie entwickelt man Software für Mikrocontroller und woher kommt die passende Hardware? Darüber sprechen Jan und Dennis mit Jakob Czekan…

1
Closing (god2025) 4:06

6h ago4:06

4:06

Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/about this event: https://c3voc.deبقلم OWASP German Chapter

1
News from the Juice Shop ecosystem (god2025) 22:36

6h ago22:36

22:36

OWASP Juice Shop went through some significant renovation and enhancements over the last year in order to keep current with the underlying Node.js and Angular frameworks. MultiJuicer was entirely rewritten in GoLang and is now faster and more reliable than ever before. All Juice Shop side-projects have been migrated to TypeScript and brought to a c…

1
OWASP Top 10:2025: Aktuelle Informationen und Insights zum Projekt (god2025) 11:10

6h ago11:10

11:10

Der Kurzvortrag stellt den aktuellen Stand der OWASP Top 10:2025 vor, mit etwas Glück haben wir bis dahin schon mehr...Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/about this event: https://c3voc.deبقلم Torsten Gigler

1
Der Cyber Resilience Act: Wie OWASP für die Software-Hersteller eine entscheidende Rolle spielen kann (god2025) 21:12

7h ago21:12

21:12

Der Cyber Resilience Act, kurz CRA, ist eine neue Verordnung der EU und tritt im Dezember 2027 vollständig in Kraft. Das Kernelement der Verordnung ist die Softwaresicherheit für alle so genannten „Produkte mit digitalen Elementen“, die auf dem EU-Markt kommerziell angeboten werden. Diese umfassen sowohl vernetzte Hardware-Produkte, in denen Firmwa…

1
YuraScanner: Leveraging LLMs for Task-driven Web App Scanning (god2025) 22:08

7h ago22:08

22:08

Web application scanners are popular and effective black-box testing tools, automating the detection of vulnerabilities by exploring and interacting with user interfaces. Despite their effectiveness, these scanners struggle with discovering deeper states in modern web applications due to their limited understanding of workflows. This study addresse…

1
The Trust Trap - Security von Coding Assistants (god2025) 43:05

7h ago43:05

43:05

Coding Assistants wie Github Copilot, Cursor oder Claude versprechen einen Effizienzboost für die Softwareentwicklung. Doch welchen Einfluss hat die Nutzung dieser Tools auf die Software Security?Dieser Vortrag analysiert die Vor- und Nachteile von Coding Assistants in Hinblick auf die Sicherheit des entstehenden Codes. Er gibt einen Überblick über…

1
A CISO's Adventures in AI Wonderland (god2025) 42:22

7h ago42:22

42:22

As a CISO (or any other security expert) in the area of AI, you can find yourself in increasingly challenging and sometimes bizarre AI-related situations not unlike Alice's adventures in Wonderland.Depending on whom you speak to, people either have high (inflated?) expectations about the (magic?) benefits of AI for security efforts, or try to expla…

1
How we hacked Y Combinator companies' AI agents (god2025) 24:28

8h ago24:28

24:28

We hacked 7 of the16 publicly-accessible YC X25 AI agents. This allowed us to leak user data, execute code remotely, and take over databases. All within 30 minutes each. In this session, we'll walk through the common mistakes these companies made and how you can mitigate these security concerns before your agents put your business at risk.Licensed …

1
"I have no idea how to make it safer": Security and Privacy Mindsets of Browser Extension Developers (god2025) 24:42

8h ago24:42

24:42

Browser extensions are a powerful part of the Web ecosystem as they extend browser functionality and let users personalize their online experience. But with higher privileges than regular web apps, extensions bring unique security and privacy risks. Much like web applications, vulnerabilities often creep in, not just through poor implementation, bu…

1
Extract: A PHP Foot-Gun Case Study (god2025) 24:37

9h ago24:37

24:37

Do you always read the documentation before using a function in your languages' standard library? This talk explores the attack surface of a special feature in PHP which is easy to misuse with unforseen consequences. The `extract` function allows to replace the value of local variables named after the keys in an array. Calling it with user-controll…

1
MCP security hot potato: how to stay secure integrating external tools to your LLM (god2025) 24:38

9h ago24:38

24:38

Model Context Protocol (MCP) is the latest hot topic in cybersecurity. Business wants it (AI is the new mantra), developers are excited (new toys, new code), and security teams are left to make it safe—often with already packed schedules. Let's treat it like just another Tuesday. Like many shiny new technologies (remember the early days of cloud?),…

