The financial and logistical impact of COVID mean there are fewer internships available this year, and some companies have even had to withdraw earlier offers. The impact of this “lost summer” will be significant: those missing out in 2020 will be at a serious disadvantage when they enter the market. The harm could last years, since their CVs will be weaker, their networks smaller, their skills less sharp.
The Lost Summer Bootcamp will address the harm of lost internships in 2020.
A group of companies and individual volunteers will run a multi-week cyber security bootcamp this summer, providing many of the same benefits as an internship. Participants will work on practical challenges which stretch their technical skills and round out soft skills.
As part of the boot camp there will be a 4 week long project focused on Secure development. This repository with serve as the main landing page and documentation location for that project.
Secure development is a practice to ensure that the code and processes that go into developing applications are as secure as possible. Secure development entails the utilization of several processes, including the implementation of a Security Development Lifecycle (SDL) and secure coding itself.
To that end students of the course undertaking this project will partake in a project that is focused on SDL best practices using open source tools and github version control to learn how to build application securely and inline with industry best practices.
This project is expected to take 4 week approx.
- A working internet connection.
- The ability to join a Google meeting via an application or a browser
- A laptop or desktop computing machine with the following software installed.
- Git: download from here
- Integrated development Environment (IDE)
- An account on Github.com sign up here
- A sense of humor and a willingness to learn, this will be educational and technically challenging but also fun :).
Class will meet with Mentors on Monday and Thursday @ 11 for 1 hour. During this time mentors will discuss the project and the weeks tasks that were due for completion and focus on the next upcoming topic.
The first session on Thursday 23rd July will include a mentor introduction and understanding of the current knowledge of the students.
We are expecting to see active conversations on the lost summer slack channel in relation to the project. We are allow going to assess the project as we process to incorporate student feedback and also ensure all students are enjoying the experience.
It is envisaged that each student will fork this repo into their github personal accounts. Please see below workflow for visualization of workflow and what is expected.
This workflow and any questions will be addressed at the project launch meeting on Thursday 23rd July. One of the goals of this project is to teach students real life security and code management principles and this workflow is common in the software industry.
Weekly agenda in each weekly folder.
Project is focused with:
- Github - Verion Control
- Github Actions - CI
- Kotlin - Applcation Software
- MobSF: SAST / DAST / FUZZ