OWASP Threat Dragon Description
OWASP Threat Dragon is a modeling program that creates threat model diagrams as part a secure development cycle. Threat Dragon adheres to the principles and values of the threat modeling manifesto. It can be used to identify possible threats and determine their mitigations. It also provides visual information about the threat model components as well as threat surfaces. Threat Dragon can be used as a web or desktop application. The Open Web Application Security Project is a non-profit foundation that works to improve software security. Anyone interested in improving the security of applications can access all our tools, documents, forums and chapters at no cost.
OWASP Threat Dragon Alternatives
CAIRIS
You can import or enter a wide variety of security, usability and requirements data to gain new insights. These include information about assets, countermeasures, personas, requirements, and architectural components. A single view cannot capture a complex system. Therefore, automatically generate 12 views of your emerging design, from different perspectives, including people, risks and requirements, architecture, physical location, and even physical locations. As your design develops, automatically generate threat models such Data Flow Diagrams. Open source intelligence about possible attacks and candidate security architectures can be used to assess your attack surface. Showcase all security, usability, design, and risk factors associated with your product.
Learn more
Resurface
Resurface is a runtime API security tool. Resurface continuous API scanning allows you to detect and respond in real time to API threats and risks. Resurface is a purpose-built tool for API data. It captures all request and response payloads, including GraphQL, to instantly see potential threats and failures. Receive alerts about data breaches for zero-day detection.
Resurface is mapped to OWASP Top10 and alerts on threats with complete security patterns. Resurface is self-hosted and all data is first-party.
Resurface is the only API security system that can be used to perform deep inspections at scale. Resurface detects active attacks and alerts them by processing millions of API calls. Machine learning models detect anomalies and identify low-and slow attack patterns.
Learn more
Fortinet FortiWeb Web Application Firewall
FortiWeb WAF protects web applications and APIs from the OWASP Top 10, zero-day threats, and other application-layer attacks. It also includes robust features such as API discovery and protection, bot mitigation, threat analytics, and advanced reporting.
Learn more
ThreatLocker
For IT professionals to stop ransomware, you need to do more than look for threats. ThreatLocker helps you reduce your surface areas of attack with policy-driven endpoint security and change the paradigm from only blocking known threats, to blocking everything that is not explicitly allowed. Combined with Ringfencing and additional controls, you enhance your Zero Trust protection and block attacks that live off the land.
Discover today the ThreatLocker suite of Zero Trust endpoint security solutions: Allowlisting, Ringfencing, Elevation Control, Storage Control, Network Access Control, Unified Audit, ThreatLocker Ops, Community, Configuration Manager and Health Center.
Learn more
Company Details
Company:
OWASP
Year Founded:
2001
Headquarters:
United States
Website:
owasp.org/www-project-threat-dragon/
Media
Recommended Products
Our Free Plans just got better! | Auth0 by Okta
You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your secuirty. Auth0 now, thank yourself later.
Product Details
Platforms
SaaS
Type of Training
Videos
Customer Support
Online
OWASP Threat Dragon Features and Options
OWASP Threat Dragon User Reviews
Write a Review- Previous
- Next