GitHub Advanced Security: Securing the World's Software - Lecture
Offered By: GOTO Conferences via YouTube
Course Description
Overview
Explore GitHub Advanced Security's role in empowering developers to secure the world's software in this comprehensive talk from GOTO Copenhagen 2023. Delve into the three main pillars of GitHub's security approach: finding vulnerabilities in code through CodeQL static analysis, preventing credential leaks with secret scanning, and securing open-source dependencies. Learn about real-world security breaches, including a Fortnite account hack, to understand the importance of robust security measures. Discover how GitHub leverages AI to enhance code security and get insights into the CodeQL community. Gain valuable knowledge about modern software security practices and tools to protect your projects from potential threats.
Syllabus
Intro
Hacking Fortnite accounts
1. Your code
2. Your code dependencies
3. Secrets for service dependencies
GitHub advanced security
CodeQL
CodeQL Community
Outro
Taught by
GOTO Conferences
Related Courses
CodeQL Roundtable: Leveraging Static Analysis for Bug BountiesBugcrowd via YouTube Discover Vulnerabilities with CodeQL
HackerOne via YouTube Event-based Fuzzing, Patch-based Research, and Comment Police - Finding Bugs Through a Bug
Black Hat via YouTube Protect Your Code with GitHub Security Features
GOTO Conferences via YouTube Security as Code - A DevSecOps Approach
NDC Conferences via YouTube