Threat Modeling Collaborative Articles

What are the best practices for validating and sanitizing user input to prevent XSS attacks?

Learn what cross-site scripting (XSS) is, how it works, and how to avoid it by applying secure design principles and threat modeling techniques.

Threat Modeling

How do you educate and train your developers and testers on XSS prevention and detection techniques?

9 contributions

Learn how to prevent and detect XSS attacks using secure design principles and threat modeling techniques.

Threat Modeling

How do you handle complex or dynamic attack scenarios using attack trees?

19 contributions 4 months ago

Learn how to use modularization, decomposition, abstraction, conditional branches, temporal nodes, and dynamic attributes to simplify and update your attack trees.

Threat Modeling

How do you monitor and respond to XSS incidents and breaches in your web environment?

9 contributions

Learn how to apply secure design principles and threat modeling techniques to prevent XSS attacks on your web application, and how to monitor and respond to XSS…

Threat Modeling

What are the best practices for creating and maintaining DFDs for secure software development?

11 contributions

Learn the best practices for creating and maintaining data flow diagrams (DFDs) for secure software development, such as defining scope, using notation, labeling…

Threat Modeling