filmov
tv
Dependency Confusion as an Attack Vector (Cybersecurity heads-up!)
Показать описание
This is a quick cybersecurity-related rant. Or rather, a short shoutout to get you to check this latest attack that's out there, using developer laptops and CICD pipelines as an attack vector. Do you have a security tool scanning your packages for known vulnerabilities as a part of your pipeline? Nice, but it's not going to protect you.
If you don't know the term 'dependency confusion' yet - time to read about it. You can watch my short video as an intro, then educate yourself with the links below. Believe me, this is a nasty one, and every software dev should know about this, pretty much.
Here are the links in this video:
If you don't know the term 'dependency confusion' yet - time to read about it. You can watch my short video as an intro, then educate yourself with the links below. Believe me, this is a nasty one, and every software dev should know about this, pretty much.
Here are the links in this video:
Dependency Confusion Explained - New Supply Chain Attack
Dependency Confusion with AWS CodeArtifact
Dependency Confusion in 3 minutes with PoC
Dependency Confusion Attack to RCE PoC🔥 #makeYourFirstRCE
Dependency Confusion Attack: How Apple, Microsoft and Other Companies Were Compromised
Dependency Confusion | Bug Bounty POC | Lazy Pentester
$130,000+ Learn New Hacking Technique in 2021 - Dependency Confusion - Bug Bounty Reports Explained
What Is dependency confusion | How to Find dependency confusion | Live Practical
What is Dependency Confusion?
Python Dependency Confusion (Demystified)
Dependency Confusion as an Attack Vector (Cybersecurity heads-up!)
Package Dependency Confusion Vulnerability | Advance Bug Bounty Tutorials | Hindi🔥Part 1 #bugbounty...
All about Dependency Confusion(Substitution Attack) | Episode0x5 | CyberWeekly Serices
Dependency Confusion: POC upload tutorial for npm & live Attack Demonstration
Dependency Confusion Pt. 2 | Final Part | Exploiting Dependency Injection
NPM Dependency Confusion How I Achieved Remote Code Execution | Bug Bounty POC
Part 2 Package Dependency Confusion Vulnerability | Advance Bug Bounty Tutorials | Hindi #bugbounty
BSidesSF 2024 - Snow Nor Rain Nor Dependency Confusion: How to... (Jessica Smith, Justin Engler)
Open Source Software Supply Chain Attacks – The Straightforward Approach of Dependency Confusion
How Raman Mohurle Earned $$$$ with Dependency Confusion | Podcast : Episode -1 #bugBounty
Protecting my Node.js project of dependency confusion attacks
Dependency confusion and its cure. A NuGet story
Dependency Confusion LAB&Demo [Arabic]
Dependency Confusion - einfach erklärt - Cybersecurity Attacks
Комментарии