SBOMs for Evil: From Software Supply Chain Documentation to an Attack Path
HTML-код
- Опубликовано: 26 авг 2024
- Presenter: Larry Pesce, Finite State
Whether someone is a technical cybersecurity professional, penetration tester, hacker, or nation-state adversary, they should join this session to learn how to incorporate SBOMs into the testing toolbox. Covering SBOM basics, formats (CycloneDX, SPDX), and real-world use cases, such as compromising IoT devices or software applications through analysis of SBOM CVE-linked components.
www.rsaconfere...