Threat Modeling and DevOps
In this article, I explain why threat modeling and DevOps are a great fit, and how you would go about implementing threat modeling within DevOps. … Read More
Trike Threat Modeling
Trike is a framework for security auditing from a risk-based perspective. This is achieved through Trike threat modeling, which generates threat models. With the Trike … Read More
STRIDE Threat Modeling in DevOps: A Perfect Fit
Proactive STRIDE threat modeling in DevOps to shift security left and embed security thinking within a DevOps team.
CAPEC Threat Modeling
In this post I explain what CAPEC threat modeling is, and look at one of the CAPEC Attack Patterns as an example.
STRIDE Threat Modeling Example for Better Understanding and Learning
STRIDE threat modeling example to show you how STRIDE threat modeling should be performed. This can help with your threat modeling sessions.
The Ultimate List of STRIDE Threat Examples
In this post, I provide the ultimate list of STRIDE threat examples to inspire your own STRIDE threat modeling sessions.
What is Threat Modeling
What is threat modeling: Threat modeling is the activity of identifying threats, weaknesses, and vulnerabilities that may negatively impact the security of an application, system, … Read More
Threat Modeling Methods
We all want to have more security online, especially with how digital our world has become. Oftentimes, it’s hard to know if you’re really protected … Read More
PASTA Threat Modeling
PASTA threat modeling is a specific method of threat modeling. PASTA stands for Process for Attack Simulation and Threat Analysis (PASTA).
STRIDE Threat Modeling
STRIDE threat modeling is a key threat modeling methodology initially developed by Microsoft and now widely adopted in the industry.