OWASP/threat-modeling-playbook external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

OWASP/threat-modeling-playbook

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/OWASP/threat-modeling-playbook)

Close

OWASP / threat-modeling-playbookView on GitHubMore

• External links
• Readme badge

☆37Mar 8, 2022Updated 4 years ago

Alternatives and similar repositories for threat-modeling-playbook

Users that are interested in threat-modeling-playbook are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• OWASP / www-project-threat-modeling

  View on GitHub
  OWASP Foundation Web Respository
  ☆22Updated this week
• Toreon / Threat-Modeling-Tool-Directory

  View on GitHub
  This directory focuses exclusively on Threat Modeling Tools—software, code, libraries, or services that automate, guide, or support the d…
  ☆22May 2, 2026Updated 3 weeks ago
• iriusrisk / IriusRisk-Central

  View on GitHub
  Provides content useful for IriusRisk threat modelling, including templates, API scripts, libraries and more.
  ☆16Apr 20, 2026Updated last month
• bitrise-steplib / step-template

  View on GitHub
  Step template - DEPRECATED, please use the `step` plugin and its built in template instead (https://github.com/bitrise-core/bitrise-plugi…
  ☆10Dec 1, 2023Updated 2 years ago
• OWASP / www-project-integration-standards

  View on GitHub
  OWASP Foundation Web Respository
  ☆28Dec 22, 2025Updated 5 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• Toreon / threat-model-playbook

  View on GitHub
  ☆88Jul 28, 2021Updated 4 years ago
• threatspec / threatspec

  View on GitHub
  threatspec - continuous threat modeling, through code
  ☆385Dec 30, 2020Updated 5 years ago
• OWASP / threat-model-cookbook

  View on GitHub
  This project is about creating and publishing threat model examples.
  ☆428Nov 10, 2021Updated 4 years ago
• OWASP / awscanner

  View on GitHub
  Finds internet-exposed resources in an AWS account
  ☆18Sep 1, 2024Updated last year
• mllamazares / STRIDE-vs-ASVS

  View on GitHub
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆76Aug 22, 2024Updated last year
• appsecco / owasp-threat-dragon-gitlab

  View on GitHub
  OWASP Threat Dragon with Gitlab Integration
  ☆27Nov 6, 2017Updated 8 years ago
• mike-goodwin / owasp-threat-dragon-core

  View on GitHub
  OWASP Threat Dragon core files
  ☆11Jan 26, 2026Updated 4 months ago
• OWASP / Security-Champions

  View on GitHub
  ☆19Feb 3, 2026Updated 3 months ago
• we45 / RoboZap

  View on GitHub
  ☆32May 22, 2023Updated 3 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• BlazingWind / OWASP-ASVS-4.0-testing-guide

  View on GitHub
  ☆125Nov 8, 2023Updated 2 years ago
• Threagile / threagile

  View on GitHub
  Agile Threat Modeling Toolkit
  ☆764Apr 8, 2026Updated last month
• OWASP / TimeGap-Theory

  View on GitHub
  An auto-scoring capture-the-flag game focusing on TOCTOU vulnerabilities
  ☆21Oct 28, 2020Updated 5 years ago
• ayeks / devsecops-reference-architectures

  View on GitHub
  A collection of DevSecOps reference architectures
  ☆72Feb 7, 2021Updated 5 years ago
• kerberosmansour / InfoSecOpenAIExamples

  View on GitHub
  InfoSec OpenAI Examples
  ☆19Nov 26, 2023Updated 2 years ago
• jeevan-singh / Security-Engineering-Training

  View on GitHub
  ☆35Dec 10, 2020Updated 5 years ago
• semgrep-old / rules-owasp-asvs

  View on GitHub
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Nov 2, 2020Updated 5 years ago
• OWASP / cornucopia

  View on GitHub
  The source files and tools needed to build the OWASP Cornucopia decks in various languages
  ☆126Updated this week
• we45 / Gauge-OWASP-ZAP

  View on GitHub
  Example of using Gauge and OWASP ZAP for test automation
  ☆11Jan 9, 2020Updated 6 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• abhishekpanthee / quantum-database

  View on GitHub
  This project demonstrates the concept of a quantum database using Cirq. The quantum database stores binary data in quantum qubits, and op…
  ☆16Apr 12, 2026Updated last month
• rusakovichma / TicTaaC

  View on GitHub
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆72Jun 25, 2025Updated 11 months ago
• contrastsecurity / contrast

  View on GitHub
  CodeSec by Contrast - The fastest and most accurate SAST scanner. Scan code and serverless environments
  ☆19Apr 23, 2026Updated last month
• dr-kino / BraveCoverage

  View on GitHub
  Code coverage startup for C++ project using GCov and LCov
  ☆14Jun 4, 2021Updated 4 years ago
• OWASP / threat-dragon

  View on GitHub
  An open source threat modeling tool from OWASP
  ☆1,465Updated this week
• dehydr8 / elevation-of-privilege

  View on GitHub
  An online multiplayer version of the Elevation of Privilege (EoP) threat modeling card game
  ☆161Apr 22, 2026Updated last month
• Robotti-io / copilot-security-instructions

  View on GitHub
  ✨ A customizable copilot-instructions.md ruleset & prompts to guide GitHub Copilot toward secure coding defaults in Java, Node.js, C# and…
  ☆41May 17, 2026Updated last week
• offensive-actions / terraform-provider-statefile-rce

  View on GitHub
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆63Jan 25, 2025Updated last year
• OWASP / www-project-security-champions-guidebook

  View on GitHub
  OWASP Foundation Web Respository
  ☆23Oct 9, 2025Updated 7 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• eduardomourar / fiati

  View on GitHub
  Fiati music font with Fingering Diagram for multiple musical instruments
  ☆21Oct 31, 2023Updated 2 years ago
• OWASP / www-project-pytm

  View on GitHub
  OWASP Foundation Web Respository
  ☆20Dec 22, 2025Updated 5 months ago
• microsoft / ignite25-LAB571-build-a-pizza-ordering-agent-with-microsoft-foundry-and-mcp

  View on GitHub
  ☆35Jan 22, 2026Updated 4 months ago
• codific / sammy

  View on GitHub
  SAMMY Open Source v2
  ☆14Feb 6, 2025Updated last year
• yellbuy / go-ec-openapi

  View on GitHub
  电商平台API
  ☆12Feb 6, 2026Updated 3 months ago
• m00dy / pam-backdoor

  View on GitHub
  pam-backdoor allows you to login any account by your password if the box uses pam_unix or let me say /etc/passwd
  ☆12May 3, 2013Updated 13 years ago
• OWASP / www-project-citizen-development-top10-security-risks

  View on GitHub
  OWASP Citizen Development Top 10
  ☆76Apr 9, 2026Updated last month