The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
☆181Dec 11, 2025Updated 4 months ago
Alternatives and similar repositories for OpenThreatModel
Users that are interested in OpenThreatModel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆54Mar 4, 2026Updated last month
- Agile Threat Modeling as Code☆13Jun 30, 2022Updated 3 years ago
- OWASP Foundation web repository☆36Apr 3, 2026Updated last week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Apr 17, 2023Updated 2 years ago
- Documenting your Threat Models with HCL☆455Apr 3, 2026Updated last week
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆70Jun 25, 2025Updated 9 months ago
- threatspec - continuous threat modeling, through code☆383Dec 30, 2020Updated 5 years ago
- ☆150Mar 27, 2026Updated 2 weeks ago
- A Pythonic framework for threat modeling☆1,119Mar 16, 2026Updated 3 weeks ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Oct 3, 2023Updated 2 years ago
- Practical Library Of Threats 4 Artificial Intelligence☆36Jun 19, 2025Updated 9 months ago
- A Continuous Threat Modeling methodology☆327Jun 24, 2022Updated 3 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆240Aug 13, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆76Aug 22, 2024Updated last year
- Agile Threat Modeling Toolkit☆740Mar 30, 2026Updated last week
- A GraphQL enumeration and extraction tool☆133Jan 29, 2023Updated 3 years ago
- ☆25Sep 17, 2023Updated 2 years ago
- TRADES Tool☆18Jan 1, 2025Updated last year
- Gram is Klarna's own threat model diagramming tool☆332Updated this week
- A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for …☆1,741Aug 2, 2024Updated last year
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆493Jun 12, 2025Updated 9 months ago
- Awesome secure by default libraries to help you eliminate bug classes!☆702Dec 6, 2025Updated 4 months ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆700Updated this week
- This project is about creating and publishing threat model examples.☆431Nov 10, 2021Updated 4 years ago
- An extensive list of resources related to threat modelling. Gotta catch ’em all!☆46Mar 21, 2026Updated 3 weeks ago
- This project aims to standardize the representation and management of EOL and EOS product information across the industry.☆30Mar 4, 2024Updated 2 years ago
- App that simplifies building decision trees to model adverse scenarios☆229Jul 11, 2024Updated last year
- Segment's Threat Modeling training for our engineers☆245May 4, 2021Updated 4 years ago
- Perform code analysis to detect potentially dangerous vulnerabilities☆14Apr 16, 2024Updated last year
- ☆58Updated this week
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆281Feb 17, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- A community collection of security reviews of open source software components.☆99Feb 29, 2024Updated 2 years ago
- OWASP Threat Dragon with Gitlab Integration☆27Nov 6, 2017Updated 8 years ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆486Updated this week
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆29Sep 27, 2023Updated 2 years ago
- sbomasm: The Complete SBOM Management Toolkit☆110Updated this week
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Jan 16, 2024Updated 2 years ago
- A utility to (re-)import findings and language data into DefectDojo☆43Sep 26, 2024Updated last year