- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
This is What a Software Supply Chain Looks Like!
Attackers don’t need to bust down your front door when they can slip in through your open-source modules and cloud scripts. Ever wonder how a single malicious Terraform module or overlooked package can put your entire environment at risk?
This session takes you on a supply chain security thrill ride, zeroing in on malicious modules, hidden entry points, and the real tricks threat actors use to wreak havoc across the SDLC.
Through live demos and lab walkthroughs, you’ll see exactly how attackers exploit modern DevOps stacks, and what you can do to spot the warning signs before things go sideways.
What you’ll learn:
1. Spot and squash the riskiest supply chain threats in your workflow
2. Trace attack paths with the MITRE ATT&CK framework
3. Get hands-on with Terraform and see how a bad module turns into a big problem
4. Catch (and sometimes miss) threats with static analysis, plus tips to boost your defenses
Why let attackers do all the fun stuff? Grab your terminal, fire up your curiosity, and leave with a playbook to secure your supply chain from the inside out.
#supplychain #supplychainsecurity #appsec #applicationsecurity #devsecops #appsecengineer
Видео This is What a Software Supply Chain Looks Like! канала AppSecEngineer
This session takes you on a supply chain security thrill ride, zeroing in on malicious modules, hidden entry points, and the real tricks threat actors use to wreak havoc across the SDLC.
Through live demos and lab walkthroughs, you’ll see exactly how attackers exploit modern DevOps stacks, and what you can do to spot the warning signs before things go sideways.
What you’ll learn:
1. Spot and squash the riskiest supply chain threats in your workflow
2. Trace attack paths with the MITRE ATT&CK framework
3. Get hands-on with Terraform and see how a bad module turns into a big problem
4. Catch (and sometimes miss) threats with static analysis, plus tips to boost your defenses
Why let attackers do all the fun stuff? Grab your terminal, fire up your curiosity, and leave with a playbook to secure your supply chain from the inside out.
#supplychain #supplychainsecurity #appsec #applicationsecurity #devsecops #appsecengineer
Видео This is What a Software Supply Chain Looks Like! канала AppSecEngineer
cybersecurity infosec cloud cloud security black hat blackhat usa security training aws azure google cloud gcp multicloud appsec appsecengineer application security training security devsecops SAST DAST CICD software development developers cloud engineers Devops secure coding secure code compliance PCI DSS security standards compliance training AI LLM AI security LLM security
Комментарии отсутствуют
Информация о видео
20 октября 2025 г. 20:30:35
00:02:19
Другие видео канала
Securing Critical operations in Manufacturing | Cloud Security & DevSecOps
11 things to look for in an InfoSec Training Platform
Open Source Libraries Can Kill Your Supply Chain Security
Webinar: 30 Minutes to Think Like an Attacker
How to learn Cloud Security - Step 1
Last Week in AppSec Sep 26 - Oct 3
How to Use Challenges in AppSecEngineer
Friday Fireside | Supply Chain Security - Live Demo
PDF Generator Apps Vulnerable to SSRF Attacks? #appsec #cloudsecurity #aws
Why Threat Modeling is Essential for Your AppS #genai #llm
Webinar: Danger in the Dependencies: Surviving supply chain attacks
New Courses Incoming! C/C++, Gen AI & LLM Security and More | AppSecEngineer
Webinar: 2 Stories in Cloud Security - An Exploration of Attack Detect Defense on the Cloud
What Are Secure Defaults? #appsec #securecoding
Healthcare Breaches Can KILL Your Company
Day 6: Top 6 Container Security Tips | #CybersecurityAwarenessMonth 2023
Security Parameters and Keystone Principles | Container Security | Part 12
Top Open-Source DevSecOps Tools for SAST, DAST & Cloud Security | Abhay Bhargav's Picks
You're Doing Security Hiring All Wrong. Here's Why.
Security Exploration - AWS Verified Permissions
Build Security Champions with AppSecEngineer
