all InfoSec news
Bomber - Scans Software Bill Of Materials (SBOMs) For Security Vulnerabilities
KitPloit - PenTest Tools! www.kitploit.com
bomber is an application that scans SBOMs for security vulnerabilities.
Overview
So you've asked a vendor for an Software Bill of Materials (SBOM) for one of their closed source products, and they provided one to you in a JSON file... now what?
The first thing you're going to want to do is see if any of the components listed inside the SBOM have security vulnerabilities, and what kind of licenses these components have. This will help you identify what kind …
bill bomber scans security software software bill of materials spdx supply chain supplychain syft vulnerabilities vulnerability scanners