Meet ThreatPad!

Meet ThreatPad - the new kid on the block:

It’s a threat model editor I’ve been using for my own stuff and now want to launch for the Community! :gift:

It has a focus on simplicity and quick start + sharing.

Some of the use cases I’ve used it for:

  1. jot down a few threats and mitigations real quickly
  2. share a threat modeling space with a friend
  3. start :tm: training with a quick real-world scenario threat modeling and capture results.
  4. show a friend what’s that cool threat modeling thing you have been so passionate about? Start by sharing a link to a sweet threat model you created for them.
  5. threat model with nothing but your phone.
  6. meta threat model together

Please let me know if you have any feedback!

Happy new year 2025! :fireworks: :fireworks: :fireworks: :partying_face: :partying_face: :tada: :tada: :tada:

P. S.: Sorry, no fancy AI this time. :robot: But fancy End-to-End Encryption. :closed_lock_with_key: :stuck_out_tongue_winking_eye:

3 Likes

Great job. Love the simplicity :slight_smile:

I would love it if you added a section for system description (basically an equivalent of " What are we working on?"). It makes the TM easy to read when shared.

1 Like

Hi @sandesh ,

would a single textarea suffice or what are you thinking of?

I have hidden settings where you can set the title. I also experimented with integrating draw.io for a diagram.

See Settings example - ThreatPad or put an S between the first and second colon in the URL hash fragment - # … :S: …

Hendrik

Cool! I love the simplicity. What about :emoji: (slack style entry, :wink: also works here on tm connect.)

1 Like

Hi @adamshostack, good idea, I add it to my backlog. Will add discourse named emojis with native browser rendering… :dancer: Unicode emojies are already working… :slight_smile: