YoVDO

Understanding Exploitability with VEX, EPSS, and Other Standard Frameworks

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Software Security Courses Compliance Courses Vulnerability Assessment Courses GitOps Courses Security Automation Courses VEX Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the complexities of software security in this 32-minute conference talk from the Cloud Native Computing Foundation (CNCF). Gain a high-level overview of four essential concepts in software security: Vulnerability Exposure Factor (VEX), Exploit Probability and Severity Score (EPSS), Common Vulnerability Scoring System (CVSS), and Software Bill of Materials (SBOMs). Learn how to assess the reachability and exploitability of vulnerabilities within software applications as systems grow increasingly complex. Discover strategies for generating and managing SBOMs for compliance purposes, and explore methods for automating policy and GitOps practices to enhance security posture. Delve into the importance of understanding these frameworks to ensure robust security measures in modern software development and deployment.

Syllabus

Understanding Exploitability with VEX, EPSS, and Other Standard Frameworks - Ayse Kaya, Root


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Create an Auto-Fence Asset in Houdini - The Nodes 2
Envato Tuts+ via YouTube Your Critical System Is - Not? - Vulnerable - CSAF, VEX, SBOM and the Future of Advisories
BSidesLV via YouTube Your Software IS - NOT Vulnerable - CSAF, VEX, and the Future of Advisories
Black Hat via YouTube Towards Effective and Scalable Vulnerability Management
BSidesLV via YouTube Exploring Houdini's SOP Solver
Pluralsight