YoVDO

A Radiography of a SBOM Vulnerability Scanner

Offered By: Devoxx via YouTube

Tags

Voxxed Days Courses Software Development Courses Cybersecurity Courses Supply Chain Security Courses Vulnerability Scanning Courses Software Bill of Materials (SBOM) Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the critical importance of Software Bill of Materials (SBOM) in cybersecurity and supply chain management through this informative conference talk. Delve into the aftermath of Log4Shell and SpringShell vulnerabilities, and understand the significance of the US President's Executive Order 140028 and the EU's NIS2 directive in shaping cybersecurity practices. Learn about the effective use of SBOMs, including their capabilities, appropriate tools, implementation strategies, and underlying mechanisms. Discover how SBOMs surpass traditional dependency scanning in vulnerability resolution and offer comprehensive protection. Gain insights into integrating SBOMs into DevSecOps pipelines and leveraging their intelligence across various organizational roles. Examine practical examples focusing on Syft for SBOM generation and format transformation, as well as comparing Grype and bomber for vulnerability scanning and intelligence gathering.

Syllabus

[VDIASI23] - Olimpiu Pop & Steve Poole - A radiography of a SBOM vulnerability scanner


Taught by

Devoxx

Related Courses

From SBOM to Trusted Software Supply Chain - How Far Are We?
Association for Computing Machinery (ACM) via YouTube
Transparency in the Software Supply Chain - Making SBOM a Reality
Black Hat via YouTube
SBOM is Here - Making Progress - Not Excuses
BSidesLV via YouTube
How Software Transparency Can Help Save the World
Security BSides San Francisco via YouTube
DBOM and SBOM - New Options for Better Supply Chain Cybersecurity
RSA Conference via YouTube