Q1 CMD+CTRL UPDATE: 2 NEW COURSES AND 9 NEW LABS
Security Innovation is excited to announce the addition of two new courses and nine new labs to the CMD+CTRL training catalog for Q1 2024. These updates focus on AI Privacy and Risk, .NET Programming, Secure Android Development, Secure Coding labs based on CWE Top 25 vulnerabilities, and Host Vulnerability Scanning. All new content will be available to learners on February 14, 2024.
This release includes:
(2) New Courses
(8) IDE Code Correct Skill Labs
(1) MITRE ATT&CK® Skill Lab
(3) Updated Courses
New CMD+CTRL Courses
As always, CMD+CTRL courses provide learners with a foundational understanding of the latest issues facing software development organizations. This quarter, we are focusing on .NET Programming and Generative Artificial Intelligence.
COD 215 – Mitigating .NET Application Vulnerabilities
This course ensures that your .NET development team has the skills and knowledge to identify and address weaknesses in .NET applications, protecting them from common threats and attacks.
CYB 213 – Generative AI Privacy & Cybersecurity Risk
This course equips your organization’s Cyber Defense team with knowledge of Generative AI attack vectors and recommended mitigations, ensuring that they can identify and address cybersecurity risks associated with AI technology.
New CMD+CTRL Skill Labs
Our eight new secure coding Skill Labs are designed to help learners identify and correct insecure code based on vulnerabilities related to null pointer dereference, path traversal, and integer overflow.
We are also introducing two new labs based on tactics used by adversaries related to credential access and mitigations, as described by the MITRE ATT&CK® Framework.
LAB 201, 202, 203, 204 – Defending Applications Canonicalization
This Lab is available in 4 coding languages: Java, Python, Node.js, and C#. It trains developers to identify and mitigate canonicalization vulnerabilities.
LAB 205, 206, 207, 208 – Defending Applications Against XPath Injection
This Lab is available in 4 coding languages: Java, Python, Node.js, and C#. It helps developers identify and mitigate XPath Injection vulnerabilities.
LAB 319 – ATT&CK: Exfiltration Over C2 Channel
This lab provides a realistic environment for learners to learn and practice exfiltrating data from compromised systems.
For more information about Skill and Learn Labs, click here.
For details on course updates and enhancements, please follow this link.