Open Source Security – Vulnerabilities Never Come Alone
Offered By: Hack In The Box Security Conference via YouTube
Course Description
Overview
Explore the challenges and vulnerabilities of open source security in this comprehensive talk from the Hack In The Box Security Conference. Delve into Fermin J. Serna's insights on code quality, security practices, and the findings of the Semmle Security Research Team's three-month triage of open source CVEs. Learn about the use of QL for variant analysis and discover specific case studies, including the u-boot research. Gain valuable knowledge from Serna's extensive experience as a security expert, including his roles at Google, Microsoft, and as CSO at Semmle. Examine topics such as backdoors, package managers, Linux kernel buffer overflows, and WiFi framing vulnerabilities. Enhance your understanding of open source security challenges and solutions through this informative presentation.
Syllabus
Introduction
Who is Fermin
Open Source Security
CB System
Backdoor
Package Manager
Importing Packages
Open Source Software
GitHub
Linux Kernel Buffer Overflow
Deep Dive
Research Query
Uboot
NFS
Research Journey
If Check
Double Neural
Seabees
WiFi Framing
CW1200
CFG811
Recap
QA
Taught by
Hack In The Box Security Conference
Related Courses
Browser Hacking With ANGLEHack In The Box Security Conference via YouTube Can A Fuzzer Match A Human
Hack In The Box Security Conference via YouTube Biometrics System Hacking in the Age of the Smart Vehicle
Hack In The Box Security Conference via YouTube ICEFALL - Revisiting A Decade Of OT Insecure-By-Design Practices
Hack In The Box Security Conference via YouTube Fuzzing the MCU of Connected Vehicles for Security and Safety
Hack In The Box Security Conference via YouTube