Open Source Security – Vulnerabilities Never Come Alone
Offered By: Hack In The Box Security Conference via YouTube
Course Description
Overview
Explore the challenges and vulnerabilities of open source security in this comprehensive talk from the Hack In The Box Security Conference. Delve into Fermin J. Serna's insights on code quality, security practices, and the findings of the Semmle Security Research Team's three-month triage of open source CVEs. Learn about the use of QL for variant analysis and discover specific case studies, including the u-boot research. Gain valuable knowledge from Serna's extensive experience as a security expert, including his roles at Google, Microsoft, and as CSO at Semmle. Examine topics such as backdoors, package managers, Linux kernel buffer overflows, and WiFi framing vulnerabilities. Enhance your understanding of open source security challenges and solutions through this informative presentation.
Syllabus
Introduction
Who is Fermin
Open Source Security
CB System
Backdoor
Package Manager
Importing Packages
Open Source Software
GitHub
Linux Kernel Buffer Overflow
Deep Dive
Research Query
Uboot
NFS
Research Journey
If Check
Double Neural
Seabees
WiFi Framing
CW1200
CFG811
Recap
QA
Taught by
Hack In The Box Security Conference
Related Courses
Learn to Program: Crafting Quality CodeUniversity of Toronto via Coursera 数据结构与算法 Data Structures and Algorithms
Peking University via Coursera 数据结构与算法第一部分 | Data Structures and Algorithms Part 1
Peking University via edX Software Construction in Java
Massachusetts Institute of Technology via edX Advanced Software Construction in Java
Massachusetts Institute of Technology via edX