diff --git a/3.2-misp-galaxy/content.tex b/3.2-misp-galaxy/content.tex
index b4ffffe..4c55cad 100644
--- a/3.2-misp-galaxy/content.tex
+++ b/3.2-misp-galaxy/content.tex
@@ -238,23 +238,29 @@
           \end{adjustbox}
 \end{frame}
 
+\begin{frame}[fragile]
+        \frametitle{Galaxy JSON matrix-like}
+        \includegraphics[width=0.9\linewidth]{screenshots/galaxy-matrix.png}
+\end{frame}
+
 \begin{frame}[fragile]
         \frametitle{Galaxy JSON matrix-like}
         \begin{adjustbox}{keepaspectratio}
-            \begin{lstlisting}[language=json,firstnumber=1]
+            %\lstset{emph={kill_chain_order},emphstyle=\textbf}
+            \begin{lstlisting}[language=json,firstnumber=1,escapechar=@]
         {
   "description": "Universal Development and Security Guidelines as Applicable to Election Technology.",
   "icon": "map",
-  "kill_chain_order": {
-    "example-of-threats": [
-      "setup | party/candidate-registration",
-      "setup | electoral-rolls",
-      "campaign | campaign-IT",
-      "all-phases | governement-IT",
-      "voting | election-technology",
-      "campaign/public-communication | media/press"
-    ]
-  },
+  @\textbf{\color{red}"kill\_chain\_order": \{}@             @\textbf{\color{black}\textbackslash\textbackslash Tab in the matrix}@
+      @\textbf{\color{red}"example-of-threats": [}@       @\textbf{\color{black}\textbackslash\textbackslash Column in the matrix}@
+      @\textbf{\color{red}"setup | party/candidate-registration",}@
+      @\textbf{\color{red}"setup | electoral-rolls",}@
+      @\textbf{\color{red}"campaign | campaign-IT",}@
+      @\textbf{\color{red}"all-phases | governement-IT",}@
+      @\textbf{\color{red}"voting | election-technology",}@
+      @\textbf{\color{red}"campaign/public-communication | media/press"}@
+    @\textbf{\color{red}]}@
+  @\textbf{\color{red}\},}@
   "name": "Election guidelines",
   "namespace": "misp",
   "type": "guidelines",
@@ -268,14 +274,14 @@
 \begin{frame}[fragile]
         \frametitle{Cluster JSON matrix-like}
         \begin{adjustbox}{keepaspectratio}
-            \begin{lstlisting}[language=json,firstnumber=1]
+            \begin{lstlisting}[language=json,firstnumber=1, escapechar=@]
 {
       "description": "DoS or overload of party/campaign registration, causing them to miss the deadline",
       "meta": {
         "date": "March 2018.",
-        "kill_chain": [
-          "example-of-threats:setup | party/candidate-registration"
-        ],
+         @\textbf{\color{red}"kill\_chain": [}@ @\textbf{\color{black}\textbackslash\textbackslash Define in which column the cluster should be placed}@
+           @\textbf{\color{red}  "example-of-threats:setup | party/candidate-registration"}@
+         @\textbf{\color{red}],}@
         "refs": [
           "https://www.ria.ee/sites/default/files/content-editors/kuberturve/cyber_security_of_election_technology.pdf"
         ]
diff --git a/3.2-misp-galaxy/screenshots/galaxy-matrix.png b/3.2-misp-galaxy/screenshots/galaxy-matrix.png
new file mode 100644
index 0000000..fbf1ade
Binary files /dev/null and b/3.2-misp-galaxy/screenshots/galaxy-matrix.png differ
diff --git a/README.md b/README.md
index 3d39cd4..e0147e6 100644
--- a/README.md
+++ b/README.md
@@ -32,6 +32,7 @@ given to the materials. We welcome contributions in order to improve the trainin
 | [a.5-decaying-indicators](https://www.misp-project.org/misp-training/a.5-decaying-indicators.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.5-decaying-indicators) |
 | [a.6-forensic](https://www.misp-project.org/misp-training/a.6-forensic.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.6-forensic) |
 | [a.7-rest-API](https://www.misp-project.org/misp-training/a.7-rest-API.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.7-rest-API) |
+| [a.8-dev-hands-on.pdf](https://www.misp-project.org/misp-training/a.8-dev-hands-on.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.8-dev-hands-on) |
 | [b.1-best-practices-in-threat-intelligence](https://www.misp-project.org/misp-training/b.1-best-practices-in-threat-intelligence.pdf) | [source](https://github.com/MISP/misp-training/tree/master/best-practices-in-threat-intelligence)
 
 ### Complementary materials
diff --git a/build.sh b/build.sh
index c03bae5..9169e57 100755
--- a/build.sh
+++ b/build.sh
@@ -1,7 +1,7 @@
 #!/bin/bash
 #
 
-slidedecks=("0-misp-introduction-to-information-sharing" "1-misp-usage" "1.2-misp-integration" "1.1-misp-viper-integration" "1.2.1-misp-integration-mail2misp" "2-misp-administration" "3-misp-taxonomy-tagging" "3.1-misp-modules" "3.2-misp-galaxy" "3.3-misp-object-template" "6.0-misp-dashboard" "a.0-contributing" "a.1-devintro" "a.2-pymisp" "a.3-misp-feed" "a.4-best-practices" "a.5-decaying-indicators" "a.6-forensic" "a.7-rest-API" "b.1-best-practices-in-threat-intelligence")
+slidedecks=("0-misp-introduction-to-information-sharing" "1-misp-usage" "1.2-misp-integration" "1.1-misp-viper-integration" "1.2.1-misp-integration-mail2misp" "2-misp-administration" "3-misp-taxonomy-tagging" "3.1-misp-modules" "3.2-misp-galaxy" "3.3-misp-object-template" "6.0-misp-dashboard" "a.0-contributing" "a.1-devintro" "a.2-pymisp" "a.3-misp-feed" "a.4-best-practices" "a.5-decaying-indicators" "a.6-forensic" "a.7-rest-API" "b.1-best-practices-in-threat-intelligence" "a.8-dev-hands-on")
 mkdir output
 export TEXINPUTS=::`pwd`/themes/
 echo ${TEXINPUTS}