About the Client
The client is a leading developer of vendor neutral professional certification courses for the cyber security industry. The client certification courses instill basic and advanced rules of cyber security and provide in-depth training on penetration testing, incident handling, network forensic and disaster recovery. Their certification courses are known to comply with the private, government and military institutional specifications.
The client faced challenges in old application due to a complex UI that made it difficult to train attendees. The client decided to revamp the UIUX to make it easier to train users. As part of the training, the client also wanted two versions of a dummy application to be developed – one is secure mode, and the other in unsecure mode. This would enable students to understand and overcome the top 6 OWASP vulnerability threats such as:
- SQL Injection
- Broken Authentication and Session Management
- Cross-Site Scripting (XSS)
- Insecure Direct Object References
- Security Misconfiguration
- A6-Sensitive Data Exposure
Need help with a Java Application Modernization project?Contact Silicus Sales
Silicus developed and delivered a web based and highly customizable training application, accessible from any remote system over the internet. The application was designed to eliminated the need to download the upgraded version on every computer i.e. if the client needs any upgradation in the system, it only needs to done on the host computer to be used by the trainer; all the other computers used by the attendees will be updated automatically.
Silicus designed a clean, simple and interactive UX for the application, in line with its need to train cyber security professionals. The training process designed was highly succinct with clearly defined training steps. The color scheme was carefully chosen to make the layout features clear and precise.
The application was architected to easily switch between secure and unsecure mode to demonstrate the vulnerability threats. The application clearly defined ownership in case of a threat with defined escalation paths to the higher authority.
The application was pre-configured on a virtual machine for ease of deployment. Codes were ready to use in one set-up, saving deployment time.
MS SQL Server
Revamped UX for Intuitive Use
The web based training application designed by Silicus clearly demonstrated vulnerability threats and its route of attack in an unsecure mode.
Easy to Use
The application clearly demonstrated the different vulnerability threats in the easiest ways. This helped the attendees to better understand the methods to secure the system and thereby increase the effectiveness of the training