Video

Learn how Travis McPeak is building an AppSec program that's both effective and non-disruptive to the engineering team's workflow.

Learn how top security leaders think about using AI code assistants to achieve the shift-left dream, increase release velocity, and build developer trust.

Learn how Zebra Technologies builds a successful Product Security program by using reachability and risk ranking to prioritize critical vulnerabilities, making fixes fast and building developer trust.

Learn about common patterns and tradeoffs for security pipelines in this introductory webinar.

Watch this 30-minute on-demand webinar to learn about changes to PCI DSS that impact OSS vulnerability management.

Watch this 30-minute on-demand webinar to learn how to Endor Labs supports a Software Supply Chain Security program.

Watch this 30-minute on-demand webinar to learn using strong cryptographic artifact signatures to enable strong admission control, provenance, and traceability that support effective security, quality, and compliance programs.

Watch this 30-minute on-demand webinar to learn how reachability analysis works.

In this short video we demonstrate how to use Endor Labs and GitHub Advanced Security to manage and prioritize open source risk.

In this short video we demonstrate how to ingest 1st and 3rd party software bills of material, manage them centrally, and detect new vulnerabilities in a timely manner.

In this short video we demonstrate how to use Endor Labs to produce SBOM and VEX documents.

In this short video we demonstrate how to use DroidGPT to research open source packages in a conversational manner.

In this short video we demonstrate how to use Endor Labs to discover if your organization has leaked valid secrets and provide developers with instructions for resolving the leak.

In this short video we demonstrate how to use Endor Labs for reachability-based SCA and noise reduction.

In this on-demand webinar, get an in-depth reachability analysis for Python, Go, and C#. Watch now.

In this on-demand webinar we discuss the key research findings from our 2022 report "State of Dependency Management."

In this on-demand video we discuss open source dependency management and considerations for implementing AppSec programs to protect OSS.

In this on-demand webinar we help you understand the basics of dependency management and how they can be vulnerable to security risks.

In this on-demand webinar, we share research on the variation in SBOMs depending on tool and when the documents are generated.

In this on-demand webinar, we explain the role of static analysis of open source dependencies in an application security program.