1
Pwn My Ride: Jailbreaking Cars with CarPlay (god2025) 40:58

9h ago40:58

40:58

Apple CarPlay is a widely known protocol that connects smartphones to car multimedia systems. Based on AirPlay, CarPlay is installed in millions of cars, as it is supported by hundreds of car models from dozens of different manufacturers across the globe. In our talk, we will share how we managed to exploit all devices running CarPlay using a singl…

1
The Automation Illusion? What Machines Can't Do in Threat Modeling (god2025) 39:58

9h ago39:58

39:58

Threat modeling stands at a critical juncture. While essential for creating secure systems, it remains mostly manual, handcrafted, and often too slow for today's development cycles. At the same time, automation and AI offer new levels of speed and scalability— but how much can we rely on them?This talk explores the tension between automation and hu…

1
OWASP Cumulus: Threat Modeling the Ops of DevOps (god2025) 26:08

11h ago26:08

26:08

In this presentation, we will highlight how threat modeling, as a proactive measure, can increase security in DevOps projects.We will introduce OWASP Cumulus, a threat modeling card game designed for threat modeling the Ops part of DevOps processes. This game (in combination with similar games like Elevation of Privilege or OWASP Cornucopia) enable…

1
Phishing for Passkeys: An Analysis of WebAuthn and CTAP (god2025) 19:24

11h ago19:24

19:24

WebAuthn was supposed to replace swords on the web: uniform, secure, manageable authentication for everyone! One of its unique selling points was supposed to be the impossibility of phishing attacks. When passkeys were introduced, some of WebAuthn's security principles were watered down in order to achieve some usability improvements and thus reach…

1
Introducing Passkeys - Strategies and Challenges for Developers (god2025) 22:18

11h ago22:18

22:18

The future of authentication is passwordless - Passkeys are the key technology. This talk supports developers in implementing Passkeys in their organizations and helps with the decision between in-house development, SDK, or Passkey-as-a-Service solutions. You will learn how to design recovery flows and fallback mechanisms in a user-friendly way, ho…

1
Continuous Vulnerability Scanning with OWASP secureCodeBox (god2025) 24:21

11h ago24:21

24:21

The OWASP secureCodeBox project aims to provide a unified way to run and automate open-source scanning tools like nmap, nuclei, zap, ssh-audit, and sslyze to continuously scan the code and infrastructure of entire organizations.This allows setting up automated scans that will regularly scan internal networks and internet-facing systems for vulnerab…

1
All the WAF power to the devs - why it reduces friction… and where it backfires (god2025) 34:16

12h ago34:16

34:16

Web application firewalls are often seen as a hindrance when going live, as perimeter WAFs can clash with GitOps-driven platforms. Empowering development teams with an application-centric WAF setup allows them to run and tune the WAF throughout the entire development lifecycle. It also enables full integration into any CI/CD pipeline or GitOps appr…

1
LangSec for AppSec folks (god2025) 29:24

12h ago29:24

29:24

Die von LangSec beschrieben grundlegenden Sicherheitsprinzipien erklären die Hauptursachen vieler Sicherheitslücken und wie man diese beheben kann. LangSec sieht die anhaltende Schwachstellen-Epidemie in Software als eine Folge der ad-hock Entwicklung von Code, der Ein- und Ausgaben verarbeitet. Gemäß LangSec besteht der Schlüssel zur Entwicklung v…

1
How the EU created Electronic Invoices without considering Security (god2025) 27:51

13h ago27:51

27:51

Companies within the European Union are increasingly required to be able to issue and process electronic invoices according to EU standards. For example, since January 2025, companies in Germany have been required to support electronic invoices in B2B contexts.While it is desirable to standardize invoice data formats, the EU standards have severe p…

1
From Startup to Scale: Choosing the Right AppSec Path (god2025) 21:17

13h ago21:17

21:17

Security teams often inherit their organisation's structure - for better or worse. The way you design your AppSec programme and choose your team topology can determine whether security becomes a trusted enabler or a frustrating bottleneck.In this story-driven session, we follow Alex, who begins as the only security person in a 50-person startup. At…

1
The Surprising Complexity of Finding Known Vulnerabilities (god2025) 23:35

13h ago23:35

23:35

With the increasing reliance on third-party software components, ensuring their security against known vulnerabilities has become a daily challenge for individuals and organizations. Despite the availability of a variety of tools and databases, we found all of them fall short when applied to real-world scenarios - raising questions about their effe…

1
Keynote: Code Dark Age (god2025) 39:37

14h ago39:37

39:37

Generative AI is supposed to make our lives easier. But what if it's really just coding us straight into a new Dark Age? We hand over our systems to AI agents, only to watch them invent backdoors nobody asked for. Developers are left with the glamorous job of bug janitors, while attackers get new exploits. It's hard not to feel like we are front-ro…

