Threat Modeling

Shift Left to Design for Security

Not all application security vulnerabilities come from coding errors. About half come in the form of software design flaws which will typically be unique to your applications, making them hard to find – in many cases impossible to find – with automated tools.

NetSPI’s threat modeling helps you prevent or detect architecture flaws
  • Trust Boundary Violations

  • Authentication Bypass

  • Commingling Data and Control Instructions

  • Improper Authorization

  • Inconsistent Input Validation

  • Misused Cryptography

  • Improper Sensitive Data Handling

  • Unsafe External Components

ATTACK SCENARIOCOMPONENT(S)ASSET(S) / CONTROL(S)THREAT ACTOR(S)
Unauthorized disclosure of Password hashes and saltsSingle sign-onCredential key-value store
MFA for administrators, comprehensive audit logs for admin access		Compromised or malicious insider
Hijacked service container used to abuse credential injection with attempts to establish persistence.Worker nodeEncryption keys
Hashicorp Vault		Compromised service or cloud based actor
Malicious third party service abuses trust relationships between microservice tiers.Microservices APICustomer data
API tokens, rate limiting		Third party service
Not all application security vulnerabilities come from coding errors. 50% of application security risks come in the form of software design flaws which can’t be identified through traditional automated means.
Source: Software Security, Gary McGraw

Whether applied early or late in a project’s lifecycle, NetSPI uses threat modeling to provide extensive, context aware remediation guidance for hard-to-fix defects in the design of software. Additionally, threat modeling can be applied iteratively throughout the lifetime of an application to provide a constant value stream.

NetSPI provides you with an understanding of the current level of security in your software and its infrastructure components by:

  • Interviewing key system stakeholders to understand business context, implementation details, and system risks 
  • Reviewing available documentation to gain a deeper understanding of the application 
  • Constructing a threat model diagram to facilitate analysis of attack scenarios and system vulnerabilities and risks 
  • Identifying threats to any vulnerabilities in the application  
  • Comparing your current security measures with industry best practices 
  • Providing recommendations that you can implement to mitigate threats and vulnerabilities and meet industry best practices  

Leveraging the brightest minds in the industry, world-class technologies, and ability to think like real-world adversaries, NetSPI’s Threat Modeling helps you secure your entire attack surface through: 

Finding vulnerabilities that other methods cannot. 

Providing strategic insight into the threats and corresponding security features that matter. 

Proactively preventing entire classes of vulnerabilities from existing. 

Eliminating wasteful security activities and features. 

Need a Quote?
Common Questions
What is Penetration Testing as a Service (PTaaS)?

PTaaS is NetSPI’s delivery model for penetration testing. It enables customers to simplify the scoping of new engagements, view their testing results in real time, orchestrate faster remediation, perform always-on continuous testing, and more - all through the Resolve™ vulnerability management and orchestration platform. Learn More

Why should I use NetSPI?

We help organizations defend against adversaries by being the best at simulating real-world, sophisticated adversaries with the products, services, and training we provide. We know how attackers think and operate, allowing us to help our customers better defend against the threats they face daily.

How does NetSPI ensure quality results?

At NetSPI, we believe that there is simply no replacement for human-led manual deep dive testing. Our Resolve platform delivers automation to ensure our people spend time looking for the critical vulnerabilities that tools miss. We provide automated and manual testing of all aspects of an organization’s entire attack surface, including external and internal network, application, cloud, and physical security.

Our proven methodology ensures that the client experience and our findings aren’t only as good as the latest tester assigned to your project. That consistency gives our customers assurance that if vulnerabilities exist, we will find them.