In Episode 5, we dig deep into what threat modeling is from a practitioner’s perspective. We compare it with design reviews and discuss when/how/why of threat modeling. In the end, we wrap up by talking about how Gen AI could help threat modeling significantly.
References:
We will try and add information about all the references we make here. Please enter rabbit holes at will :)
Threat modeling manifesto - hxxps://www.threatmodelingmanifesto.org/
STRIDE framework - hxxps://en.wikipedia.org/wiki/STRIDE_(security)
Tools for threat modeling
hxxps://learn.microsoft.com/en-us/azure/security/develop/threat-modeling-tool
hxxps://www.iriusrisk.com/threat-modeling/freemium
hxxps://owasp.org/www-project-threat-dragon/
hxxps://excalidraw.com/
hxxps://www.securitycompass.com/sdelements/
Talks on threat modeling
• APPSEC Cali 2018 - Threat Modeling Toolkit
• AI Assisted Decision Making of Security Re...
Articles
hxxps://www.scaletozero.com/episodes/understanding-threat-modeling-with-jeevan-singh/
Gen AI related threat modeling tools/companies
Stride GPT- hxxps://stridegpt.streamlit.app/
Nullify - hxxps://www.nullify.ai/
Remysec - hxxps://www.remysec.com/
Seezo - hxxps://seezo.io/
hxxps://www.sarahtavel.com/p/ai-startups-sell-work-not-software
hxxps://github.com/captn3m0/ideas
Connect with Anshuman:LinkedIn: anshumanbhartiya
X: https://x.com/anshuman_bh
Website: https://anshumanbhartiya.com/
Instagram: anshuman.bhartiya
Connect with Sandesh:LinkedIn: anandsandesh
X: https://x.com/JubbaOnJeans
