YoVDO

TTPs of Attacks on OSS in Python - Trusty Package Security

Offered By: Conf42 via YouTube

Tags

Python Courses Cybersecurity Courses DevSecOps Courses Command and Control Courses Data Exfiltration Courses Supply Chain Attacks Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the tactics, techniques, and procedures (TTPs) of attacks on open-source software in Python during this comprehensive conference talk from Conf42 DevSecOps 2023. Delve into the importance of supply chain security, tracing the history of attacks and examining common TTPs. Witness live demonstrations of starjacking, installation and delivery methods, as well as exfiltration and command and control techniques. Learn about effective defense strategies to protect against these threats. Gain valuable insights into securing Python packages and enhancing overall software supply chain security.

Syllabus

intro
preamble
disclaimer
contents
why this topic is important?
history of supply-chain attacks
ttps in supply-chain attacks
starjacking demo
installation & delivery
- demo
exfiltration and c2
- demo
defences
credits and references
thank you!


Taught by

Conf42

Related Courses

Hardening Your Soft Software Supply Chain
Pluralsight Enterprise Linux Security
YouTube Supply Chain Cybersecurity: Preventing Supply Chain Attacks
LinkedIn Learning Stranger Danger - Your JavaScript Attack Surface Just Got Bigger
Snyk via YouTube I Boot when U-Boot
nullcon via YouTube