Sveriges mest populära poddar
The Cybersecurity Defenders Podcast
NyheterTeknologi

#37 - A conversation about securing the build pipeline with Adnan Khan, Lead Security Engineer at Praetorian

26 min30 maj 2023

On today's episode of The Cybersecurity Defenders Podcast we are joined by security engineer Adnan Khan to talk about securing the build pipeline and explore some common vulnerabilities in enterprise Github configurations.

Organizations using GitHub Actions with self-hosted runners are at risk of attackers gaining an internal network foothold from the Internet if they compromise one developer’s personal GitHub access token. Key configuration adjustments can secure these pipelines and limit the damage from a breach.

Adnan's talk at BSidesSF: Securing the Pipeline: Protecting Self-Hosted HitHub Runners

The Cybersecurity Defenders Podcast: a show about cybersecurity and the people that defend the internet.


Fler avsnitt av The Cybersecurity Defenders Podcast

Visa alla avsnitt av The Cybersecurity Defenders Podcast
Anthropic restriction, ServiceNow incident, Fortinet credential harvesting & Ukraine accesses EU cyber reserve / Intel Chat [#333]
35 min
Last call for Defenders - How we're actually using AI in the SOC with Eric Capuano / Defender Fridays [#332]
37 min
FFmpeg's 21 zero-days, Ruby cooldown feature, Microsoft disrupted by Shai-Hulud worm & Meta AI tool compromise / Intel Chat [#331]
29 min
AI-assisted SOC training with Carlo Anez / Defender Fridays [#330]
32 min
Building practical blue team skills using AI-assisted SOC training with Bobby Ford/ Defender Fridays [#329]
31 min
"Megalodon" Malware in GitHub, Malware-Slop steals from Claude AI, 7-Eleven breach & CISA cPanel vulnerability / Intel Chat [#328]
29 min
From PentestGPT to production: The state of AI-assisted offensive security with Charles Grandjean / Defender Fridays [#327]
30 min
GitHub repositories compromised, Webworm targets Europe, fake Outlook & cybercriminal VPN / Intel Chat [#326]
24 min
How analysts use cognitive reasoning in investigations with Chris Sanders / Defender Fridays [#325]
33 min
"Dirty Frag", Canvas ransomware attack, “Mini Shai-Hulud” malware campaign & AI-developed zero-day exploit / Intel Chat [#324]
29 min

The Cybersecurity Defenders Podcast med LimaCharlie finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.