(h/t to Reasonable AppSec )
Threat Modeling with ATT&CK v1.0.0
Quite an in-depth review of their threat modeling approach. Lots of interesting information.
They also reference DFD3 as standard for drawing DFDs which I had not come across before.
(h/t to Reasonable AppSec )
Threat Modeling with ATT&CK v1.0.0
Quite an in-depth review of their threat modeling approach. Lots of interesting information.
They also reference DFD3 as standard for drawing DFDs which I had not come across before.