Official Website link
Date: December 10, 2025
Event: BlackHat Europe 2025 Arsenal
Presenter: Anant Shrivastava
SBOM Play is a browser-first, privacy-aware SBOM visualization and enrichment tool designed to showcase the real potential of SBOMs beyond just vulnerability tracking.
Instead of relying on server-side infrastructure or custom scripts, SBOM Play runs entirely in the browser. It enables users to extract SBOMs from GitHub repositories, enrich them with data from osv.dev, and analyze dependencies across repositories and organizations in a unified view.
Whether it’s reducing tech debt, surfacing redundant packages, or evaluating license compliance, SBOM Play makes software inventory exploration accessible to developers, security engineers, and decision-makers alike.
Resources
- Live URL: SBOM Play
- Source Code: GitHub Repository