📊 Training Statistics
Aggregate performance across all users and sessions
19
Total Sessions
52.4%
Global Avg Score
5.3%
Pass Rate (≥75%)
15
Active Scenarios
1 Web Application Threat Model Intermediate
16
sessions
53.1%
avg score
6.2%
pass rate
AVERAGE SCORES
Threat ID
32.6%
Risk Rating
62.1%
Controls
85.5%
Total
53.1%
STRIDE HIT RATE
D
59.4%
E
53.1%
I
56.2%
R
50.0%
S
55.0%
T
52.1%
TOP MISSED THREATS
1. R Insufficient Server-Side Logging missed 9×
2. S JWT Secret Compromise → Token Forgery missed 9×
3. T JWT Algorithm Confusion Attack missed 9×
4. T SQL Injection missed 9×
5. I Sensitive Data Stored Unencrypted missed 9×
2 CI/CD Pipeline Threat Model Advanced
1
sessions
73.0%
avg score
0.0%
pass rate
AVERAGE SCORES
Threat ID
70.0%
Risk Rating
67.0%
Controls
85.0%
Total
73.0%
STRIDE HIT RATE
E
100.0%
I
100.0%
R
100.0%
S
100.0%
T
100.0%
3 Mobile App + Backend API Intermediate
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
4 Cloud Infrastructure (AWS/Azure) Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
5 Microservices Architecture Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
6 Authentication System Intermediate
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
7 IoT Device + Cloud Gateway Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
8 Internal Corporate Network Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
9 Travel Booking Platform Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
10 Healthcare Patient Portal Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
11 Mobile Banking / FinTech Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
12 E-commerce Marketplace Intermediate
1
sessions
40.0%
avg score
0.0%
pass rate
AVERAGE SCORES
Threat ID
19.0%
Risk Rating
61.0%
Controls
59.0%
Total
40.0%
STRIDE HIT RATE
D
100.0%
E
0.0%
I
33.3%
R
0.0%
S
0.0%
T
50.0%
TOP MISSED THREATS
1. T Magecart Payment Skimmer via Third-Party Script missed 1×
2. S Account Takeover via Credential Stuffing missed 1×
3. E Coupon and Promo Code Abuse via Automation missed 1×
4. T Shopping Cart Price Manipulation via Negative Quantity missed 1×
5. E Order IDOR Accessing Other Customers Orders missed 1×
13 Government Digital Services Portal Advanced
1
sessions
33.0%
avg score
0.0%
pass rate
AVERAGE SCORES
Threat ID
7.0%
Risk Rating
85.0%
Controls
33.0%
Total
33.0%
STRIDE HIT RATE
E
0.0%
I
0.0%
R
0.0%
S
0.0%
T
20.0%
TOP MISSED THREATS
1. S Citizen Identity Spoofing — Impersonating Another Citizen missed 1×
2. T Citizen Data Scraping — Case Reference Enumeration missed 1×
3. E eIDAS Identity Broker Authentication Bypass missed 1×
4. S eIDAS Token Replay — Reusing Expired Assertion missed 1×
5. E Case Record IDOR — Accessing Another Citizens Benefits Case missed 1×
14 Supply Chain / B2B Integration Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.
15 Cryptocurrency Marketplace Advanced
0
sessions
0%
avg score
0%
pass rate
No sessions recorded for this scenario yet.