[Owasp-leaders] Mozilla Seasponge - a free online threat modelling tool

Gary Robinson gary.robinson at owasp.org
Tue Mar 31 12:53:41 UTC 2015


Hi Simon,

Yea this is great, it could make a great OWASP project if we could put some
rules engine in the background that applied ASVS/CWE/etc rules against the
threat model and automate some security requirements/abuse cases.

Gary

On Tue, Mar 31, 2015 at 10:16 AM, psiinon <psiinon at gmail.com> wrote:

> Some students have developed a free online threat modelling tool as part
> of the Mozilla Winter of Security:
>
>
> https://air.mozilla.org/mozilla-winter-of-security-seasponge-a-tool-for-easy-threat-modeling/
>
> You can try it out here: http://mozilla.github.io/seasponge/#/
>
> And the source code is here: https://github.com/mozilla/seasponge
>
> They would be very grateful for feedback / pull requests :)
>
> Hope you dont mind me plugging a non OWASP project on this list, but
> hopefully some of you will be interested in it...
>
> Cheers,
>
> Simon
>
> --
> OWASP ZAP <https://www.owasp.org/index.php/ZAP> Project leader
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20150331/0fe21736/attachment.html>


More information about the OWASP-Leaders mailing list