The Guide

A comprehensive, systematic approach to learning and implementing threat modeling in your organization.

Reading Path

This guide is designed to be read sequentially, building from foundational concepts to advanced practices. Each part builds upon the previous, providing a complete education in threat modeling.

Chapter 1 Foundations & Methodologies

Introduction to threat modeling concepts and the major methodologies: STRIDE, PASTA, DREAD, OCTAVE, and LINDDUN. Learn the 6-phase threat modeling process.

Start Here →

Chapter 2 Threat Enumeration Techniques

10 specific techniques for identifying and documenting threats, from element-by-element walks to collaborative workshops and validation methods.

Continue →

Chapter 3 Case Studies

Five detailed real-world examples demonstrating threat modeling across healthcare, satellite systems, food delivery, AI/LLM infrastructure, and physical security.

View Case Studies →

Chapter 4 Best Practices & Resources

Characteristics of effective threat models, common pitfalls to avoid, organizational best practices, templates, tools, and continuous learning resources.

Continue →

What You'll Learn

Core threat modeling methodologies and when to use each
Systematic techniques for identifying threats
Risk analysis and prioritization frameworks
Mitigation planning and validation strategies
Industry-specific threat patterns and examples
Tools, templates, and resources for your practice

Begin with Part 1 →