Register Now
Register Now

Attacking the Application Supply Chain 2025

Training Overview

Attacking the Application Supply Chain 2025 is an advanced, hands-on red team training at CSA XCON 2026, focused on real-world exploitation of modern application supply chains.

Over the last few years, application supply-chain attacks have emerged as one of the most damaging attack vectors, leading to massive financial and reputational losses across industries. As regulations and enterprise security programs evolve, it is critical for security professionals to understand how attackers exploit CI/CD pipelines, dependencies, containers, cloud platforms, and Kubernetes ecosystems and how to defend against them.

This training delivers a story-driven, lab-intensive red team experience, giving participants a full, end-to-end view of how application supply chains are compromised in real environments.

About the Training at CSA XCON 2026

This training is designed around real breach scenarios, not theory. Participants will work through CTF-style, narrative-based attack stories, where each lab represents a realistic enterprise application environment.

Key highlights include:

  • Deep offensive exploration of application supply chains
  • Attacking CI/CD, containers, Kubernetes, and cloud platforms
  • Dedicated cloud labs and sandboxes for every participant
  • Full attack lifecycle coverage: initial compromise → lateral movement → post-exploitation
  • Mapping attacks to MITRE ATT&CK and industry frameworks

This training strongly aligns with CSA XCON’s focus on practical, future-ready cybersecurity skills.

What You Will Learn

Application Supply Chain Foundations
  • Understanding modern application supply chains
  • Historical overview of major supply-chain breaches
  • Mapping supply-chain attacks to MITRE ATT&CK
Client-Side & Server-Side Supply Chain Attacks
  • Magecart-style client-side attacks
  • Server-side dependency abuse
  • Package manager and build system exploitation
  • Dependency confusion attacks
  • Cross-build injection techniques
Container Supply Chain Attacks
  • Container build system exploitation
  • Container registry attacks
  • Trojanized container images
  • Advanced container supply-chain compromise techniques
CI/CD System Attacks
  • Attacking on-prem CI systems (Jenkins, Bamboo, etc.)
  • Webhook boomerang attacks
  • Exploiting GitHub Actions and GitLab CI pipelines
  • Template abuse and dependency poisoning in CI/CD
Cloud-Native Supply Chain Attacks
  • Kubernetes supply-chain attacks (Helm, admission controllers)
  • Malicious Kubernetes Operators
  • Attacking continuous deployment services
  • Supply-chain attacks across AWS and Azure environments
2025 Edition Advanced Attacks
  • Advanced Azure DevOps supply-chain exploitation
  • Attacking Azure Function Apps and Storage pipelines
  • Deep-dive CI/CD attacks on Jenkins and GitHub Actions
  • Expanded container supply-chain attack scenarios

Hands-On CTF & Challenges

The training concludes with a 90-minute CTF-style challenge session, where participants:

  • Independently identify vulnerabilities
  • Exploit real supply-chain weaknesses
  • Validate their learning in realistic scenarios

This session ensures participants can apply techniques immediately after the training.

Training Experience & Expectations

  • Hard-core, hands-on red team training
  • Story-driven learning for deeper retention
  • Dedicated lab environments per participant
  • Realistic attack and post-exploitation scenarios
  • Strong focus on attacker mindset and lateral movement

Participants leave with a 360-degree understanding of application supply-chain attacks and defenses.

Who Should Attend

This training is ideal for:

  • Penetration testers and red teamers
  • DevSecOps and DevOps professionals
  • Cloud security engineers
  • Application security managers
  • Security architects and advanced practitioners

Skill Level

Intermediate to Advanced

Participant Requirements

Participants should have:

  • Understanding of application security (OWASP Top 10)
  • Familiarity with Linux command line
  • Basic programming knowledge
  • Basic understanding of cloud concepts
  • Personal GitHub and GitLab accounts capable of running CI/CD jobs

What Participants Will Receive

Each participant will be provided with:

  • Detailed lab instructions and slides
  • Access to dedicated cloud labs and sandboxes
  • Code snippets and setup files
  • Extended post-training lab access
  • Continued learning access for supply-chain security topics
Buy Ticket Now