YoVDO

Why Security Fails and How to Solve It - Lessons from Real-World Assessments

Offered By: OWASP Foundation via YouTube

Tags

Cybersecurity Courses DevSecOps Courses Command Injection Courses Access Control Courses Cloud Security Courses Security Assessment Courses Vulnerability Management Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore why security often fails and discover practical solutions in this 24-minute OWASP Foundation talk by Richard Ford, CTO of Praetorian. Delve into real-world examples from security assessments, ranging from basic cloud misconfigurations to sophisticated nation-state level attacks. Learn valuable lessons from the field and understand how these insights can be translated into open-source products. Examine whether security truly needs to be as challenging as it often appears, or if smarter approaches can simplify the process. Gain actionable steps to enhance your security practices, including insights on versioning, automation, access control, and low-noise tools. Discover the concept of LocalExec and its implications for command injection vulnerabilities. Conclude with an introduction to SnowCamp and practical solutions to common security challenges.

Syllabus

Intro
About Praetorian
Lessons from the real world
Versioning
Broken cycle
Automation
Broken access control
Low noise tools
Command injection
What is LocalExec
The moral of the story
Introducing SnowCamp
Closing thoughts
Solutions


Taught by

OWASP Foundation

Related Courses

Cybersecurity and Its Ten Domains
University System of Georgia via Coursera
Bases de données relationnelles : Comprendre pour maîtriser
Inria (French Institute for Research in Computer Science and Automation) via France Université Numerique
Desarrollo de Aplicaciones Web: Seguridad
University of New Mexico via Coursera
Web Application Development: Security
University of New Mexico via Coursera
Computing, Storage and Security with Google Cloud Platform
Google via Coursera