Complete Guide to SBOM: Software Bill of Materials | Udemy

Understand What’s Inside Your Software — Before Attackers Do

Modern applications are built using hundreds of third-party components.
But do you really know what’s inside your software?

This is where SBOM (Software Bill of Materials) comes in.

In this course, you’ll learn how SBOM brings visibility, security, and compliance to today’s complex software supply chains.

What You’ll Learn

• What an SBOM is and why it matters
• How modern software supply chains work
• The risks of dependencies and third-party components
• Real-world attacks like the SolarWinds hack and the Log4Shell vulnerability
• Key SBOM standards:
  • SPDX
  • CycloneDX
  • SWID
• How SBOM supports compliance with:
  • Executive Order 14028
  • EU Cyber Resilience Act
• How to generate SBOM using Syft for:
  • Javascript
  • Java
  • Python
  • Docker Containers
• How to scan SBOMs for vulnerabilities using Grype

Why This Course Matters

Software supply chain attacks are rising—and organizations are under pressure to:

• Improve transparency
• Manage vulnerabilities faster
• Meet regulatory requirements

Who This Course Is For

• Developers wanting to understand security risks
• DevOps and IT professionals
• Anyone interested in software supply chain security

Requirements

• Basic computer knowledge
• No prior SBOM or security experience needed

Real-World Impact

By the end of this course, you’ll understand:

• How companies detect vulnerabilities faster
• How governments enforce software transparency
• Why SBOM is becoming a global standard