Download Guide:
Offensive Threat Models Against the Supply Chain
Discover Flaws in Your Environment
Offensive threat models are often used by security champions to discover flaws in application environments. Many threat models are built thru defensive lens, foregoing realistic attack patterns that reflect adversarial goals vs. simply using a limited, non-mutable threat category.
Supply chain software is highly attractive to cyber criminals due to being implicitly trusted by many of the [vendor] respective client infrastructures. Threat actors in this area include nation states, competing corporations, and private hacker syndicates. Emulating realistic offensive attack patterns in threat models yields better results for defensive measure by providing attack patterns that are more realistic based upon criminal cyber trends. Learn more about applying a more adversarial threat model to supply chain systems that are integrated into client environments.
Offensive Threat Models Against Supply Chains at AppSecCali 2019
Subscribe for Our Updates
Please enter your email address and receive the latest updates.