Remediate the Flag Practical Application Security Training Andrea - - PowerPoint PPT Presentation

β–Ά
remediate the flag
SMART_READER_LITE
LIVE PREVIEW

Remediate the Flag Practical Application Security Training Andrea - - PowerPoint PPT Presentation

Jun 02, 2023 119 likes β€’220 views

Remediate the Flag Practical Application Security Training Andrea Scaduto info@remediatetheflag.com github.com/sk4ddy/remediatetheflag AppSec Training for Developers Developing secure software is a key component in enterprise defense

slide-1
SLIDE 1

Remediate the Flag

Practical Application Security Training

Andrea Scaduto

info@remediatetheflag.com github.com/sk4ddy/remediatetheflag

slide-2
SLIDE 2

AppSec Training for Developers

  • Developing secure software is a key component in enterprise

defense strategy.

  • AppSec training is part of cyber security programs for most

companies operating in regulated industries.

  • Companies still suffering from 20 year old vulnerabilities.
  • Assessing competency in secure development is challenging
  • Hard to measure ROI for AppSec training
slide-3
SLIDE 3

AppSec Training, today.

In Class Training Computer Based Training

βœ“ Provides real-world examples π˜† Expensive (Cost / Time) π˜† Often a one time event π˜† No hands-on examples βœ“ Scales well for large companies π˜† Lacks the scope and depth to cover companies’ technology.

slide-4
SLIDE 4

Subject divider Subject divider

AppSec Training, tomorrow.

  • Open source platform to teach modern secure

coding practices.

  • Candidates learn how to identify, exploit and

remediate security issues.

  • Same familiar environment and tools used at

the workplace.

  • Dedicated desktop accessed in seconds

through a web browser.

slide-5
SLIDE 5

Subject divider Subject divider Subject divider

Tailored Exercises

  • Exercises address the most prevalent security

issues and can focus on:

  • Exploitation
  • Remediation
  • Secure Coding
  • Multiple tech stacks supported
  • New exercises can be easily integrated
slide-6
SLIDE 6

Subject divider Subject divider Subject divider

Engaging and Interactive

  • Real-time results & automated scoring
  • Points, Trophies & Leaderboard
  • Time-boxed Tournaments
slide-7
SLIDE 7

Subject divider

Measure ROI for Training

  • Measure real competency in secure

coding and remediation

  • Metrics allow for rapid discovery and

closure of gaps

  • User
  • Team
  • Region
  • Organization
slide-8
SLIDE 8

Live Demo

  • 1. Start an exercise
  • 2. Exploit vulnerability
  • 3. Remediate code
  • 4. Check results
slide-9
SLIDE 9

100% Hands-on Training Open Source Platform Automated Deployment on AWS New Features Coming Soon Exercise Hub Exercise Creation SDK

info@remediatetheflag.com github.com/sk4ddy/remediatetheflag