SBOMs for Evil: From Software Supply Chain Documentation to an Attack Path

Поделиться
HTML-код
  • Опубликовано: 26 авг 2024
  • Presenter: Larry Pesce, Finite State
    Whether someone is a technical cybersecurity professional, penetration tester, hacker, or nation-state adversary, they should join this session to learn how to incorporate SBOMs into the testing toolbox. Covering SBOM basics, formats (CycloneDX, SPDX), and real-world use cases, such as compromising IoT devices or software applications through analysis of SBOM CVE-linked components.
    www.rsaconfere...

Комментарии •

Следующие
Автовоспроизведение
What Hacking the Planet Taught Us About Defending Supply Chain Attacks48:56What Hacking the Planet Taught Us About Defending Supply Chain Attacks
What Hacking the Planet Taught Us About Defending Supply Chain AttacksRSA Conference
Просмотров 296
The Price is WRONG - An Analysis of Security Complexity49:42The Price is WRONG - An Analysis of Security Complexity
The Price is WRONG - An Analysis of Security ComplexityRSA Conference
Просмотров 1,3 тыс.
Operation Binder: Secrets of Inter-Process Communication42:54Operation Binder: Secrets of Inter-Process Communication
Operation Binder: Secrets of Inter-Process CommunicationLaurieWired
Просмотров 145 тыс.
New Mexico Lobos vs. Montana State Bobcats Highlights | CFB on FOX12:39New Mexico Lobos vs. Montana State Bobcats Highlights | CFB on FOX
New Mexico Lobos vs. Montana State Bobcats Highlights | CFB on FOXCFB ON FOX
Просмотров 97 тыс.
The Most UNFAIR Minecraft Base06:02The Most UNFAIR Minecraft Base
The Most UNFAIR Minecraft BaseKenadian The Cat
Просмотров 308 тыс.
[DOKKAN BATTLE] Worldwide Campaign Announcement Video04:55[DOKKAN BATTLE] Worldwide Campaign Announcement Video
[DOKKAN BATTLE] Worldwide Campaign Announcement VideoBandai Namco Entertainment
Просмотров 118 тыс.
I Tried Breakfast From Every State In America37:01I Tried Breakfast From Every State In America
I Tried Breakfast From Every State In AmericaJoshua Weissman
Просмотров 1,3 млн
NSA Backdoor in Windows? This and more from the guy who created Windows Task Manager!53:11NSA Backdoor in Windows? This and more from the guy who created Windows Task Manager!
NSA Backdoor in Windows? This and more from the guy who created Windows Task Manager!David Bombal
Просмотров 462 тыс.
Reality Defender: CEO Ben Colman on Deepfake Detection28:29Reality Defender: CEO Ben Colman on Deepfake Detection
Reality Defender: CEO Ben Colman on Deepfake DetectionSecure Ventures
Просмотров 333
The Clever Way to Count Tanks - Numberphile16:45The Clever Way to Count Tanks - Numberphile
The Clever Way to Count Tanks - NumberphileNumberphile
Просмотров 1 млн
DEF CON 30 - Sam Bent - Tor - Darknet Opsec By a Veteran Darknet Vendor48:29DEF CON 30 - Sam Bent - Tor - Darknet Opsec By a Veteran Darknet Vendor
DEF CON 30 - Sam Bent - Tor - Darknet Opsec By a Veteran Darknet VendorDEFCONConference
Просмотров 328 тыс.
The moment we stopped understanding AI [AlexNet]17:38The moment we stopped understanding AI [AlexNet]
The moment we stopped understanding AI [AlexNet]Welch Labs
Просмотров 959 тыс.
Encrypting Data in the Browser - Exploring Web Crypto APIs by Aakansha Doshi33:32Encrypting Data in the Browser - Exploring Web Crypto APIs by Aakansha Doshi
Encrypting Data in the Browser - Exploring Web Crypto APIs by Aakansha DoshiJSConf
Просмотров 34 тыс.
AI, the Software Supply Chain, and Other (Not So) Puzzling Pieces37:08AI, the Software Supply Chain, and Other (Not So) Puzzling Pieces
AI, the Software Supply Chain, and Other (Not So) Puzzling PiecesRSA Conference
Просмотров 167
Navigating M&A Security Challenges: A Deep Dive into a Case Study49:40Navigating M&A Security Challenges: A Deep Dive into a Case Study
Navigating M&A Security Challenges: A Deep Dive into a Case StudyRSA Conference
Просмотров 97
The European Way To Resilience: CRA(ck), SBOM(b) & AdviSor®y18:20The European Way To Resilience: CRA(ck), SBOM(b) & AdviSor®y
The European Way To Resilience: CRA(ck), SBOM(b) & AdviSor®yS4 Events
Просмотров 337
REAL MADRID 3 - 0 REAL VALLADOLID CF | RESUMEN LALIGA EA SPORTS03:11REAL MADRID 3 - 0 REAL VALLADOLID CF | RESUMEN LALIGA EA SPORTS
REAL MADRID 3 - 0 REAL VALLADOLID CF | RESUMEN LALIGA EA SPORTSLALIGA EA SPORTS
Просмотров 6 млн
ПАВЕЛ ДУРОВ АРЕСТОВАН1:45:21ПАВЕЛ ДУРОВ АРЕСТОВАН
ПАВЕЛ ДУРОВ АРЕСТОВАНSVTV
Просмотров 114 тыс.
Lp. Сердце Вселенной #2 ГЛАВНЫЙ КРИСТАЛЛ [Связь Вселенной] • Майнкрафт25:14Lp. Сердце Вселенной #2 ГЛАВНЫЙ КРИСТАЛЛ [Связь Вселенной] • Майнкрафт
Lp. Сердце Вселенной #2 ГЛАВНЫЙ КРИСТАЛЛ [Связь Вселенной] • МайнкрафтMrLololoshka (Роман Фильченков)
Просмотров 936 тыс.
Whoa01:00Whoa
WhoaJustin Flom
Просмотров 22 млн
Cute kitty gadgets 💛00:24Cute kitty gadgets 💛
Cute kitty gadgets 💛TheSoul Music Family
Просмотров 12 млн
Как Алип забил в свои ворота | #Зенит #Футбол #СПБ00:28Как Алип забил в свои ворота | #Зенит #Футбол #СПБ
Как Алип забил в свои ворота | #Зенит #Футбол #СПБЗЕНИТ
Просмотров 2,4 млн
ЛИШЕ ПОСЛУХАЙТЕ ЦЮ РОСІЯНКУ. "Украинские военные настоящие полковники"00:28ЛИШЕ ПОСЛУХАЙТЕ ЦЮ РОСІЯНКУ. "Украинские военные настоящие полковники"
ЛИШЕ ПОСЛУХАЙТЕ ЦЮ РОСІЯНКУ. "Украинские военные настоящие полковники"Ми - Україна
Просмотров 653 тыс.
Оригинальный способ подобрать кольцо @stas.yornik01:00Оригинальный способ подобрать кольцо @stas.yornik
Оригинальный способ подобрать кольцо @stas.yornikСтас Ёрник
Просмотров 2,1 млн