Technology, Data and Science

Threat Modeling: Spoofing In Depth

Instructor: Adam Shostack

Threat modeling is a framework for thinking about what goes wrong. Security pros and software developers should learn to threat model early in their careers, because it shapes every system they build and defend. Spoofing, pretending to be someone or something you’re not, is one of the key threats to systems. This course teaches you many of the ways in which spoofing happens, including spoofing of people, machines, file systems, and processes. As instructor Adam Shostack explains, spoofing entails many factors: what you know, who you are, where you are, who you know, and more. There’s spoofing of people and spoofing of roles, spoofing of processes or file spaces on a system, and spoofing of machine, IP, name, and TLS identities. Learning how and where these attacks take place will help you excel in your career and deliver more secure products and services.

Learn More

Related Classes

DevOps Foundations: Site Reliability Engineering

James Wickett

Site reliability engineering (SRE) is an emerging paradigm in DevOps. The biggest names in tech—companies like Google, Netflix, Microsoft, and…

Node.js: Real-Time Web with Socket.IO

Emmanuel Henri

Are you interested in building your own real-time web application, but unsure of how to get started? If so, this…

Learning Package Management with Yarn

Steven Emmerich

Get started with Yarn, the enterprise-scale JavaScript package manager from the developers at Facebook and Google. Yarn is a npm…

CASP+ Cert Prep: 1 Risk Management

Jason Dion

Earning the CompTIA Advanced Security Practitioner (CASP+) certification indicates that you possess the advanced cybersecurity knowledge needed to implement solutions…

C++ Standard Template Library

Eduardo Corpeño

The C++ Standard Template Library (STL) is a set of classes that implement many popular and commonly used algorithms and…

Linux System Engineer: Authentication with LDAP and Kerberos

Grant McWilliams

Earning the Red Hat Certified Engineer (RHCE) certification-the benchmark certification for Red Hat Enterprise Linux (RHEL)-demonstrates to both your current…

Microsoft Cognitive Services for Developers: 2 Speech

Sahil Malik

Microsoft Cognitive Services opens up artificial intelligence to every developer. Cognitive Services gives us access to powerful AI algorithms that…

SharePoint Framework for Developers: 1 Understanding the Toolchain

Sahil Malik

SharePoint Framework (SPFx) allows developers to extend SharePoint Online and SharePoint on premises, via web parts or extensions. Before diving…

Using Generics in C#

Robby Millsap

Generics were introduced to C# 2.0 in 2005. They allow programmers to write general-purpose code that is type safe, without…

Learning iOS Animations with UIKit

Harrison Ferrone

The visuals of a mobile application often determine its success. Being able to create visually appealing, customized animations in your…

Business Development Foundations: Researching Market and Customer Needs

Elizabeth (McLeod) Lotardo

Business development is the foundation of economic growth and can jump-start lasting relationships. In this course, Lisa Earle McLeod and…

Learning Cloud Computing: Networking

David Linthicum

Understanding the ins and outs of networking—how it works, how it interacts with your existing enterprise network, and how to…

AWS for Architects: High Availability and Continuous Deployment

Lynn Langit

Discover how to get your apps in front of users as soon as possible—and ensure that those same apps are…

Visual Communication for Business: The Marketer’s Secret Weapon

Amy Balliett

Visual communication is the modern marketer’s secret weapon. It tells your story without words, for a quick impact on today’s…

CMO Foundations: Driving Innovation

Drew Boyd

In most organizations, the responsibility for innovating products and services falls to the CMO. But innovation isn’t a one-person job.…

iOS Development: Architecture

Károly Nyisztor

Behind every polished iOS app is a thoughtful plan. By understanding and applying the fundamental concepts behind iOS application architecture,…

Linux Foundation Cert Prep: HTTP Services (Ubuntu)

Scott Simpson

HTTP services enable the web to function. Consequently, it’s important that Linux administrators understand how these services work. This intermediate…

Bamboo Essential Training

Aref Karimi

By applying continuous integration and delivery (CI/CD) on your projects, you can work more efficiently, quickly identify and deal with…

Qlik Sense Essential Training

Curt Frye

Qlik Sense is a cloud-based data analytics solution that helps businesses gain valuable insights into their data. In this course,…

Machine Learning and AI Foundations: Predictive Modeling Strategy at Scale

Keith McCormick

Building world-class predictive analytics solutions requires recognizing that the challenges of scale and sample size fluctuate greatly at different stages…