YoVDO

TTPs of Attacks on OSS in Python - Trusty Package Security

Offered By: Conf42 via YouTube

Tags

Python Courses Cybersecurity Courses DevSecOps Courses Command and Control Courses Data Exfiltration Courses Supply Chain Attacks Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the tactics, techniques, and procedures (TTPs) of attacks on open-source software in Python during this comprehensive conference talk from Conf42 DevSecOps 2023. Delve into the importance of supply chain security, tracing the history of attacks and examining common TTPs. Witness live demonstrations of starjacking, installation and delivery methods, as well as exfiltration and command and control techniques. Learn about effective defense strategies to protect against these threats. Gain valuable insights into securing Python packages and enhancing overall software supply chain security.

Syllabus

intro
preamble
disclaimer
contents
why this topic is important?
history of supply-chain attacks
ttps in supply-chain attacks
starjacking demo
installation & delivery
- demo
exfiltration and c2
- demo
defences
credits and references
thank you!


Taught by

Conf42

Related Courses

DevOps CI/CD Pipeline: Automation from development to deployment
Universidad Anáhuac via edX DevOps Pipeline: Automatización hasta el despliegue
Universidad Anáhuac via edX Exploring the Benefits of Continuous Security and Compliance for Cloud Infrastructure
Pluralsight Integrating Incident Response into DevSecOps
Pluralsight DevSecOps: Building a Secure Continuous Delivery Pipeline
LinkedIn Learning