ThreatModel SDK Logo

ThreatModel SDK

0
Free
Visit Website

The ThreatModel SDK is a minimalistic Java library that provides a basic vendor-neutral object model along with the ability to parse reports generated from common threat modeling tools. The intent of the ThreatModel SDK is to represent threat model data in a normalized way, regardless of approach, tool, or vendor. The primary purpose of the SDK is to facilitate the automation of threat model data by exfiltrating threat intelligence from the model so that identified threats can be automatically added to a team's backlog or defect tracking system. The goal of this project is NOT to graphically represent threat model data through user interfaces. Supported Threat Modeling Tools: Microsoft Threat Modeling Tool 2016. Usage Example: // Threat model file to open File file = new File("/path/to/threatmodel.tm7"); // Creates a normalized, vendor-neutral ThreatModel object ThreatModel threatModel = ThreatModelFactory .parse(file, ThreatModelingTool.MICROSOFT_THREAT_MODELING_TOOL_2016); // Java Bean conventions Threat threat = new Threat(); threat.setName("XSS"); threat.setRisk(risk); // Fluent interface Threat threat = new Threat()

FEATURES

ALTERNATIVES

NECOMA focuses on data collection, threat analysis, and developing new cyberdefense mechanisms to protect infrastructure and endpoints.

Repository with projects for photo and video hashing, content moderation, and signal exchange.

A collection of YARA rules for Windows, Linux, and Other threats.

Aggregates security threats from online sources and outputs to various formats.

PolySwarm is a malware intelligence marketplace that aggregates threat detection engines to provide early detection, unique samples, and higher accuracy.

GCTI's open-source detection signatures for malware and threat detection

Cortex is a tool for analyzing observables at scale and automating threat intelligence, digital forensics, and incident response.

Automatic YARA rule generator based on Koodous reports with limited false positives.

PINNED