all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

The Top 10 CI/CD Security Risks and CI/CD Goat - Daniel Krivelevich - ASW #220

Add to bookmarks
Nov. 15, 2022, 5:38 p.m. |

Security Weekly (Download Only) sw-all.swsgtv.libsynpro.com

Cider Security’s recently published research of the Top 10 CI/CD Security Risks acts to identify vulnerabilities to help defenders focus on areas to secure their CI/CD ecosystem. They created a free learning tool with a deliberately vulnerable environment to demonstrate these flaws -- “CI/CD Goat”. Like similar tools, this helps appsec and devops teams gain a better understanding of major CI/CD security risks and, importantly, their appropriate countermeasures. Segment Resources: - https://www.cidersecurity.io/top-10-cicd-security-risks/ - https://github.com/cider-security-research/top-10-cicd-security-risks - https://www.cidersecurity.io/blog/research/ci-cd-goat/ - https://github.com/cider-security-research/cicd-goat Visit https://www.securityweekly.com/asw …

cd security daniel goat podcast risks security security risks top 10

Visit resource

More from sw-all.swsgtv.libsynpro.com / Security Weekly (Download Only)

Weird Al, Docker, OT, Gitlab, Credit Monitoring, Dropbox, Cisco, AI, Aaran Leyland... - SWN #383 2 hours ago | sw-all.swsgtv.libsynpro.com
podcast
Preparation: The Less Shiny Side of Incident Response - Joe Gross - ESW #360 23 hours ago | sw-all.swsgtv.libsynpro.com
podcast
RSA Conference, Verizon DBIR, funding, reports, partnerships and more - ESW #360 1 day, 9 hours ago | sw-all.swsgtv.libsynpro.com
podcast
ChatGPT Writes Exploits - PSW #827 1 day, 21 hours ago | sw-all.swsgtv.libsynpro.com
podcast
Kicking Off With Crypto - PSW #827 2 days, 9 hours ago | sw-all.swsgtv.libsynpro.com
podcast
AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN … 3 days, 2 hours ago | sw-all.swsgtv.libsynpro.com
podcast
Air Gapped! The Myth of Securing OT - Thomas Johnson - CSP #172 3 days, 4 hours ago | sw-all.swsgtv.libsynpro.com
podcast
Random Problems, Protecting Packages, and Vulns in Designs, Defaults & Data Leaks - ASW #283 3 days, 21 hours ago | sw-all.swsgtv.libsynpro.com
podcast
Meet Silver SAML: Golden SAML in the Cloud - Eric Woodruff - BSW #348 4 days ago | sw-all.swsgtv.libsynpro.com
podcast

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Intern, Cyber Security Vulnerability Management

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Compliance - Global Privacy Office - Associate - Bengaluru

@ Goldman Sachs | Bengaluru, Karnataka, India
View on infosec-jobs.com

Cyber Security Engineer (m/w/d) Operational Technology

@ MAN Energy Solutions | Oberhausen, DE, 46145
View on infosec-jobs.com

Armed Security Officer - Hospital

@ Allied Universal | Sun Valley, CA, United States
View on infosec-jobs.com

Governance, Risk and Compliance Officer (Africa)

@ dLocal | Lagos (Remote)
View on infosec-jobs.com

Junior Cloud DevSecOps Network Engineer

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com
View more jobs