Explore real-world threat modeling scenarios and learn from practical experiences in this conference talk. Delve into the fundamentals of threat modeling, design flaws, and security controls. Examine case studies on integration challenges, step-up authentication vulnerabilities, and password storage issues. Discover how developers address security concerns and analyze the implications of production web farms using session databases. Investigate one-time password implementations, multi-factor authentication for remote access, and load balancing server side-effects. Assess secure connection vulnerabilities and potential attack vectors on systems and datacenters. Evaluate asset identification in gaming contexts and strategies for exploiting leaderboard systems. Gain valuable insights to enhance your threat modeling skills and improve overall security practices.