Learning Center
Featured topic
Software Bill of Materials (SBOM)
A comprehensive list of components in a software product.
Read moreSlopsquatting
Slopsquatting
Typo-based attack targeting mistyped package names to spread malware.
Social Engineering
Social Engineering
Manipulating people into revealing confidential info or performing unsafe actions.
Software Bill of Materials (SBOM)
Software Bill of Materials (SBOM)
A comprehensive list of components in a software product.
Software Bill of Materials (SBOM) for Healthcare & Medical Devices
Software Bill of Materials (SBOM) for Healthcare & Medical Devices
SBOMs relation to healthcare and medical devices.
Software Composition Analysis
Software Composition Analysis
Assessing third-party components for security risks.
Software Supply Chain Risk Management
Software Supply Chain Risk Management
Identifying and mitigating risks in the software supply chain.
Software Supply Chain Security
Software Supply Chain Security
Learn the basics about software supply chain security.
Static Analysis
Static Analysis
Reviewing code without executing it to find vulnerabilities.
Supply Chain Attack
Supply Chain Attack
An attack targeting vulnerabilities in the supply chain.
T
Telemetry
Telemetry
Collecting data from systems for analysis and monitoring.
Threat Intelligence
Threat Intelligence
Gathering and analyzing information on cyber threats.
Threat Modeling
Threat Modeling
Identifying and evaluating potential security threats.
Tokenization
Tokenization
Replacing sensitive data with non-sensitive substitutes.
Transitive Dependencies
Transitive Dependencies
Indirect third-party components that your application inherits through its direct dependencies.
Typosquatting
Typosquatting
Registering mistyped domain/package names to trick users into installing malicious content.
U
Universal Trust
Universal Trust
A security model ensuring trust across systems and networks.
Update Management
Update Management
Processes for timely deployment of software updates.
User Behavior Analytics
User Behavior Analytics
Analyzing user actions to detect anomalies and threats.
V
VEX - Vulnerability Exploitability eXchange
VEX - Vulnerability Exploitability eXchange
A format for sharing whether a vulnerability affects specific software components.
Verification
Verification
Confirming that systems meet specified security standards.
Version Control Security
Version Control Security
Protecting the integrity of source code repositories.
Vulnerability Landscape
Vulnerability Landscape
A vulnerability in your external software supply chain exposes your dependencies to supply chain attacks.
Vulnerability Scanning
Vulnerability Scanning
Automated scanning for known security weaknesses.
W
Webhook Security
Webhook Security
Securing automated communication endpoints between applications.
Workflow Security
Workflow Security
Securing business processes and automated workflows.
X
X.509 Certificates
X.509 Certificates
Digital certificates that use the X.509 standard for authentication.
XML Security
XML Security
Protecting XML data and processes from exploitation.
XZ Utils
XZ Utils
A lossless data compression utility; linked to a major supply chain backdoor incident.
Y
YAML Security
YAML Security
Securing configuration files written in YAML format.
YARA Rules
YARA Rules
Rules used to identify and classify malware.
Z
Zero Trust
Zero Trust
A security framework that assumes no implicit trust.
Zero-Day Vulnerability Management
Zero-Day Vulnerability Management
Processes to detect and mitigate previously unknown vulnerabilities.
Want to learn more about Kusari?