The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
☆181Dec 11, 2025Updated 3 months ago
Alternatives and similar repositories for OpenThreatModel
Users that are interested in OpenThreatModel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆54Mar 4, 2026Updated 2 weeks ago
- Agile Threat Modeling as Code☆13Jun 30, 2022Updated 3 years ago
- OWASP Foundation web repository☆35Mar 16, 2026Updated last week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Apr 17, 2023Updated 2 years ago
- Documenting your Threat Models with HCL☆454Updated this week
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆69Jun 25, 2025Updated 8 months ago
- threatspec - continuous threat modeling, through code☆383Dec 30, 2020Updated 5 years ago
- ☆147Mar 15, 2026Updated last week
- A Pythonic framework for threat modeling☆1,113Mar 16, 2026Updated last week
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Oct 3, 2023Updated 2 years ago
- Practical Library Of Threats 4 Artificial Intelligence☆36Jun 19, 2025Updated 9 months ago
- A Continuous Threat Modeling methodology☆324Jun 24, 2022Updated 3 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆76Aug 22, 2024Updated last year
- Agile Threat Modeling Toolkit☆736Mar 12, 2026Updated last week
- A GraphQL enumeration and extraction tool☆133Jan 29, 2023Updated 3 years ago
- ☆25Sep 17, 2023Updated 2 years ago
- Gram is Klarna's own threat model diagramming tool☆331Updated this week
- A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for …☆1,724Aug 2, 2024Updated last year
- Awesome secure by default libraries to help you eliminate bug classes!☆701Dec 6, 2025Updated 3 months ago
- An extensive list of resources related to threat modelling. Gotta catch ’em all!☆43Updated this week
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆688Updated this week
- This project is about creating and publishing threat model examples.☆429Nov 10, 2021Updated 4 years ago
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆488Jun 12, 2025Updated 9 months ago
- This project aims to standardize the representation and management of EOL and EOS product information across the industry.☆30Mar 4, 2024Updated 2 years ago
- App that simplifies building decision trees to model adverse scenarios☆228Jul 11, 2024Updated last year
- Segment's Threat Modeling training for our engineers☆245May 4, 2021Updated 4 years ago
- Perform code analysis to detect potentially dangerous vulnerabilities☆13Apr 16, 2024Updated last year
- A community collection of security reviews of open source software components.☆98Feb 29, 2024Updated 2 years ago
- ☆58Mar 16, 2026Updated last week
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆281Feb 17, 2026Updated last month
- OWASP Threat Dragon with Gitlab Integration☆27Nov 6, 2017Updated 8 years ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆470Updated this week
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆29Sep 27, 2023Updated 2 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Jan 16, 2024Updated 2 years ago
- sbomasm: The Complete SBOM Management Toolkit☆106Mar 16, 2026Updated last week
- A utility to (re-)import findings and language data into DefectDojo☆43Sep 26, 2024Updated last year
- ☆88Jul 28, 2021Updated 4 years ago
- IriusRisk Community☆72Sep 5, 2023Updated 2 years ago