Completed
supply chain attacks
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Supply Chain Attacks: Focusing on NPM Vulnerabilities - DevSecOps 2023
Automatically move to the next video in the Classroom when playback concludes
- 1 intro
- 2 preamble
- 3 about danish
- 4 disclaimer
- 5 supply chain
- 6 software supply chain
- 7 supply chain attacks
- 8 examples
- 9 npm node package manager
- 10 maintainer email address takeover
- 11 significance of maintainer email - recently
- 12 process - attacker's perspective
- 13 defensive strategy for projects or companies
- 14 research - wordl-wide-how
- 15 hassan intro
- 16 research - npm packages domains
- 17 impact!!!
- 18 gap that could be filled
- 19 ruby gems research approach
- 20 vulnerable ruby gem
- 21 hardest part!
- 22 some fun stuff!
- 23 another tool: script to detect dependency confusion
- 24 gemscanner
- 25 solutions
- 26 any questions?
- 27 thank you!