Secure SDLC Project
Practice your secure Software Development Life Cycle (SDLC) skills as your progress through four exercises. This project focuses on the three phases taught as part of Secure SDLC Learning Path: Secure Design, Secure Build and Secure Validation. In exercise 1, you'll download the Microsoft Threat Modeling Tool to practice a threat modeling approach. Exercise 2 focuses on using static application security testing using VCG (VisualCodeGrepper)​ and explores how to uncover the vulnerabilities in the source code (Java with Spring framework). Exercises 3 and 4 focus on white-box security testing​ and requires both automated tool-based analysis and manual analysis to explore the code in order to confirm the flaws that are possible in the web application.