Overview
Explore a detailed technical presentation that examines software supply chain attacks from an attacker's perspective, with particular focus on vulnerabilities in open-source systems. Learn why commercial supply chain security measures are becoming more effective while open-source software supply chains remain challenging to secure. Through live demonstrations, discover various attack vectors and their execution methods, while gaining valuable insights into defensive strategies and countermeasures. Gain practical knowledge about identifying and mitigating unique supply chain weaknesses to better protect software development pipelines.
Syllabus
The Simple, Yet Lethal, Anatomy of a Software Supply Chain Attack - Erez Yalon, Checkmarx
Taught by
OpenSSF