This course aims to educate participants on the importance of securing the software supply chain and the various ways attackers exploit vulnerabilities in third-party software. The learning outcomes include gaining a comprehensive understanding of the attack surface, recognizing different types of supply chain attacks, and exploring solutions to minimize the attack surface. Participants will learn about real-world examples, exploit details, and categories of attacks such as Dependency Confusion and Brandjacking. The course teaches a range of tools and frameworks for handling complexity and reducing vulnerabilities, catering to developers and CISOs alike. The teaching method involves a presentation divided into two parts: showcasing the breadth of supply chain attacks and discussing practical solutions.
Overview
Syllabus
Attacking through the Software Supply Chain - Felix Leder - NDC Security 2023
Taught by
NDC Conferences
Related Courses
-
DevOps with GitHub and Azure: Implementing Software Supply Chain Security with GitHub
-
Hardening Your Soft Software Supply Chain
-
Securing Your Software Supply Chain with Sigstore
-
Bad Actors vs Our Community - Detecting Software Supply Chain Attacks
-
As Strong as the Weakest Link - Securing the Software Supply Chain
-
Adapting DevOps in a World of Growing Software Supply Chain Attacks
