Threat Modeling Connect | The Community and Resource Hub for All Things Threat Modeling

Welcome
Events
- - Welcome to the resource hub

Be a part of the largest threat modeling community.

Community Poll

Date Flow Diagram (DFD) is a common approach to threat modeling. But some ended up getting too complex to comprehend. Do you use DFD or not? If not, what else do you use?

Take the poll

Upcoming events

Community news

Beginner's guide

DevOps and Threat Modeling

Featured workshops

Activity and categories

Recent activity
Categories

Adam ShostackLevel 6

General Discussion

DaveLevel 4

General Discussion

(POLL) To DFD or not to DFD?

They say a picture is worth a thousands words and so including some kind of diagram in your threat modelling process likely aids in understanding the system being threat modelled. But some diagrams can end up looking like “spaghetti and meatballs”, depending on the complexity of the system.I thought would be interesting to take the pulse of the community on this topic, so we can better understand what approaches are being used.Note, if your threat modelling approach uses lots of diagrams, perhaps just answer for the scenario where you were forced to choose just one.

14 days ago

LarryLevel 3

General Discussion

Scale Security

I'd like to discuss about how organizations can introduce security in organizations and be adapted to the ever-changing cybersecurity landscape while maintaining seamless operations.What are some of the significant challenges that you faced to 'scale' security, and how did you address them? 🤔

15 days ago

ShuningCommunity Manager

Workshops

Create Your First Threat Model Using a SpreadsheetRecording

About this workshopIn this workshop, you’ll learn the basics of threat modeling and apply the knowledge to create a threat model following six steps right in a spreadsheet. The six-step spreadsheet template is based on the STRIDE framework, one of the most popular security threat modeling methodologies.Agenda Recording Template, Written Guide, Slide Deck About the workshop leaderAgenda Introduction to Threat Modeling What’s threat modeling Threat Modeling classification: STRIDE Threat Modeling elements Threat Modeling process: the four-question framework Applying STIDE to Threat Modeling elements Cloud Threat Modeling Demo: using the six-step spreadsheet template to create a threat model for a two-tier web application Recording Template, Written Guide, Slide DeckTemplate: https://docs.google.com/spreadsheets/d/1AbouySzNorXs7sXwnMkZYkGdWeKESnJtKK_JfiTXBIE/edit?usp=sharing Written guide for how to use this template Slide deck in the attachment About the w

6022

16 days ago

mvidhi2011Level 1

General Discussion

how to join the Continuous Security: Leverage Incremental Threat Modeling

Can you share the link to how to join this meeting ? I only see Continuous Security: Leverage Incremental Threat Modeling this link but it does not show how to join the meeting

22 days ago

ShuningCommunity Manager

Welcome & Announcements

Recap on ThreatModCon 2023: The First Threat Modeling Conference Ever!

About this time last year, Threat Modeling Connect was born. With a mission to bring threat modeling to everyone, we are a community that brings like-minded individuals to learn, share, and collaborate on their threat modeling journeys. It was hard to believe within less than a year, we launched ThreatModCon - the first and only Threat Modeling Conference in the industry.It was an absolute blast seeing our community come together for a day of threat modeling feast. We wanted to give you a quick rundown of all the awesomeness that went down at this event!With a completely sold-out event, we entered the conference with a packed house and over 130 threat modeling practitioners from all over the world. We had two tracks with 12 mind-blowing sessions covering everything from the purpose and scope of threat modeling to the technical nitty-gritty. It was a deep dive into the art and science of threat modeling. But it wasn't just about the sessions. ThreatModCon 2023 was all about building con

1621

27 days ago

cramirezLevel 3

General Discussion

Birds of a Feather sessions at ThreatModCon 2023

Greetings ThreatModelingConnect Community, ThreatModCon 2023 is fast approaching (https://www.threatmodelingconnect.com/events/threatmodcon-2023-38)! As part of the conference, we're planning to host several Birds of a Feather (BoF) sessions during lunch. For those unfamiliar, BoF sessions are informal gatherings of like-minded individuals to discuss topics or common issues encountered without a pre-planned agenda. We wanted to reach out to the community for feedback on what topics/issues you would be interested in discussing at ThreatModCon 2023.

1 month ago

Forum

Validate ideas, share resources, and get feedback from your peers and experts

Welcome & Announcements

10 topics
42 Replies

General Discussion

57 topics
234 Replies

Hackathon

8 topics
10 Replies

Helpful resources

Threat Modeling Manifesto

A guideline on the core values and principles of threat modeling

OWASP Threat Modeling Project

A documentation project focusing on threat modeling techniques

IriusRisk Community Edition

A free threat modeling automation tool created by IriusRisk

New to the community?

Meet and Greet

FAQs

Community Guidelines

Terms and Conditions, Community Guidelines and Privacy.Cookie settings

Community

Who We Are
Community Guidelines
Join Us

Forum

Welcome & Announcements
General Discussion
Hackathon

Resources

Guides
Blog
Workshops

Events

Upcoming Events

Resources

Threat Modeling Manifesto
OWASP Threat Modeling Project
IriusRisk Community Edition

Join the community

Already have an account? Login

Username *

E-mail address *

First Name

(Private)

Only you and moderators can see this information

Last Name

(Private)

Only you and moderators can see this information

Company

(Private)

Only you and moderators can see this information

Role *

Country *

Experience in Threat Modeling *

Getting started! (under 1 year) 1-5 years 6+ years

I agree to receive community content and event updates.

(Private)

Only you and moderators can see this information

Yes No

source

medium

campaign

search engine

Password *

I declare that I have read, understood and, therefore, I accept the Terms and Conditions and Community Guidelines.

loginBox.register.email_repeat

Log in

Create your account

Not a member yet? Become a member to join forum discussions, participate in community events and apply to write articles.

Create an account

Username or Email Address

Password

Remember me

Forgot password?

Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.

Username or e-mail

Back to overview

Scanning file for viruses.

Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.

This file cannot be downloaded

Sorry, our virus scanner detected that this file isn't safe to download.