Kurtis Velarde
Build Security
Container Security
Runtime Security
Linux & Systems
Build Security
SBOM generation, vulnerability scanning, and supply chain security
Debian Package Supply Chain Example
Building and serving malicious Debian packages with Docker to demonstrate supply chain attack vectors
Docker and YARA Malware Scanning in the SDLC
Setting up a lab to test Docker images for malware using YARA pattern matching rules
Left SDLC, Right Runtime
Optimizing container workflows in DevOps with an overview of SDLC and runtime management
Vulnerability & SBOM Scanning with Syft and Grype
SBOM generation, vulnerability scanning, and malware detection using Syft, Grype, and YARA in CI/CD workflows