Threagile Reviews

Threagile Description

Threagile allows teams to perform Agile Threat Modeling as seamlessly as possible, even when it is highly integrated into DevSecOps environments. Threagile, an open-source toolkit, allows you to model an architecture and its assets in an agile declarative fashion using YAML files directly within the IDE or any YAML editor. The Threagile toolkit executes security checks against the architecture model. It then creates a report that includes mitigation advice and potential risks. You can also create beautiful data-flow diagrams and other output formats (Excel or JSON). The Threagile YAML file can be used to track risk. This allows for reporting on the state of risk mitigation. Threagile can be run from the command-line (also a Docker Container is available) or as a REST -Server.

Pricing

Pricing Starts At:

Free

Free Version:

Yes

Integrations

View Integrations

Reviews

Total

ease

features

design

support

No User Reviews. Be the first to provide a review:

Write a Review

Company Details

Company:

Threagile

Website:

threagile.io

Media

Product Details

Platforms

SaaS

Customer Support

Online

Threagile Features and Options

Threat Modeling Tool

Compare Threagile Against Alternatives

vs.

CAIRIS

You can import or enter a wide variety of security, usability and requirements data to gain new insights. These include information about assets, countermeasures, personas, requirements, and architectural components. A single view cannot capture a complex system. Therefore, automatically...

Compare
vs.

OWASP Threat Dragon

OWASP Threat Dragon is a modeling program that creates threat model diagrams as part a secure development cycle. Threat Dragon adheres to the principles and values of the threat modeling manifesto. It can be used to identify possible threats and determine their mitigations. It also provides...

Compare
vs.

ThreatModeler

ThreatModeler™, an enterprise threat modeling platform, is an automated solution that reduces the effort required to develop secure applications. Today's information security professionals have a pressing need to create threat models of their organizations' data and software. We do this at the...

Compare
vs.

SD Elements

Today, Security Compass is a pioneer in application security that enables organizations to shift left and build secure applications by design, integrated directly with existing DevSecOps tools and workflows. To better understand the benefits, costs, and risks associated with an investment in SD...

Compare
vs.

IriusRisk

IriusRisk is an open Threat Modeling platform that can be used by any development and operations team – even those without prior security training. Whether your organization follows a framework or not, we can work with all the threat modeling methodologies, such as STRIDE, TRIKE, OCTAVE and...

Compare
vs.

Microsoft Threat Modeling Tool

Microsoft Security Development Lifecycle, (SDL) is a core component of threat modeling. It's an engineering technique that you can use to identify threats, attacks and vulnerabilities that could affect your application. Threat modeling can be used to help you design your application, meet your...

Compare
vs.

Cisco Vulnerability Management

You can't fix all the vulnerabilities. Use extensive threat intelligence and patented prioritization techniques to reduce costs, save time and keep your team focused on reducing your biggest risks. This is Modern Risk-Based Vulnerability management. We developed Risk-Based Vulnerability...

Compare
vs.

Tutamen Threat Model Automator

Flexibility, ease of use, common taxonomies All the details are here. The Tutamen Threat Model Automator was designed to allow security at the architectural stage where it is most cost-effective to fix flaws. With a single input of variables, human error and inconsistencies can be reduced. A...

Compare

Similar Software

OWASP Threat Dragon

OWASP Threat Dragon is a modeling program that creates threat model diagrams as part a secure development cycle. Threat Dragon adheres to the principles and values of the threat modeling manifesto. It can be used to identify possible threats and determine their mitigations. It also provides...

View Software
IriusRisk

IriusRisk is an open Threat Modeling platform that can be used by any development and operations team – even those without prior security training. Whether your organization follows a framework or not, we can work with all the threat modeling methodologies, such as STRIDE, TRIKE, OCTAVE and...

View Software
SD Elements

Today, Security Compass is a pioneer in application security that enables organizations to shift left and build secure applications by design, integrated directly with existing DevSecOps tools and workflows. To better understand the benefits, costs, and risks associated with an investment in SD...

View Software
CAIRIS

You can import or enter a wide variety of security, usability and requirements data to gain new insights. These include information about assets, countermeasures, personas, requirements, and architectural components. A single view cannot capture a complex system. Therefore, automatically...

View Software
ThreatModeler

ThreatModeler™, an enterprise threat modeling platform, is an automated solution that reduces the effort required to develop secure applications. Today's information security professionals have a pressing need to create threat models of their organizations' data and software. We do this at the...

View Software