Explore a real-world case study of identifying, exploiting, and fixing dependency confusion vulnerabilities in a package environment. Learn from Jessica Smith and Justin Engler's 30-minute conference talk at Security BSides San Francisco 2024 as they share practical insights on addressing this known security issue. Gain valuable knowledge on how to effectively deliver the right packages and protect your systems from potential attacks. Discover the steps taken to implement large-scale solutions in a production environment, moving beyond theoretical discussions to actionable strategies for securing your software supply chain.
Snow Nor Rain Nor Dependency Confusion - How to Deliver the Right Package
Security BSides San Francisco via YouTube
Overview
Syllabus
BSidesSF 2024 - Snow Nor Rain Nor Dependency Confusion: How to... (Jessica Smith, Justin Engler)
Taught by
Security BSides San Francisco
Related Courses
-
Software Supply Chain Security: Understanding and Mitigating Package Ecosystem Attacks
-
Security Concerns in Every Stage of the Software Supply Chain
-
Supply Chain Attacks: Focusing on NPM Vulnerabilities - DevSecOps 2023
-
Bad Actors vs Our Community - Detecting Software Supply Chain Attacks
-
Secure Software Supply Chains for Python
-
Attacking and Defending Supply Chains - How We Got Admin in Your Cloud
