Explore the mindset of an attacker and learn how to identify the risks they possess.
- The mind of an attacker…or bad actor is foreign to many software developers.…We spent our lives building things…that we hope makes the world a better price.…I know that is kind of cliche,…but the reality is most of us really want to write code…that improves our business or engages our passion.…As such, we are builders and makers.…An attacker, however, has a very different mindset.…They want to tear down what you have built.…
Now, their motivations can be all over the place,…and while it is important to understand these motivations,…the simple fact that they want to tear down what we build…is very hard for many developers to grasp.…So part of writing secure code…is understanding the mindset of the attacker.…The first component is looking…at why they want to break your code.…Now, the reasons can be as many as the stars in the sky,…but each attacker has a reason.…
Most attacks we hear about seem to be financial in purpose,…but attacks happen for other reasons,…things like political motivations,…revenge, or building credit…
AuthorFrank P Moley III
- Understanding attackers and risks
- Documenting your risks
- Issues related to web client–server interactions
- Issues related to thick app and client–server interactions
- Authorization and cryptography issues
- Implementing security in each phase of the software development life cycle
Skill Level Beginner
What you need to know1m 35s
1. Security and Risk Overview
2. Web Client Server Interaction Code Issues
3. Thick App and Client-Server Interaction Issues
4. Crypto and Security Misuse Issues
5. Security in the SDLC
Next steps2m 10s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.