This talk analyzes a static analysis tool called Semgrep and how it can be leveraged to find different vulnerabilities in a variety of languages. The presentation details how to best tailor Semgrep rule creation to automate bug analysis with several examples and visuals.
Speaker: Ethan Morchy
Speaker Bio: Hardware/Software Penetration Tester at Somerset Recon