1
Welcome (god2025) 9:21

14h ago9:21

9:21

Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/about this event: https://c3voc.deبقلم OWASP German Chapter

1
Deep Dive 196 – AI-Recht mit Dr. Peggy Müller 1:20:53

1d ago1:20:53

1:20:53

„KI ist gekommen, um zu bleiben”, sagt Dr. Peggy Müller. Die Anwältin unterstützt Unternehmen dabei, KI-Tools und Produkte der künstlichen Intelligenz rechtskonform einzuführen und zu nutzen. Gemeinsam mit Peggy und unserem wiederkehrenden Gast Richard Hartmann spricht Jan über die rechtlichen Fragen und Hürden, die bei der Integration von KI-Syste…

1
243 - 5 Schritte, um sich in neue Technologien einzuarbeiten 15:42

4d ago15:42

15:42

Bewerbung für ein Erstgespräch: https://bit.ly/3VXeR0B In der heutigen Folge verrät dir René sein persönliches 5-Schritte-System, um sich in neue Technologien einzuarbeiten. Ohne dabei die Nerven zu verlieren und ganz ohne Syntax! YouTube: https://www.youtube.com/c/Programmierenlernen Instagram: https://www.instagram.com/junus.ergin/…

1
News AI 47/25: Gemini 3.0 Pro // WeatherNext 2 // Attacken mit Agents 36:12

7d ago36:12

36:12

Die neue Gemini-Familie wurde veröffentlicht: Gemini 3.0 hält Einzug in viele Google-Produkte und ist direkt zur Nutzung bereit. Philipp erzählt von seinen eigenen Eindrücken, die er bereits über die letzten Wochen sammeln konnte. Ein weiteres Tool im Zuge der Veröffentlichung ist Antigravity zur agentenzentrierten Entwicklung. Auch von Google komm…

1
Spezialfolge : Teaser: Engineering Kiosk #221 - Mobile Game Entwicklung mit Fabi Fink von Lotum 2:32

8d ago2:32

2:32

Unser programmier.bar Crew-Mitglied Fabi war im Engineering Kiosk Podcast zu Gast und hat dort über seine Arbeit als Game Lead bei Lotum und das Thema Mobile Game Development gesprochen. Das ganze Gespräch mit Fabi und dem Team vom Engineering Kiosk Podcast findet ihr unter https://engineeringkiosk.dev/podcast/episode/221-mobile-game-entwicklung-mi…

1
CTO-Special #35: Fabian Hagen von Faaren 1:15:13

9d ago1:15:13

1:15:13

Jährlich schreiben Hunderttausende Studierende ihre Bachelor-Arbeit in Deutschland, doch nur selten entsteht daraus ein ganzes Unternehmen. Fabian Haigen, CTO bei Faaren. hat genau das geschafft. Gemeinsam mit Kommiliton:innen gründete Fabian im Rahmen einer Projektarbeit eines der ersten deutschen Mobility-Start-ups für Auto-Abos. Aus dem studenti…

1
242 - Remote arbeiten: Alltag unserer Software-Entwickler 16:11

11d ago16:11

16:11

Bewerbung für ein Erstgespräch: https://bit.ly/47fZ7fv Heute vergleichen Junus und René ihren Arbeitsalltag als Softwareentwickler, denn im Gegensatz zu Junus arbeitet unser Software-Entwickler René, so wie viele andere unserer Programmierer auch, 100% remote. Was sind Vor- und Nachteile komplett von zu Hause aus zu arbeiten? YouTube: https://www.y…

1
News 46/25: Vite+ // Google Investition & EU-Regulierung // IT Gehaltsübersicht // GitHub Octoverse Report 48:36

14d ago48:36

48:36

Am 20. November steht das nächste Meetup der programmier.bar an, meldet euch jetzt an und erfahrt alles über Headless Apps! Ihr habt die programmier.con 2025 - Web & AI Edition verpasst, aber wollt das nächste Mal unbedingt dabei sein? Dann nehmt jetzt an unserem Call for Papers teil und sichert euch einen Platz als Speaker:in auf unserem Event in …

1
Closing Remarks (godotfest2025) 10:29

14d ago10:29

10:29

As GodotFest 25 comes to a close, we’ll wrap up the conference with final thoughts, highlights from the past two days, and thank everyone who made this event possible.We’ll celebrate the amazing talks, workshops, and connections made throughout the conference, recognize our sponsors and volunteers, and look forward to the future of the Godot commun…

