• No notifications yet.
  • Sign Out
logo image
  • logo image
Registered User? Login
Forgot Password?
Sign Up
loader image
New User? Sign Up
Forgot Password?
Login
loader image

    Pre-Conference Training

    Join us on Tuesday, May 15th at 10:30 am for pre-conference training designed to help you maximize the value your organization gets from Black Duck's open source security and management solutions.

    Throughout the day you'll benefit from hands-on training by product experts and interact with fellow customers during in-depth product discussions.

    Training is €200.

    Integrating Black Duck Hub into your SDLC

    Whether new to Black Duck or a seasoned user, this is the perfect opportunity to learn from Black Duck product experts in a hands-on environment.  We’ll focus on the critical steps in building out a Black Duck Hub environment to quickly realize value from your investment.

    We’ll install Black Duck Hub within a Docker environment using popular Docker orchestration tools and review how to navigate the Hub user interface and perform basic administrative options for configuring users, groups, and project access.

    Learn how easy it is to include Black Duck Hub during all phases of the software development workflow, including leveraging Black Duck IDE and binary repository plug-ins to uncover open source risk during the development phase. You’ll discover how to identify risk during the application build process by configuring Hub Detect as part of a continuous integration workflow.


    With scan results in hand, we’ll review

    ·      Best practices on reviewing your scan results

    ·      Determining where to focus your vulnerability remediation efforts

    ·      How to compare risk from one project version to another.

     

    You’ll implement Black Duck Hub Policy Management to create rules to flag high risk code and review exceptions in your projects. We’ll then showcase the triage, review, and editing features available for your project Bill of Materials. We’ll also experiment with different ways to share and notify others of your scan results by connecting Hub to external systems like your JIRA issue tracking systems.

     

    We’ll conclude by examining how to extract meaningful project data from Hub and by connecting it to an external reporting tool via the Black Duck Hub Report Database.

    Identifying Open Source Components Using Protex

    Take advantage of this unique opportunity to hone code identification practices, in a hands-on environment. We will be focusing on process and efficiency when performing ID’s as well as tips, tricks, and shortcuts provided by a Black Duck expert.  We will begin by outlining how Protex generates results from a scan, and then transitioning those results into a Bill of Materials that has value to the organization as well as your customers. We will be focusing on strategies for performing identifications, as well as scan strategies to eliminate unnecessary or undesirable results.  We’ll talk about the different methods that can be leveraged in Protex to cut down on the volume of manual identification required.  This session is expected to be interactive. Please bring your laptop! You will have access to a Protex server and will have the ability to walk through the scenarios discussed.

    In addition, any use cases that you or your users regularly experience, we can discuss and evaluate.


    What you Will Learn:

    • Overview of the Black Duck Knowledgebase
    • How the KnowledgeBase uses code prints
    • Getting Started with Identification
    • Bulk or Mass ID’s
    • Determining an Interesting vs. an Uninteresting Match
    • Utilizing Rapid ID
    • How to use Learned ID’s
    • Declare vs. Code Match
    • Leveraging Patterns
    • Utilizing String Search for additional discoveries
    • Reporting

    Register Now

Powered by  Bizzabo
Looking for your ticket? Contact the organizer
Powered by  Bizzabo
Looking for your ticket? Contact the organizer