OWASP Threat Dragon Reviews

OWASP Threat Dragon Description

OWASP Threat Dragon is a modeling program that creates threat model diagrams as part a secure development cycle. Threat Dragon adheres to the principles and values of the threat modeling manifesto. It can be used to identify possible threats and determine their mitigations. It also provides visual information about the threat model components as well as threat surfaces. Threat Dragon can be used as a web or desktop application. The Open Web Application Security Project is a non-profit foundation that works to improve software security. Anyone interested in improving the security of applications can access all our tools, documents, forums and chapters at no cost.

Integrations

API:

Yes, OWASP Threat Dragon has an API

View Integrations

Reviews

Total

ease

features

design

support

No User Reviews. Be the first to provide a review:

Write a Review

Company Details

Company:

OWASP

Year Founded:

2001

Headquarters:

United States

Website:

owasp.org/www-project-threat-dragon/

Media

Product Details

Platforms

SaaS

Type of Training

Videos

Customer Support

Online

OWASP Threat Dragon Features and Options

Threat Modeling Tool

Compare OWASP Threat Dragon Against Alternatives

vs.

CAIRIS

You can import or enter a wide variety of security, usability and requirements data to gain new insights. These include information about assets, countermeasures, personas, requirements, and architectural components. A single view cannot capture a complex system. Therefore, automatically...

Compare
vs.

Threagile

Threagile allows teams to perform Agile Threat Modeling as seamlessly as possible, even when it is highly integrated into DevSecOps environments. Threagile, an open-source toolkit, allows you to model an architecture and its assets in an agile declarative fashion using YAML files directly within...

Compare
vs.

ThreatModeler

ThreatModeler™, an enterprise threat modeling platform, is an automated solution that reduces the effort required to develop secure applications. Today's information security professionals have a pressing need to create threat models of their organizations' data and software. We do this at the...

Compare
vs.

Microsoft Threat Modeling Tool

Microsoft Security Development Lifecycle, (SDL) is a core component of threat modeling. It's an engineering technique that you can use to identify threats, attacks and vulnerabilities that could affect your application. Threat modeling can be used to help you design your application, meet your...

Compare
vs.

Tutamen Threat Model Automator

Flexibility, ease of use, common taxonomies All the details are here. The Tutamen Threat Model Automator was designed to allow security at the architectural stage where it is most cost-effective to fix flaws. With a single input of variables, human error and inconsistencies can be reduced. A...

Compare
vs.

IriusRisk

IriusRisk is an open Threat Modeling platform that can be used by any development and operations team – even those without prior security training. Whether your organization follows a framework or not, we can work with all the threat modeling methodologies, such as STRIDE, TRIKE, OCTAVE and...

Compare
vs.

SD Elements

Today, Security Compass is a pioneer in application security that enables organizations to shift left and build secure applications by design, integrated directly with existing DevSecOps tools and workflows. To better understand the benefits, costs, and risks associated with an investment in SD...

Compare
vs.

ARIA ADR

ARIA Advanced Detection and Response is an automated AI SOC solution that integrates seven security tools. This includes SIEMs and IDS/IPSs as well as EDRs, Threat Intel Tools, EDRs and Threat Intel tools. Organizations will no longer need to compromise on the threat surface coverage or struggle...

Compare

Similar Software

CAIRIS

You can import or enter a wide variety of security, usability and requirements data to gain new insights. These include information about assets, countermeasures, personas, requirements, and architectural components. A single view cannot capture a complex system. Therefore, automatically...

View Software
Threagile

Threagile allows teams to perform Agile Threat Modeling as seamlessly as possible, even when it is highly integrated into DevSecOps environments. Threagile, an open-source toolkit, allows you to model an architecture and its assets in an agile declarative fashion using YAML files directly within...

View Software
ThreatModeler

ThreatModeler™, an enterprise threat modeling platform, is an automated solution that reduces the effort required to develop secure applications. Today's information security professionals have a pressing need to create threat models of their organizations' data and software. We do this at the...

View Software
Microsoft Threat Modeling Tool

Microsoft Security Development Lifecycle, (SDL) is a core component of threat modeling. It's an engineering technique that you can use to identify threats, attacks and vulnerabilities that could affect your application. Threat modeling can be used to help you design your application, meet your...

View Software