Threat Modeling and Security by Design

Threat modeling tooling: Use our tool to start threat modeling within minutes.

Solve your threat modeling problems: We can help you to implement threat modeling and security by design.

Learn about threat modeling: We have lots of content to teach you about threat modeling.

View Articles

Our Threat Modeling Tool Helps you to Perform Structured Threat Modeling at Scale

It’s easy to get started with threat modeling and gain initial security value from it. However, rolling out structured threat modeling at scale is a different matter. Our threat modeling tool helps you to get the most of threat modeling, in order to apply security by design and default.

  • Powerful assessment engine to understand potential threats and security weakness.
  • Flexible Diagram engine to visualize components and communication flows in play.
  • Clear reporting and metrics for compliance demonstration.

Try our threat modeling tool and get started within minutes!

Methods

Learn about the various threat modeling methods such as STRIDE, PASTA, LINDDUN, and Persona non Grata.

Tooling

We have a full list of threat modeling tools that can help to perform threat modeling. Including our own threat modeling tool.

Templates

Templates can help to kickstart the process. We have lots of free templates available.

Examples

We believe that you learn best from practical and real-world examples. We have lots of example cases and threat models available.

Threat Modeling ARTICLES

Threat Modeling Tooling

Threat Modeling Tool

Explanation of the Threat Modeling Tool

Automated Threat Modeling

STRIDE Threat Modeling

STRIDE Threat Modeling

The Ultimate List of STRIDE Threat Examples

STRIDE Threat Modeling Example for Better Understanding and Learning

STRIDE Threat Modeling in DevOps: A Perfect Fit

What is STRIDE Threat Modeling

How to STRIDE Threat Model

STRIDE Threat Modeling Frequently Asked Questions and Answers (FAQs)

The Advantages of Using a Threat Modeling Tool for STRIDE

Threat Modeling

Threat Modeling

Threat Modeling Methods

What is Threat Modeling

Threat Modeling and DevOps

How to use Data Flow Diagrams in Threat Modeling

Threat Modeling Versus Vulnerability Management

CAPEC Threat Modeling

CAPEC Threat Modeling

Threat Modeling Framework

Threat Modeling Framework

Why Threat Modeling is Overly Complex and How We Can Simplify It

CIS Controls

CIS Controls (CIS Critical Security Controls)

OWASP Top 10

OWASP Top 10 2025

PASTA Threat Modeling

PASTA Threat Modeling

PASTA Threat Modeling and DevOps

A PASTA Threat Modeling Example

TRIKE Threat Modeling

Trike Threat Modeling

NIST

NIST CSF v1.1

LINDDUN Threat Modeling

LINDDUN Threat modeling

DREAD Threat Modeling

DREAD Threat Modeling

CISO Security Mind Map

CISO Security Mind Map 2025

CISO Security Mind Map 2026

AI Security

Adding AI to Applications: What You Need to Know for Safety and Security

NTLM Reflection Bypass Proof-of-Concept Enables SYSTEM Access on Windows Server

CVE: CVE-2026-XXXXX (reservation expected) | Vendor: Microsoft | Product: Windows Server (all supported versions), Windows 11 What Is the Vulnerability A proof-of-concept has been released demonstrating a bypass of Microsoft’s long-standing NTLM reflection attack mitigations, enabling an attacker to escalate privileges to SYSTEM on Windows Server and Windows 11 machines. NTLM reflection attacks exploit the design of the NT LAN Manager authentication protocol: an…

Continue Reading NTLM Reflection Bypass Proof-of-Concept Enables SYSTEM Access on Windows Server

Microsoft 365 Apps Remote Code Execution Vulnerability Exploited via Malicious Excel Files

CVE: N/A (Microsoft disclosure pending) | Vendor: Microsoft | Product: Microsoft 365 Apps (formerly Office 365) What Is the Vulnerability Microsoft has disclosed a critical remote code execution vulnerability affecting the Microsoft 365 Apps ecosystem, exploitable through a specially crafted malicious Excel file. This follows the classic and persistent Office exploitation vector: a user opens a malicious document, and attacker-controlled code executes with the…

