Threat Modeling and Security by Design

Threat modeling tooling: Use our tool to start threat modeling within minutes.

Solve your threat modeling problems: We can help you to implement threat modeling and security by design.

Learn about threat modeling: We have lots of content to teach you about threat modeling.

Our Threat Modeling Tool Helps you to Perform Structured Threat Modeling at Scale

It’s easy to get started with threat modeling and gain initial security value from it. However, rolling out structured threat modeling at scale is a different matter. Our threat modeling tool helps you to get the most of threat modeling, in order to apply security by design and default.

  • Powerful assessment engine to understand potential threats and security weakness.
  • Flexible Diagram engine to visualize components and communication flows in play.
  • Clear reporting and metrics for compliance demonstration.

Try our threat modeling tool and get started within minutes!

Methods

Learn about the various threat modeling methods such as STRIDE, PASTA, LINDDUN, and Persona non Grata.

Tooling

We have a full list of threat modeling tools that can help to perform threat modeling. Including our own threat modeling tool.

Templates

Templates can help to kickstart the process. We have lots of free templates available.

Examples

We believe that you learn best from practical and real-world examples. We have lots of example cases and threat models available.

Friendly Fire and HalluSquatting: New Attacks Trick AI Coding Agents Into Running Attacker Code and Installing Malware

TTP Advisory: Friendly Fire + HalluSquatting | No CVE | Target: AI Coding Assistants (Claude Code, OpenAI Codex) | Attack Type: Autonomous mode hijacking / Hallucination exploitation Friendly Fire — AI Agents Tricked Into Running Attacker Code During Security Scans Researchers at the AI Now Institute demonstrated that AI coding agents running in autonomous mode can be tricked into running an attacker’s code when…

Continue Reading Friendly Fire and HalluSquatting: New Attacks Trick AI Coding Agents Into Running Attacker Code and Installing Malware

Lurking Lizard: Residential Proxy Botnet With 230+ Domains Uses Trojanized 7-Zip Installer to Recruit Proxy Nodes

TTP Advisory: Lurking Lizard | No CVE | Threat Type: Residential Proxy Botnet | Activity Since: August 2022 | Domains: 230+ lookalike domains | Discovered by: Infoblox DNS Threat Intelligence What Happened Infoblox has disclosed details of a threat actor dubbed Lurking Lizard operating an end-to-end malicious residential proxy business using an infrastructure comprising more than 230 lookalike domains since at least August 2022.…

Continue Reading Lurking Lizard: Residential Proxy Botnet With 230+ Domains Uses Trojanized 7-Zip Installer to Recruit Proxy Nodes

CVE-2026-50656 “RoguePlanet”: Microsoft Defender Malware Protection Engine Privilege Escalation to SYSTEM — Patched After Month-Long Disclosure

CVE: CVE-2026-50656 | CVSS 3.1: 7.8 (High) | Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | CWE: CWE-362 (Race Condition) | Vendor: Microsoft | Product: Microsoft Malware Protection Engine (mpengine.dll) / Microsoft Defender | Affected versions: Prior to version 1.1.26060.3008 What Is the Vulnerability CVE-2026-50656, dubbed ‘RoguePlanet’, is a privilege escalation vulnerability in the Microsoft Malware Protection Engine (mpengine.dll), the core scanning engine used by Microsoft Defender Antivirus and…

Continue Reading CVE-2026-50656 “RoguePlanet”: Microsoft Defender Malware Protection Engine Privilege Escalation to SYSTEM — Patched After Month-Long Disclosure

CVE-2026-50746, CVE-2026-50747, CVE-2026-50748: Ubiquiti UniFi Connect, Talk, and Access Critical Vulnerabilities (CVSS 10.0/9.9)

CVE: CVE-2026-50746 (UniFi Connect), CVE-2026-50747 (UniFi Talk), CVE-2026-50748 (UniFi Access) | CVSS Range: 9.9 – 10.0 (Critical) | Vendor: Ubiquiti | Product: UniFi Connect, UniFi Talk, UniFi Access Applications | Affected: Connect up to 3.4.16, Talk up to 5.1.2, Access affected versions per advisory What Is the Vulnerability Ubiquiti has released security updates addressing three new critical vulnerabilities across its UniFi application portfolio. CVE-2026-50746…

Continue Reading CVE-2026-50746, CVE-2026-50747, CVE-2026-50748: Ubiquiti UniFi Connect, Talk, and Access Critical Vulnerabilities (CVSS 10.0/9.9)

GhostApproval: Symlink Vulnerability in 6 AI Coding Assistants Allows Malicious Repos to Write to Arbitrary Files

TTP Advisory: GhostApproval | No CVE | Severity: High | Affected Tools: Amazon Q Developer, Anthropic Claude Code, Augment, Cursor, Google Antigravity, Windsurf | Discovered by: Wiz Research What Is the Vulnerability Wiz Research discovered that six popular AI coding assistants fail to properly check symbolic links (symlinks) before writing to files. A malicious repository can contain a symlink named project_settings.json that actually points…

Continue Reading GhostApproval: Symlink Vulnerability in 6 AI Coding Assistants Allows Malicious Repos to Write to Arbitrary Files

Vulnerability Intelligence Report — July 9, 2026

Vulnerability Intelligence Report — July 9, 2026 KEV DEADLINES TOMORROW: ColdFusion, 2x Joomla, Langflow — all due Friday | Microsoft patches RoguePlanet Defender zero-day (CVE-2026-50656, SYSTEM privesc) | Ubiquiti UniFi wave continues: 3 more CVEs (CVSS 10.0/9.9) across Connect, Talk, Access | GhostApproval: symlink flaw in 6 AI coding assistants | Friendly Fire: AI agents tricked into running attacker code | HalluSquatting: AI hallucinated…

Continue Reading Vulnerability Intelligence Report — July 9, 2026