A Convenient Guide to Starting You on Threat Modeling

Hello,
Threat modeling for software products is a process of analyzing system representations to highlight concerns about security, privacy, and ethics characteristics.

There are many ways to do that these days, including automated tools and approaches such as Thread Modeling "as code."

Using a tool before knowing the basics and doing a few threat models manually could create an insecure product because you count on something else to do the work without knowing the specifics.

My e-book aims to explain the basics, starting from how we are wired as humans, how we act and react to threats, and how you could apply this to the software threat modeling process.