Create A Set Of Potential Threats Using The STRIDE Threat Model

Simon Tomes's profile
Simon Tomes

Community Team

Challenge Description

In this challenge, you’ll be provided with a system model diagram and some requirements (links below).

Your goal is to create a set of potential threats using the STRIDE Threat Model.

For example:

  • Spoofing a person. A hacker takes over an account, impersonates someone from the hotel chain and sends a phishing message.
  • Tampering with a network. A hacker modifies data flowing over the network and books 100 rooms on behalf of someone else instead of 1 room, just for the fun of it! 
     

Use the following before and during the challenge:

What you’ll learn
  • Use a model to rapidly create a set of potential threats

Resources

Arabic Ask Me Anything - Performance/Security Testing with Mohamed Tarek
Unmasking Security: Seeing Through the Eyes of an Attacker - Saskia Coplans
Getting Started in Security Testing
Allure Report Got More than 3700 Stars at the GitHub
This open-source tool is the #1 Automation Test Reporting Tool loved by the community and the developing team plans to share their knowledge via a learning course. Stay tuned!
Explore MoT
TestBash Brighton 2024
TestBash Brighton 2024
Thu, 12 Sep 2024, 9:00 AM
We’re shaking things up and bringing TestBash back to Brighton on September 12th and 13th, 2024.
MoT Foundation Certificate in Test Automation
MoT Foundation Certificate in Test Automation
Unlock the essential skills to transition into Test Automation through interactive, community-driven learning, backed by industry expertise