# threat-modeling

10 articlestagged with “threat-modeling”

Thinking Like a Defender

Mental models for defensive thinking, risk assessment frameworks, defense tradeoffs, and why understanding the defender's perspective makes you a better red teamer.

defender-mindsetrisk-assessmenttradeoffsfalse-positivesthreat-modeling

Intermediate

Threat Modeling for AI Systems

How to identify assets, threats, and attack vectors specific to AI systems using simplified threat modeling frameworks adapted for machine learning.

threat-modelingmethodologybeginnerplanning

Beginner

Threat Modeling for AI Infrastructure Using STRIDE

Systematic threat modeling methodology for AI/ML systems using STRIDE, data flow diagrams, and attack trees tailored to machine learning pipelines

infrastructurethreat-modelingstriderisk-assessmentmethodology

Intermediate

AI Attack Surface Mapping

Systematic methodology for identifying all attack vectors in AI systems: input channels, data flows, tool integrations, and trust boundaries.

attack-surfacemappingmethodologythreat-modelingvectors

Intermediate

Tradecraft

Advanced AI red team tradecraft covering reconnaissance techniques, AI-specific threat modeling, and structured engagement methodology for professional adversarial assessments.

tradecraftreconnaissancethreat-modelingmethodologyscopingpurple-teaming

Beginner

AI-Specific Threat Modeling

Adapting STRIDE for AI systems, building attack trees for LLM applications, identifying AI-specific threat categories, and producing actionable threat models that drive red team test plans.

threat-modelingstrideattack-treesllmai-securitymethodologytradecraft

Intermediate

AI-Specific Threat Modeling (Tradecraft)

Applying ATLAS, STRIDE, and attack tree methodologies to AI systems. Trust boundary analysis for agentic architectures, data flow analysis, and MCP threat modeling.

threat-modelingatlasstrideattack-treestrust-boundariesmcpagenticdata-flow

Expert

Building AI-Specific Threat Models

Step-by-step walkthrough for creating threat models tailored to AI and LLM systems, covering asset identification, threat enumeration, attack tree construction, and risk prioritization.

threat-modelingai-securityrisk-assessmentmethodologywalkthrough

Intermediate

Threat Modeling for LLM-Powered Applications

Step-by-step walkthrough for conducting threat modeling sessions specifically tailored to LLM-powered applications, covering data flow analysis, trust boundary identification, AI-specific threat enumeration, risk assessment, and mitigation planning.

threat-modelingllm-securityrisk-assessmentmethodologySTRIDEwalkthrough

Intermediate

AI Threat Modeling Workshop Walkthrough

Step-by-step guide to running an AI-focused threat modeling workshop: adapting STRIDE for AI systems, constructing attack trees for LLM applications, participant facilitation techniques, and producing actionable threat models.

threat-modelingstrideattack-treesworkshopfacilitationmethodologywalkthrough

Intermediate