This project is about creating and publishing threat model examples.
☆429Nov 10, 2021Updated 4 years ago
Alternatives and similar repositories for threat-model-cookbook
Users that are interested in threat-model-cookbook are comparing it to the libraries listed below
Sorting:
- A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for …☆1,719Aug 2, 2024Updated last year
- A Pythonic framework for threat modeling☆1,110Feb 24, 2026Updated last week
- Agile Threat Modeling Toolkit☆727Nov 20, 2025Updated 3 months ago
- Draw.io libraries for threat modeling diagrams☆786Nov 12, 2020Updated 5 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆280Feb 17, 2026Updated 2 weeks ago
- A Continuous Threat Modeling methodology☆324Jun 24, 2022Updated 3 years ago
- threatspec - continuous threat modeling, through code☆379Dec 30, 2020Updated 5 years ago
- An open source threat modeling tool from OWASP☆1,337Updated this week
- Microsoft Threat Modeling Template files☆202Nov 28, 2022Updated 3 years ago
- Templates for the Microsoft Threat Modeling Tool☆174Aug 4, 2025Updated 7 months ago
- Application Security Automation☆527Sep 5, 2023Updated 2 years ago
- An open source, online threat modelling tool from OWASP☆484Jul 18, 2025Updated 7 months ago
- OWASP Threat Dragon core files☆29May 15, 2021Updated 4 years ago
- SAMM stands for Software Assurance Maturity Model.☆398May 17, 2022Updated 3 years ago
- OWASP Ontology-driven Threat Modelling framework☆40Jul 11, 2023Updated 2 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Aug 27, 2018Updated 7 years ago
- OWASP Foundation Threat Dragon Project Web Repository☆88Updated this week
- Segment's Threat Modeling training for our engineers☆245May 4, 2021Updated 4 years ago
- ☆124Nov 8, 2023Updated 2 years ago
- Security Champions Playbook v 2.1☆392Sep 25, 2023Updated 2 years ago
- SEDATED® Project (Sensitive Enterprise Data Analyzer To Eliminate Disclosure)☆112Jan 29, 2025Updated last year
- ☆35Mar 8, 2022Updated 3 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆69Jun 25, 2025Updated 8 months ago
- a curated list of useful threat modeling resources☆147Jun 28, 2024Updated last year
- Desktop variant of OWASP Threat Dragon☆77Jul 8, 2021Updated 4 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆884Updated this week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆181Dec 11, 2025Updated 2 months ago
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Jul 9, 2025Updated 7 months ago
- An installable desktop variant of OWASP Threat Dragon☆592Jan 29, 2026Updated last month
- The Elevation of Privilege Threat Modeling Game☆343Jun 20, 2024Updated last year
- A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems☆57Jun 19, 2025Updated 8 months ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Jan 16, 2024Updated 2 years ago
- Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exh…☆678Aug 7, 2020Updated 5 years ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.☆165Mar 14, 2023Updated 2 years ago
- Tools for security content automation, baseline tailoring, and overlay development.☆45Aug 30, 2024Updated last year
- OWASP Cloud Security - Enabling conversations through threat and control stories☆182Dec 7, 2018Updated 7 years ago
- SeaSponge is an accessible threat modelling tool from Mozilla☆281Apr 16, 2018Updated 7 years ago
- Application Security Verification Standard☆3,350Feb 27, 2026Updated last week
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,549Updated this week