An extensive list of resources related to threat modelling. Gotta catch ’em all!
☆49Apr 29, 2026Updated this week
Alternatives and similar repositories for threats
Users that are interested in threats are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A small tool to help developers understand a huge set of security requirements from appsec teams☆47Sep 2, 2022Updated 3 years ago
- NIVA is a simple web application which is intentionally vulnerable to NoSQL injection. The purpose of this project is to facilitate a bet…☆19Nov 21, 2022Updated 3 years ago
- Report on quality of SBOM contents☆25Dec 18, 2024Updated last year
- OWASP Foundation web repository☆23Apr 23, 2026Updated last week
- OWASP Foundation web repository☆36Apr 3, 2026Updated last month
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Generate xBOMs enriched with AI, SaaS, Crypto and more using Static Code Analysis☆28Jan 22, 2026Updated 3 months ago
- Threat Modeling Manifesto☆30Jul 18, 2024Updated last year
- Revok is an online self-service web application security scanner, finding common web security issues with minimal cost.☆17May 13, 2015Updated 10 years ago
- R.A.Y.D.E.R revolutionizes security testing for generative AI by letting you test chatbots directly through their web interfaces. No API …☆16Mar 16, 2026Updated last month
- InfoSec OpenAI Examples☆19Nov 26, 2023Updated 2 years ago
- Get new vulnerability alerts daily straight to your slack channel using GitHub Actions.☆16Jan 15, 2026Updated 3 months ago
- Threat Modeling Tool Extension for Penetration Tester (TMTe4PT)☆12Mar 2, 2022Updated 4 years ago
- Damn Vulnerable Browser Extension (DVBE), previously named as Badly Coded Browser Extension (BCBE), is an open-source vulnerable Chrome E…☆33Mar 4, 2025Updated last year
- ☆13Jan 28, 2026Updated 3 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- SSE to Stdio MCP Proxy Server☆23Mar 9, 2026Updated last month
- The OWASP SAMM Website☆11Apr 21, 2026Updated last week
- Image Payload Creating/Injecting tools☆13Jun 6, 2021Updated 4 years ago
- ☆63Jun 3, 2025Updated 11 months ago
- Harness the security superpowers of your cloud asset inventory☆11Sep 22, 2024Updated last year
- Dataset fingerprinting for AIBOM☆15Apr 8, 2026Updated 3 weeks ago
- Penetration Testing with Kali Linux☆22Oct 18, 2019Updated 6 years ago
- ☆10Aug 7, 2021Updated 4 years ago
- ☆26Aug 31, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Invadium runs exploit playbooks against vulnerable target applications in an intuitive, reproducible, and well-defined manner.☆11Apr 27, 2023Updated 3 years ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.☆165Mar 14, 2023Updated 3 years ago
- ☆10Nov 15, 2023Updated 2 years ago
- A Continuous Threat Modeling methodology☆327Jun 24, 2022Updated 3 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- Home Assistant component for fuel prices from United Consumers☆10Apr 13, 2026Updated 2 weeks ago
- ☆15Apr 13, 2026Updated 2 weeks ago
- threatspec - continuous threat modeling, through code☆383Dec 30, 2020Updated 5 years ago
- A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.☆26Apr 14, 2015Updated 11 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Threat models, verification standards, and security controls for AI agent architectures. Built on OWASP AISVS and NIST AI RMF.☆21Feb 17, 2026Updated 2 months ago
- ROS package dependency scanner☆10Mar 11, 2020Updated 6 years ago
- Agile Threat Modeling Toolkit☆759Apr 8, 2026Updated 3 weeks ago
- CrewAI-Agentic-Jira: Enhance your Jira workflows with intelligent agent-driven automation. Powered by the CrewAI framework, this project …☆22Feb 3, 2025Updated last year
- Documenting your Threat Models with HCL☆458Apr 12, 2026Updated 3 weeks ago
- A Pythonic framework for threat modeling☆1,123Apr 15, 2026Updated 2 weeks ago
- Damn Vulnerable SCA Application☆43Mar 30, 2026Updated last month