The Security Development Lifecycle Developer Starter Kit

Build a Customized SDL Training Program for Your Development Teams

The SDL Developer Starter Kit offers 14 content modules (with speaker notes, presenter guides, and sample comprehension questions) plus eight MSDN virtual labs with lab manuals—all created to help you build a customized SDL training program for your development teams.

Download the complete SDL Developer Starter Kit or identify from a catalog of training materials available the areas that will enable your organization to increase its SDL maturity, improve application and service security, and reduce customer risk.

Design Phase

Secure Design Principles(.zip)

Threat Modeling Principles(.zip)

Threat Modeling Tool 2014 Principles(.zip)

SQL Injection Vulnerabilities(.zip) Bonus!               

Cross-Site Scripting Vulnerabilities(.zip) Bonus!               

Buffer Overflows(.zip) Bonus!               

Implementation Phase

Secure Implementation Principles(.zip)

Banned APIs(.zip)

Code Analysis(.zip) Bonus!       

Source Code Annotation Language(.zip) Bonus!       

Compiler Defenses(.zip) Bonus!               

SQL Injection Vulnerabilities(.zip) Bonus!       

Cross-Site Scripting Vulnerabilities(.zip) Bonus!       

Buffer Overflows(.zip) Bonus!       

Verification Phase

Secure Verification Principles(.zip)

Security Code Review(.zip) Bonus!       

Fuzz Testing(.zip) Bonus!       

SQL Injection Vulnerabilities(.zip) Bonus!       

Cross-Site Scripting Vulnerabilities(.zip) Bonus!       

Buffer Overflows(.zip) Bonus!