Continue Reading Microsoft 365 Apps Remote Code Execution Vulnerability Exploited via Malicious Excel Files

WolfSSL Security Advisory: Multiple Vulnerabilities Including Certificate Forgery and Remote Code Execution — Billions of Servers and IoT Devices Affected

CVE: Multiple CVEs (see References) | CVSS: Up to 9.8 (CRITICAL) | Vendor: wolfSSL Inc. | Product: wolfSSL Embedded TLS Library What Is the Vulnerability WolfSSL has disclosed a bundle of critical security vulnerabilities affecting its widely deployed embedded TLS library. WolfSSL (formerly CyaSSL) is a lightweight, portable SSL/TLS implementation used in billions of devices across industrial control systems, medical devices, automotive platforms, IoT…

Continue Reading WolfSSL Security Advisory: Multiple Vulnerabilities Including Certificate Forgery and Remote Code Execution — Billions of Servers and IoT Devices Affected

CVE-2026-33825 ‘BlueHammer’: Microsoft Defender Privilege Escalation to SYSTEM Confirmed in Ransomware Attacks

CVE: CVE-2026-33825 | CVSS: 7.8 (HIGH) | Vendor: Microsoft | Product: Microsoft Defender What Is the Vulnerability CVE-2026-33825, dubbed “BlueHammer” by security researchers, is a local privilege escalation vulnerability in Microsoft Defender that allows an attacker with low-privilege code execution to escalate to SYSTEM — the highest privilege level on Windows. Because Microsoft Defender ships with every modern Windows installation and runs with elevated…

Continue Reading CVE-2026-33825 ‘BlueHammer’: Microsoft Defender Privilege Escalation to SYSTEM Confirmed in Ransomware Attacks

CVE-2026-46817: Oracle E-Business Suite Unauthenticated Remote Takeover — Oracle Payments Component Actively Exploited

What Is the Vulnerability CVE-2026-46817 is a critical unauthenticated remote takeover vulnerability in Oracle E-Business Suite (EBS), specifically in the Oracle Payments component. Oracle has characterized this vulnerability as “easily exploitable,” allowing an unauthenticated attacker with network access to completely compromise the EBS instance without requiring any credentials or user interaction. Oracle E-Business Suite is a comprehensive Enterprise Resource Planning (ERP) platform that houses…

Continue Reading CVE-2026-46817: Oracle E-Business Suite Unauthenticated Remote Takeover — Oracle Payments Component Actively Exploited

CVE-2026-48558: SimpleHelp RMM Authentication Bypass — Unsigned OIDC Tokens Enable Unauthenticated Technician Access, MSP Supply Chain Attack (CISA KEV, CVSS 10.0)

CISA Known Exploited Vulnerability (KEV): Added to the CISA KEV Catalog on June 29, 2026. Action due July 2, 2026. BOD 26-04 3-day mandate applies. TaskWeaver loader malware deployed through compromised instances. What Is the Vulnerability CVE-2026-48558 is a critical authentication bypass vulnerability in SimpleHelp Remote Monitoring and Management (RMM) software. When OpenID Connect (OIDC) is configured for authentication, SimpleHelp accepts OIDC tokens without…

Continue Reading CVE-2026-48558: SimpleHelp RMM Authentication Bypass — Unsigned OIDC Tokens Enable Unauthenticated Technician Access, MSP Supply Chain Attack (CISA KEV, CVSS 10.0)

Threat Modeling and Security by Design

Threat modeling and Security by Design methods, tools, and approaches to help secure your business and IT landscape.

Terms of Service | Privacy Policy

AI chatbot & help center by 99helpers.com

Threat Modeling
Threat Modeling Tool
Threat Modeling Tool Explainer
What is Threat Modeling?
STRIDE Threat Modeling
PASTA Threat Modeling
Automated Threat Modeling
Threat Modeling Framework
CISO Security Mind Map 2026
CIS Controls
OWASP Top 10

© Threat-Modeling.com