adamshostack/4QuestionFrame external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

adamshostack/4QuestionFrame

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/adamshostack/4QuestionFrame)

Close

adamshostack / 4QuestionFrameView on GitHubMore

• External links
• Readme badge

Shostack's 4 Question Frame for Threat Modeling

☆170May 11, 2026Updated 2 weeks ago

Alternatives and similar repositories for 4QuestionFrame

Users that are interested in 4QuestionFrame are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• awslabs / threat-composer

  View on GitHub
  A simple threat modeling tool to help humans to reduce time-to-value when threat modeling
  ☆733Updated this week
• gschaeffer / scc-slack-messages

  View on GitHub
  Slack messages for Google Security Command Center Findings
  ☆18Jun 14, 2022Updated 3 years ago
• adamshostack / DFD3

  View on GitHub
  ☆94Sep 11, 2025Updated 8 months ago
• segmentio / threat-modeling-training

  View on GitHub
  Segment's Threat Modeling training for our engineers
  ☆246May 4, 2021Updated 5 years ago
• edgeroute / security-champion-framework

  View on GitHub
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆110Jan 16, 2024Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• GoogleCloudPlatform / scoutsuite-gcp-scan

  View on GitHub
  Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.
  ☆17Jan 5, 2026Updated 4 months ago
• Conviso-Archives / raptor

  View on GitHub
  Raptor - Web application firewall [ Stable ]
  ☆15Dec 8, 2016Updated 9 years ago
• kantega / elevation-of-mlsec

  View on GitHub
  Elevation of MLsec: a threat-modeling card game for machine learning systems
  ☆33Nov 24, 2025Updated 6 months ago
• Securityinbits / cheatsheet

  View on GitHub
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆24Jan 8, 2024Updated 2 years ago
• OWASP / www-project-pytm

  View on GitHub
  OWASP Foundation Web Respository
  ☆20Dec 22, 2025Updated 5 months ago
• WithSecureOpenSource / elevation-of-privacy

  View on GitHub
  Privacy Cards for Software Developers
  ☆54May 17, 2019Updated 7 years ago
• PedroKetzer / roadmap-appsec

  View on GitHub
  A collection of content, tips and considerations from the AppSec community to spread the word of DevSecOps and guide aspirants who don't …
  ☆27Dec 9, 2024Updated last year
• AndrewBlumhardt / SentinelReconTools

  View on GitHub
  Sentinel Recon Tools Workbook
  ☆14Aug 24, 2022Updated 3 years ago
• jptosso / coraza-server

  View on GitHub
  This is a WIP
  ☆15Jan 12, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• avishayil / cf-signer

  View on GitHub
  Tool for signing and verifying the integrity of CloudFormation templates
  ☆15Feb 16, 2023Updated 3 years ago
• aws-samples / aws-security-hub-summary-email

  View on GitHub
  Solution and deployment for recurring Security Hub Summary email to provide recipients with a proactive communication summarizing the sec…
  ☆44Oct 24, 2025Updated 7 months ago
• timb-machine / packet-monkey

  View on GitHub
  Packet Monkey is a tool to filter and classify PCAPs using Wireshark filters
  ☆11Feb 27, 2026Updated 2 months ago
• aws-samples / aws-customer-playbook-framework

  View on GitHub
  This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
  ☆656Updated this week
• aws-samples / aws-security-hub-csv-manager

  View on GitHub
  CSV Manager for AWS Security Hub exports SecurityHub findings to a CSV file and allows you to mass-update SecurityHub findings by modifyi…
  ☆18Jul 23, 2025Updated 10 months ago
• Autodesk / continuous-threat-modeling

  View on GitHub
  A Continuous Threat Modeling methodology
  ☆327Jun 24, 2022Updated 3 years ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto

  View on GitHub
  Threat Modeling Manifesto
  ☆31Jul 18, 2024Updated last year
• aws-samples / data-perimeter-policy-examples

  View on GitHub
  Example policies demonstrating how to implement a data perimeter on AWS.
  ☆204Apr 28, 2026Updated 3 weeks ago
• aws-samples / aws-security-hub-findings-export

  View on GitHub
  ☆33Jun 5, 2024Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• aws-samples / amazon-detective-multiaccount-scripts

  View on GitHub
  interact with Amazon Detective in multiple accounts and regions
  ☆31Aug 31, 2023Updated 2 years ago
• aws-samples / aws-cdk-cfn-hook

  View on GitHub
  ☆13Aug 29, 2024Updated last year
• lukehinds / policy-controller-demo

  View on GitHub
  demo of keyless signing with the sigstore kubernetes policy controller
  ☆11Sep 7, 2022Updated 3 years ago
• coreruleset / secrules_parsing

  View on GitHub
  A parser for the SecRules Langue
  ☆23Apr 30, 2026Updated 3 weeks ago
• infralicious / awesome-service-control-policies

  View on GitHub
  Awesome AWS service control policies (SCPs), Resource Control Policies (RCPs), and other organizational policies
  ☆32Updated this week
• xvnpw / ai-threat-modeling

  View on GitHub
  AI featured threat modeling and security review project
  ☆17Nov 17, 2024Updated last year
• aws-samples / awsipranges

  View on GitHub
  Work with the AWS IP address ranges in native Python.
  ☆13Sep 21, 2023Updated 2 years ago
• openai / openai-security-bots

  View on GitHub
  ☆390Apr 15, 2026Updated last month
• stacklet / tfdevops

  View on GitHub
  Terraform support for AWS DevOps Guru
  ☆21Oct 18, 2023Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• OWASP / owasp-swag

  View on GitHub
  Swag for the OWASP projects and chapters
  ☆44Updated this week
• crashbrz / BET

  View on GitHub
  Burp Enterprise Toolkit
  ☆12Feb 25, 2022Updated 4 years ago
• aws-samples / terraform-aws-identity-center-users-and-groups

  View on GitHub
  Create AWS IAM Identity Center groups, users, and group membership with Terraform.
  ☆13Apr 10, 2026Updated last month
• halidecx / fcvvdp

  View on GitHub
  Fast CVVDP implementation in C
  ☆64Updated this week
• UnityTech / unity-ssdlc

  View on GitHub
  A public version of Unity's internal SSDLC. This is only an example framework, not guaranteed to be in sync with the version currently in…
  ☆175Mar 1, 2022Updated 4 years ago
• miztiik / serverless-kms-key-rotator

  View on GitHub
  AWS KMS Encryption & Decyption using CLI & Lambda
  ☆10Apr 12, 2021Updated 5 years ago
• dougtoppin / example-aws-s3-cross-region-replication

  View on GitHub
  Example of setting up an AWS S3 bucket with Cross Region Replication using CloudFormation
  ☆15Mar 8, 2019Updated 7 years ago