SECURITY RESOURCES
Offensive minded security exploit developmentThreat Modeling
What is Threat Modeling?
A common question asked by people new to the specifics of cybersecurity. Threat modeling is a practical measure used to protect your business’ data and networks from cyber threats and attacks.
Read MoreA Pasta Threat Modeling Solution for Complex Cybersecurity Tasks
PASTA is not a complicated static framework. It’s an agile methodology that breaks down and solves complex cybersecurity tasks, allows scaling, and evolves with the cybersecurity landscape and business goals.
Read MoreCybersecurity Library, Ebooks & Guides, Threat Modeling, VerSprite Security Resources
The Process for Attack Simulation and Threat Analysis
PASTA is the Process for Attack Simulation & Threat Analysis and is a risk-centric threat modeling methodology aimed at identifying viable threat patterns against an application or system environment.
Download eBookThreat Modeling: A Comprehensive Guide
In this model, you will see engineers, network professionals, developers, architects, business analysts, project managers, security champions, pentesters, and quality assurance engineers. Because they all have some level of involvement and collaboration at different stages of application, as well as organizational, threat modeling ensures effective results.
Read MoreCybersecurity Library, Ebooks & Guides, Supply Chains, VerSprite Security Resources
Using Risk-Based Threat Modeling to Protect Your Supply Chain
Why are supply chains a popular target for cybercriminals? VerSprite CEO, Tony UcedaVélez, introduces our risk-based threat modeling approach, PASTA, and how it allows organizations to better protect their supply chain software from threat actors.
Read MoreAttacking Your Assumptions: How Criminal Tactics Can Save Your Organization
In this article, VerSprite's Offensive Security team explore the difference between common security risk assessments (vulnerability assessment, penetration testing, and red teaming) as we walk you through real exploits we have used to test organizations' security protocols.
Read MoreCategory
- All Resources
- Application Security
- Case Study
- Cloud Security
- Cybersecurity Library
- CyberWatch
- DevSecOps
- Digital Forensics & Incident Response
- Ebooks & Guides
- Geopolitical Risk
- In The News
- Mobile Security Testing
- Podcasts
- Possible Use Cases
- Red Teaming and Social Engineering
- Reports
- Research Advisories
- Security Awareness
- Security Products
- Security Research
- Security Testing
- Security Training
- Slides & Presentations
- Supply Chains
- Threat & Vulnerability Management
- Threat Modeling
- VerSprite Security Resources
- Videos
- Web Application Security
- Webinars
Subscribe for Our
Updates
Please enter your email address and receive the latest updates