awslabs/threat-composer external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

awslabs/threat-composer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/awslabs/threat-composer)

Close

awslabs / threat-composerView on GitHubMore

• External links
• Readme badge

A simple threat modeling tool to help humans to reduce time-to-value when threat modeling

☆733May 20, 2026Updated last week

Alternatives and similar repositories for threat-composer

Users that are interested in threat-composer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• aws-samples / aws-customer-playbook-framework

  View on GitHub
  This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
  ☆656Updated this week
• aquia-inc / aws-guardduty-runbook-generator

  View on GitHub
  Generates runbooks for GuardDuty findings
  ☆38Jun 24, 2024Updated last year
• awslabs / aws-cloudsaga

  View on GitHub
  AWS CloudSaga - Simulate security events in AWS
  ☆475May 21, 2026Updated last week
• awslabs / aws-security-analytics-bootstrap

  View on GitHub
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆276Updated this week
• awslabs / assisted-log-enabler-for-aws

  View on GitHub
  Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.
  ☆274Updated this week
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• aws-samples / data-perimeter-policy-examples

  View on GitHub
  Example policies demonstrating how to implement a data perimeter on AWS.
  ☆204Apr 28, 2026Updated last month
• awslabs / automated-security-helper

  View on GitHub
  ASH is an extensible, open source SAST, SCA, and IaC security scanner orchestration engine.
  ☆653May 19, 2026Updated last week
• awslabs / aws-security-assessment-solution

  View on GitHub
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆605Apr 8, 2026Updated last month
• aws-samples / service-control-policy-examples

  View on GitHub
  Example AWS Service control policies to get started or mature your usage of AWS SCPs.
  ☆302May 11, 2026Updated 2 weeks ago
• aws-solutions / automated-security-response-on-aws

  View on GitHub
  Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a…
  ☆472May 19, 2026Updated last week
• aws-samples / resource-control-policy-examples

  View on GitHub
  Example AWS Resource control policies to get started or mature your usage of AWS RCPs.
  ☆204Mar 17, 2026Updated 2 months ago
• OWASP / pytm

  View on GitHub
  A Pythonic framework for threat modeling
  ☆1,124May 22, 2026Updated last week
• matthewdfuller / safer-scps

  View on GitHub
  Safer AWS SCP deployments via real-time monitoring
  ☆56Sep 30, 2023Updated 2 years ago
• awslabs / amazon-guardduty-tester

  View on GitHub
  This repository can be used to generate and evaluate findings detected by Amazon GuardDuty
  ☆424Jan 7, 2026Updated 4 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• hysnsec / awesome-threat-modelling

  View on GitHub
  A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for …
  ☆1,752Aug 2, 2024Updated last year
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• aws-samples / aws-incident-response-playbooks

  View on GitHub
  ☆1,057Apr 12, 2026Updated last month
• mrwadams / stride-gpt

  View on GitHub
  An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRI…
  ☆1,044Updated this week
• DataDog / stratus-red-team

  View on GitHub
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,326May 21, 2026Updated last week
• Nextdoor / cspm_evaluation_matrix

  View on GitHub
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆59Sep 7, 2023Updated 2 years ago
• tldrsec / awesome-secure-defaults

  View on GitHub
  Awesome secure by default libraries to help you eliminate bug classes!
  ☆707Dec 6, 2025Updated 5 months ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,552Aug 2, 2024Updated last year
• zmallen / cloudtrail2sightings

  View on GitHub
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Jul 25, 2022Updated 3 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• SecurityRunners / CloudCommotion

  View on GitHub
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆149Jun 18, 2024Updated last year
• zoph-io / aws-security-survival-kit

  View on GitHub
  Bare minimum AWS Security Alerting and Secure by default Configuration
  ☆514May 15, 2025Updated last year
• threatspec / threatspec

  View on GitHub
  threatspec - continuous threat modeling, through code
  ☆385Dec 30, 2020Updated 5 years ago
• salesforce / cloudsplaining

  View on GitHub
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,219Updated this week
• ReversecLabs / cloud-security-vm

  View on GitHub
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆143Jan 2, 2025Updated last year
• openai / openai-security-bots

  View on GitHub
  ☆390Apr 15, 2026Updated last month
• fwdcloudsec / known_aws_accounts

  View on GitHub
  List of known AWS accounts
  ☆260Apr 2, 2026Updated last month
• adamshostack / 4QuestionFrame

  View on GitHub
  Shostack's 4 Question Frame for Threat Modeling
  ☆170May 11, 2026Updated 2 weeks ago
• cds-snc / threat-modeling-tool

  View on GitHub
  CDS Threat Modeling Tool MVP
  ☆15May 20, 2026Updated last week
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆136Oct 23, 2023Updated 2 years ago
• ramimac / aws-customer-security-incidents

  View on GitHub
  A repository of breaches of AWS customers
  ☆804Updated this week
• Threagile / threagile

  View on GitHub
  Agile Threat Modeling Toolkit
  ☆764Apr 8, 2026Updated last month
• michenriksen / drawio-threatmodeling

  View on GitHub
  Draw.io libraries for threat modeling diagrams
  ☆791Nov 12, 2020Updated 5 years ago
• google / localtoast

  View on GitHub
  ☆116Feb 11, 2026Updated 3 months ago
• StevenSmiley / aws-mine

  View on GitHub
  AWS honey token manager
  ☆90Aug 1, 2024Updated last year
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆174Mar 11, 2026Updated 2 months ago