Unit 4: Application of Threat Modelling and Management Techniques

This unit focused on practicing threat modelling and management, guided by the threat modelling manifesto, the OWASP cookbook, and the Mitre ATT&CK database.

Key Concepts Covered

  • Tools and Resources: Various tools and resources used in threat modelling and management.
  • Publicly Available Tools: Evaluating the use of publicly available tools to assist with threat modelling.
  • Threat Models: Creating threat models based on suggested scenarios.

The seminar provided practical insights into threat modelling techniques and their application in real-world scenarios. To the right is the reflective piece on this unit followed by an artefact:

Reflection on Unit 4

In this unit, I explored various tools and resources for threat modelling and management, including the threat modelling manifesto, the OWASP cookbook, and the Mitre ATT&CK database. I learned to evaluate publicly available tools and create threat models based on different scenarios. This knowledge is essential for developing robust security strategies and mitigating potential threats in real-world applications.

Threat Model Diagram

You can download the threat model diagram I created based on the scenario of a large international airport in the United States by clicking the button below:

Download Threat Diagram