A Surprising Capability of Threat Modeling in Software Development

A Surprising Capability of Threat Modeling in Software Development

When developing software, whether employing the older waterfall methodology or one of the new agile methodologies, everything starts with requirements. No requirements, no software. When developers think about turning requirements into software, what they primarily...
The High Cost of Using Free Threat Modeling Tools – Part 3

The High Cost of Using Free Threat Modeling Tools – Part 3

NOTE: This is part three of a three-part series on making the business case for using commercial threat modeling tools. In part one, we put a dollar figure on the cost of a missed threat. In part two, we put a dollar figure on the extra hours required to produce a...
The High Cost of Using Free Threat Modeling Tools – Part 2

The High Cost of Using Free Threat Modeling Tools – Part 2

NOTE: This is part two of a three-part series on making the business case for using commercial threat modeling tools. In part one, we put a dollar figure on the cost of a missed threat. In part two, we’ll put a dollar figure on the extra hours required to produce a...
The High Cost of Using Free Threat Modeling Tools – Part 1

The High Cost of Using Free Threat Modeling Tools – Part 1

NOTE: This is part one of a three part series on making the business case for using commercial threat modeling tools. Anyone that’s been around the block software wise can tell you that as things start to really scale up, using free, open source software quickly...
Threat Modeling is a Process not a Project

Threat Modeling is a Process not a Project

Developers are starting to embrace the idea that threat modeling is a best practice as part of the secure development lifecycle (SDLC). And if it is, it can no longer be seen as a project. It must evolve into a process. A Project vs a Process Projects and processes...

ThreatModeler

ThreatModeler revolutionizes threat modeling during the design phase by automatically analyzing potential attack surfaces. Harness our patented functionalities to make critical architectural decisions and fortify your security posture.

Learn more >

CloudModeler

Threat modeling remains essential even after deploying workloads, given the constantly evolving landscape of cloud development and digital transformation. CloudModeler not only connects to your live cloud environment but also accurately represents the current state, enabling precise modeling of your future state

Learn more >

IaC-Assist

DevOps Engineers can reclaim a full (security-driven) sprint with IAC-Assist, which streamlines the implementation of vital security policies by automatically generating threat models through its intuitive designer.

Learn more >