Loading…
This event has ended. Visit the official site or create your own event on Sched.
View analytic
Wednesday, May 24 • 2:00pm - 5:00pm
Continous Fixing - don't just find vunerabilities, fix them LIMITED

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
Limited Capacity seats available

Full Session Description:

In this hands-on class, students will start by packaging a sample application and publishing it to Artifactory. They will then learn how to use JFrog Xray to index the application and exploit the component graph to scan for known vulnerabilities and other issues. Next they will use Snyk to retrieve the contextual information about the vulnerability itself, and will have a hands-on session actually exploiting the vulnerabilities on this application. The vulnerability exploiting section will be followed by using Snyk to remediate the vulnerabilities, then re-publish the application to Artifactory and lastly see vulnerabilities were removed with JFrog Xray. This is a half day class.

 

 

 

Who should attend:  

Application Security Engineers, DevOps engineers and Developers who are looking to get hands-on experience of using JFrog Xray and Snyk to detect and fix vulnerabilities in their open source dependencies and binaries.

Technical Requirements:

Please bring your own laptop, power cables, USB devices etc.

This class will require a Github account.  During the class you will have to grant snyk permissions on github for at least access to public repositories.  If you don’t feel comfortable doing this with your usual Github account, please have an alternate github account you can use for the class. 

Speakers
avatar for Mark Galpin

Mark Galpin

Senior Product Manager, JFrog
Mark Galpin is a Senior Solution Engineer at JFrog, experts in binary management and distribution making the products JFrog Artifactory, JFrog Bintray, and JFrog Xray. Before coming to JFrog in 2015, he spent eight years working on software, interoperability, and data standards as... Read More →
avatar for Guy Podjarny

Guy Podjarny

CEO, Snyk
Guy Podjarny (@guypod) is the cofounder and CEO at Snyk.io focusing on securing open source code. Guy was previously CTO at Akamai following their acquisition of his startup, Blaze.io. Prior to that, Guy worked on the first web app firewall & security code analyzer, and dealt with... Read More →


Wednesday May 24, 2017 2:00pm - 5:00pm
Culinary Institute of America 500 1st Street Napa, CA 94559