Olivia
Online
threatspec
@ThreatSpec
Continuous Threat Modelling through code. It's open source, so get involved!
Interwebs
Joined March 2016
37 Following
143 Followers
52 Posts
@stephendv @zeroXten Great idea!
Equally exciting - threatspec was featured as an article in a threat modeling focused edition of @PenTestMag! Check out the article written by @zeroXten here: https://t.co/gP5n920Wse
Big news! A long time coming, but threatspec has had a bit of a rewrite. Actually, a complete rewrite. It's much easier to install and use now. Same idea - annotate your code, generate a threat model. Just just easier and prettier. Check it out! https://t.co/G2tuYLErU2
We're currently experimenting with using ThreatSpec to threat model APIs by putting annotations like x-threatspec-mitigates into Swagger/OpenAPI files. Thoughts, ideas, criticism welcome :) #appsec #threatmodeling #API
Who to follow
AI Security Engineers
@aiseceng
Advancing AI security by uniting innovators, researchers, builders, and defenders to share insights on securing AI-powered and agentic applications.
Abhay Bhargav 
@abhaybhargav
AppSec & AI Sec Expert | Black Hat, DEF CON Trainer | Building the future of AI-Native Secure Design and AI Code Security @SecurityReviewAI
Tutamantic security
@Tutamantic_Sec
Passionate about building a better process for automating #threatmodeling, helping to streamline #appsec Disciplined Agile Delivery workflows! @owasp fanboy.
Ok people. We're at 43 responses. So thank you all very much! Many of responses are from Cyber Security people, so let's see if we can squeeze in a couple more developers.
Reply to this tweet tagging your favourite developer ���
https://t.co/IVoKwOL0jT
#coding #programming
@izar_t Thanks for that! We're now at 40 responses, only 10 more to go :D
25 responses! Half way towards the goal of 50. Thanks to everyone who has filled it in. There's still time, so if you write code on a regular basis, we'd love to hear from you.
https://t.co/3XgwuS7FJu
#coder #programmer #developer #opensource
Still looking for developers, engineers, QEs, DevOps engs to fill in our brief survey on threat modeling. If you have 3 minutes to spare to help an open source project, that would be amazing 😍. Plz RT for reach. https://t.co/IVoKwOL0jT
#developers #DevOps #programming
Hello Twitter. We're still looking for people to fill in our little survey on code-driven threat modeling. We're especially interested in hearing from developers. Check it out:
https://t.co/IVoKwOL0jT
Please RT for much ❤️❤️❤️
Thanks! 🤩
@stephendv Haha thanks :)
Are you a software engineer? We'd love to hear from you. Help an open source project by filling in a brief survey on code-driven threat modelling. Please retweet for reach :) Thanks!
https://t.co/IVoKwOL0jT
#developers #opensource #cyber
Special thanks to @abhaybhargav and @zeroXten in particular for their work on Threat Modeling as Code for inspiration for this talk a few months ago.
Special shout outs and pointers made to the work of @adamshostack,@BrkSchoenfield, @threatmodeling,@t0nyuv, @abhaybhargav, @zeroXten, @ThreatSpec, @IreneMichlin, @JohnLaTwC during the #ThreatModeling Workshop at @owasp @BASConf
Interested in threat modeling? Interested in the idea of code-driven threat modeling? We've just created a new ThreatSpec Slack workspace. Come join us!
https://t.co/Gt0lD1xNyT
#threatmodeling #devsecops #everythingascode
@AppSecPodcast Absolutely!
Would probably also apply in some way to BDD/TDD tests.
I wonder if @ThreatSpec could be used to train machine learning based classification of function-level threats 🧐. So use ThreatSpec to tag a function F as mitigating against threat X, function G exposing threat Y etc. ML learns which code exposes, mitigates different threats etc
@cigitalgem @lfservin https://t.co/NunJZABNsh @ThreatSpec & https://t.co/tU2c2M8NRD @abhaybhargav
@BrkSchoenfield @cigitalgem @lfservin @abhaybhargav engineering and security to get an idea of what works and what doesn't. 2/2
@BrkSchoenfield @cigitalgem @lfservin @abhaybhargav Thanks++ for the mention @BrkSchoenfield! We're doing to spend some time over the coming weeks and months thinking about the next steps for ThreatSpec and code-driven threat modeling in general - ideas are more than welcome. We'll be looking to speak to people across 1/2
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.5M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.3M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.5M followers
Taylor Swift
@taylorswift13
81.3M followers
Lady Gaga
@ladygaga
72.8M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.6M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.8M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.3M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.6M followers