NEW
- NEW OWASP course templates - build upon your developer’s knowledge and security awareness. (CONTENT)
- OWASP Top 10 Introduction - a new and more robust introduction to the OWASP Top 10 for developers including 10 missions (for each category in OWASP) as well as videos and challenges.
-
- Program Certification Level 5 with missions - focusing on OWASP 6-10 containing easy, medium, and hard missions and hard challenges.
- NEW Video: Path Traversal vulnerabilities - Prevent attackers from getting unauthorized access to files on your webserver. In this video learn how to identify and review file system interactions within an application. If an attacker can influence the path being accessed by the server, they may be able to gain unauthorized access to files or even execute arbitrary code on the server. (CONTENT)
- Get actionable secure coding guidance to resolve vulnerabilities faster - with our two new integrations. (INTEGRATIONS)
- GitLab Integration: Get more out of your GitLab’s scan results, by linking to highly relevant coding challenges - selected based on vulnerability descriptions and CWE IDs.
-
- Synopsys Seeker Integration: Developers can get a deeper understanding of the vulnerability and how it should be resolved with access to secure coding explainer videos and training links in the Online Training tab findings from Seeker.
IMPROVEMENTS
- Serving improved quality content to help your developers get the most out of their training. (CONTENT)
- Improved challenge content quality for Java: Basic and Java: Spring.
-
- Improved challenge selection/prioritization for Training/Assessments/Courses: challenges will be prioritized based on quality and served to developers based on the ‘thumbs up’ rating developers provide as feedback.
- Report on the progress and success of your application security program with improved Training metrics. (CONTENT)
- Removed the ‘time played’ requirement for ‘Security Maturity’ - this metric will now focus purely on how well a developer is progressing in their training rather than how long they’ve spent on the platform.
- Aligned metrics - ‘Accuracy’, ‘Time spent’, ‘Challenges played’ and ‘Confidence Level’ to Courses metrics, ensuring consistent metrics across the whole platform.
If you have any questions on how this update may affect your reporting for Training Metrics, please contact customer support.
Comments
0 comments
Article is closed for comments.