Skill

security-threat-modeler

STRIDE threat modeling, attack surface mapping, and threat tree generation. Trigger: "threat model", "STRIDE analysis", "attack surface", "threat assessment".

From sa

Install

Run in your terminal

npx claudepluginhub javimontano/jm-adk --plugin sovereign-architect

Tool Access

This skill is limited to using the following tools:

ReadGlobGrepBashAgent

Supporting Assets

View in Repository

evals/evals.json

examples/sample-output.md

prompts/use-case-prompts.md

references/body-of-knowledge.md

Skill Content

Similar Skills

skill-lookup

Searches, retrieves, and installs Agent Skills from prompts.chat registry using MCP tools like search_skills and get_skill. Activates for finding skills, browsing catalogs, or extending Claude.

prompts.chat

157.6k

prompt-lookup

Searches prompts.chat for AI prompt templates by keyword or category, retrieves by ID with variable handling, and improves prompts via AI. Use for discovering or enhancing prompts.

prompts.chat

157.6k

Hook Development

10 files

Guides implementation of event-driven hooks in Claude Code plugins using prompt-based validation and bash commands for PreToolUse, Stop, and session events.

plugin-dev

83.2k

Stats

Parent Repo Stars0

Parent Repo Forks0

Last CommitMar 22, 2026

Actions

View Source View Plugin View on GitHub View README

Procedure

Step 1 — System Decomposition

Identify all trust boundaries: user/server, server/database, service/service, internal/external.

Map all data flows across trust boundaries.

Identify data stores and their sensitivity levels.

Catalog all entry points: APIs, UIs, file uploads, message queues, webhooks.

Produce a Data Flow Diagram (DFD) in Mermaid [HECHO].

Step 2 — STRIDE Analysis

For each component and data flow, assess:

Spoofing: Can identity be faked?
Tampering: Can data be modified in transit or at rest?
Repudiation: Can actions be denied without evidence?
Information Disclosure: Can sensitive data leak?
Denial of Service: Can availability be disrupted?
Elevation of Privilege: Can unauthorized access be gained?

Document each threat with component, category, and attack scenario [HECHO].

Rate each threat by severity.

Step 3 — Attack Surface Mapping

Enumerate all externally accessible endpoints.

Identify authentication and authorization gaps per endpoint.

Map input validation coverage: which inputs are sanitized, which are not.

Assess third-party integration security (webhook verification, API key management).

Identify privileged operations and their access controls.

Step 4 — Threat Report

Produce a threat register organized by STRIDE category.

Generate threat trees for the top 5 threats.

Recommend countermeasures for each threat.

Prioritize by exploitability and impact.

Procedure

Step 1 — System Decomposition

Identify all trust boundaries: user/server, server/database, service/service, internal/external.

Map all data flows across trust boundaries.

Identify data stores and their sensitivity levels.

Catalog all entry points: APIs, UIs, file uploads, message queues, webhooks.

Produce a Data Flow Diagram (DFD) in Mermaid [HECHO].

Step 2 — STRIDE Analysis

For each component and data flow, assess:

Spoofing: Can identity be faked?
Tampering: Can data be modified in transit or at rest?
Repudiation: Can actions be denied without evidence?
Information Disclosure: Can sensitive data leak?
Denial of Service: Can availability be disrupted?
Elevation of Privilege: Can unauthorized access be gained?

Document each threat with component, category, and attack scenario [HECHO].

Rate each threat by severity.

Step 3 — Attack Surface Mapping

Enumerate all externally accessible endpoints.

Identify authentication and authorization gaps per endpoint.

Map input validation coverage: which inputs are sanitized, which are not.

Assess third-party integration security (webhook verification, API key management).

Identify privileged operations and their access controls.

Step 4 — Threat Report

Produce a threat register organized by STRIDE category.

Generate threat trees for the top 5 threats.

Recommend countermeasures for each threat.

Prioritize by exploitability and impact.

security-threat-modeler

security-threat-modeler

Security Threat Modeler

Guiding Principle

Procedure

Step 1 — System Decomposition

Step 2 — STRIDE Analysis

Step 3 — Attack Surface Mapping

Step 4 — Threat Report

Quality Criteria

Anti-Patterns

Security Threat Modeler

Guiding Principle

Procedure

Step 1 — System Decomposition

Step 2 — STRIDE Analysis

Step 3 — Attack Surface Mapping

Step 4 — Threat Report

Quality Criteria

Anti-Patterns