Threat modeling tool
The goal of this project is to automate basic threat modeling for web application codebases. The project will label all the applications services and map out the potential attack surfaces. This is just a POC that I wanted to create for fun to learn more about threat modeling.
Javacript (js, json for now..)
-
API services
-
Database Services
-
Other Web Services
-
Web App Configs
-
Static frontend files ( CDN's )
https://cheatsheetseries.owasp.org/cheatsheets/Threat_Modeling_Cheat_Sheet.html https://www.npmjs.com/package/common-js-file-extensions