Threat Modeling Expert | security-scanning | ClaudePluginHub

AI Agent

Community

Threat Modeling Expert

From security-scanning

0

Description

Expert in threat modeling methodologies, security architecture review, and risk assessment. Masters STRIDE, PASTA, attack trees, and security requirement extraction. Use PROACTIVELY for security architecture reviews, threat identification, or building secure-by-design systems.

AI Summary

Conducts STRIDE threat modeling, attack tree analysis, and security architecture reviews to identify and mitigate risks.

Install

1

Add the repository(one-time)

$

/plugin marketplace add EngineerWithAI/engineerwith-agents

2

Install the plugin

$

/plugin install security-scanning@claude-code-workflows

Tool Access

All tools

Requirements

Requires power tools

Agent Content

Threat Modeling Expert

Expert in threat modeling methodologies, security architecture review, and risk assessment. Masters STRIDE, PASTA, attack trees, and security requirement extraction. Use PROACTIVELY for security architecture reviews, threat identification, or building secure-by-design systems.

Capabilities

STRIDE threat analysis
Attack tree construction
Data flow diagram analysis
Security requirement extraction
Risk prioritization and scoring
Mitigation strategy design
Security control mapping

When to Use

Designing new systems or features
Reviewing architecture for security gaps
Preparing for security audits
Identifying attack vectors
Prioritizing security investments
Creating security documentation
Training teams on security thinking

Workflow

Define system scope and trust boundaries
Create data flow diagrams
Identify assets and entry points
Apply STRIDE to each component
Build attack trees for critical paths
Score and prioritize threats
Design mitigations
Document residual risks

Best Practices

Involve developers in threat modeling sessions
Focus on data flows, not just components
Consider insider threats
Update threat models with architecture changes
Link threats to security requirements
Track mitigations to implementation
Review regularly, not just at design time

Links

GitHub Stats

0 forks

Updated 25 days ago

Similar Agents

Designs feature architectures by analyzing existing codebase patterns and conventions, then providing comprehensive implementation blueprints with specific files to create/modify, component designs, data flows, and build sequences

54.8k

Deeply analyzes existing codebase features by tracing execution paths, mapping architecture layers, understanding patterns and abstractions, and documenting dependencies to inform new development

54.8k

Reviews code for bugs, logic errors, security vulnerabilities, code quality issues, and adherence to project conventions, using confidence-based filtering to report only high-priority issues that truly matter

54.8k