Open Source Libraries Can Kill Your Supply Chain Security

AppSecEngineer

description

Sign up NOW: https://www.blackhat.com/asia-24/training/schedule/index.html#attacking-the-application-supply-chain----edition-35974

Did you know you could get compromised if you forgot to include the version number when importing third-party libraries? This is an attack called Dependency Confusion, and here's a tiny slice of what you'll be learning in my course at Black Hat Asia on April 16-17, 2024.

This is a 2-day, purely attack-based course designed to help you understand every step of your software supply chain and how to secure it.

What you'll learn:

Client-side Supply Chain attacks
Server-side dependency attacks
Trojanizing Containers
Attacks against CI Services
Attacking Kubernetes clusters through malicious Operators

...and so much more. There's less than 2 weeks left, don't miss out!

Grab your seat today: https://www.blackhat.com/asia-24/training/schedule/index.html#attacking-the-application-supply-chain----edition-35974 ... https://www.youtube.com/watch?v=ildAANgIkoI

created

2024-03-29

staked

0.0 LBC

license

Copyrighted (contact publisher)

File size

57083188 Bytes