The Threat Modeling Intermediate course extends the fundamental security concepts defined with STRIDE, including various methodologies such as PASTA and CVSS. End-to-end security solutioning, including architecture and design, are presented using the Microsoft Security Development Lifecycle. You will also learn to understand, design, and plan security solutions using Data Flow diagrams (DFD) and Attack Trees. The Microsoft Threat Modeling tool is an effective and invaluable resource for security modeling, analyzing, and risk mitigation. Security Cards are an effective tool for learning STRIDE from various perspectives, including adversarial attack techniques.
There are no prerequisites for this course.
2 Days/Lecture & Lab
The audience for this course is any individual with minimal to moderate experience with STRIDE.
- Microsoft Security Development Lifecycle (SDL)
- Other Security Concepts
- Microsoft Threat Modeling Tool
- Security Cards