1
Fireside Chat – Godot’s Next Milestones (godotfest2025) 45:57

14d ago45:57

45:57

Godot has grown from a community passion project into a real alternative for professional studios. The 4.x series brought the technical groundwork — a modern renderer, new architecture, and steady performance improvements — that make larger productions viable. Now the next milestones aren’t just in the engine itself but in the surrounding ecosystem…

1
New Game+: Adding Backend Features to Your Godot Projects (godotfest2025) 39:54

14d ago39:54

39:54

Ready to unlock the next level of your Godot development? Just like New Game+ adds exciting features to enhance replay value, adding backend capabilities transforms your games from single-player experiences into connected, community-driven platforms. In this talk, we'll explore how to level up your Godot projects with robust backend features like r…

1
Unlocking Godot’s Superpower: Productivity (godotfest2025) 53:10

14d ago53:10

53:10

While working on Dome Keeper and PVKK over the past year and a half, people often ask me what I love most about Godot. My answer is always the same: productivity. In this talk I'll discuss why Productivity is even more important for indie game development than many realize and what makes Godot so good at it IF you know how to harness it. I’ll share…

1
Beyond the Loop: A Primer on Interactive Music in Godot (godotfest2025) 29:42

14d ago29:42

29:42

Unlock the **secrets of interactive music** in Godot and learn how to bridge the gap between game developers and audio creators. In this session you will discover how to use adaptive scores to transform your _gameplay_, boost the _immersion_, _replayability_, and _emotional impact_ of your project through **adaptive audio**. Covering all the _basic…

1
Mobilizing Godot (godotfest2025) 25:17

14d ago25:17

25:17

Many Godot developers push mobile to the end of their roadm - if they consider it at all. The common pattern: build for desktop, ship on Steam or itch, and think about mobile later if the project takes off. In this talk, we’ll explore how and why developers should start thinking about mobile earlier in their process.Mobile represents the largest ga…

1
Keeper to Keepers: Adding Multiplayer to Dome Keeper (godotfest2025) 50:34

14d ago50:34

50:34

The age-old wisdom for adding multiplayer to a complex single player game is: Don't.This talk will cover how we added mixed local and online multiplayer to an existing codebase of tens of thousands of lines of GDScript and how you can think about systems in your game to do the same.Licensed to the public under https://creativecommons.org/licenses/b…

1
Making Audio for a Godot Project in FMOD (godotfest2025) 51:52

14d ago51:52

51:52

As the last of the "big 3" engines still lacking an officially-supported FMOD integration plugin, Godot offers a unique working environment for sound designers and composers utilizing FMOD. In this talk, I would like to explore the advantages and disadvantages this presented when making music and SFX as a one-man audio department for the roguelike …

1
Raytracing is simple for 2D games! (godotfest2025) 50:27

14d ago50:27

50:27

2D games often struggle to match the visual appeal of 3D games, since they can't use common lighting techniques. However, these effects can be created with quite simple shaders, and they perform much better than the 3D counterparts.In this talk, I will share the lighting techniques I have implemented for my game, Blastronaut, including the new 2D r…

1
Tilemaps (godotfest2025) 48:48

14d ago48:48

48:48

This talk explores the powerful capabilities and practical challenges of working with Godot’s tilemap system, drawing from real-world experience building an open world game. From optimization techniques that keep large worlds running smoothly to the underutilized Scene Tiles feature, you’ll learn how to leverage tilemaps beyond basic level design. …

1
One Does Not Simply Ship Web Games with Godot (Yet) (godotfest2025) 26:00

14d ago26:00

26:00

Godot is growing fast, but when it comes to web game development, is it really ready for production? In this talk, I’ll explore the current state of Godot Web, focusing on what works, what breaks, and what’s missing for real-world use.I’ll walk through the actual release of a game I published on CrazyGames, sharing what it took to make it work (cus…

1
Art Direction Crash Course (for non-artists) (godotfest2025) 26:26

14d ago26:26

26:26

A talk aimed at non-artists that covers "how to art direct". We will cover basics like lighting, colors and shape language. But also teach how to stylize, what the difference between a moodboard and a reference board is and just general art knowledge that will be helpful for programmers, gamedesigners and leveldesigners.Licensed to the public under…

1
Shipping Godot: From Build to Player (godotfest2025) 51:48

15d ago51:48

51:48

Which platform should you ship and when should you branch out? This panel brings together perspectives from web, PC storefronts, consoles, and mobile to compare the main paths and what they typically ask of a Godot project. We’ll talk about assessing platform fit, what “ready for console” really looks like, how challenging different routes can be, …

المدونة الصوتية تستحق الاستماع

App Development بودكاست

المدونة الصوتية تستحق الاستماع

دليل مرجعي سريع