Artifacts

Secure Software Delivery with CI/CD Pipelines CI/CD pipelines help protect software as it moves from code to production. They standardize steps and checks, so security is built in, not added at the end. A well-designed pipeline catches problems early and reduces risk for users and teams. Automation also reduces human error and speeds up response when something goes wrong. With clear rules, every change goes through the same safe path, making compliance easier too. ...

Malware Analysis for Incident Responders Malware analysis for incident responders helps teams understand a threat quickly, preserve evidence, and guide containment. The aim is to learn how the malware behaves, what it touches on the system, and which parts of the network it tries to reach. A practical approach balances speed with careful evidence handling, so investigators can act without causing unnecessary disruption. Triage and containment set the frame for safe analysis. Start by identifying the affected host, user context, and time of discovery. Isolate the machine if possible, but preserve memory and disk state for later review. Collect volatile data such as running processes, open network connections, and clipboard content before you detach. Document the initial scope and any related alerts from security monitoring. ...

Secure Software Supply Chain Management Software today is built from many parts: open source libraries, internal code, container images, and automation tools. Each link in this chain can introduce risk if it is not managed properly. Secure software supply chain management means protecting every step from code to production. Begin with an SBOM, a clear list of all components in a build. An SBOM helps you see what is included, where it comes from, and what licenses apply. It also makes it easier to spot outdated or vulnerable pieces. This document also aids audits and customer trust. ...