In DC next month for OWASP Global AppSec DC 2025? Don’t miss #ThreatModCon 2025 DC the following day! Join top AppSec leaders to dive deep into #ThreatModeling and expand your skills.

Only a few spots left - register now with code OWASP15 for a special discount:

Running out fast! Don’t miss #ThreatModCon 2025 DC on Nov 7-8, right after OWASP Global AppSec DC 2025. Connect with top #threatmodeling experts - limited spots left.

Use OWASP15 for a special discount:

New blog, Publish Your Threat Model!

At ThreatModCon, I gave a talk titled “Publish Your Threat Model!” In it, I discussed work that Loren Kohnfelder and I have been doing to explore the idea, and today I want to share the slides and an essay form of the […]

[Original post on infosec.exchange]

You are so gonna dig my ThreatModCon talk, "Publish Your Threat Models."

ThreatModCon
The World’s Only Conference Dedicated To Threat Modeling
The conference is dedicated to providing a platform for threat modeling practitioners and AppSec leaders to delve into the latest trends & share best practices
www.threatmodcon.com

For ThreatModCon, we had our first ever tradeshow booth for Shostack + Associates. Before I got to the hotel, I had been carefully tracking delivery of our new banner and table throw. When I got there, I immediately went to collect them, and learned that the hotel couldn’t find the banner. They […]

Shostack + Associates updates

* Adam will be doing a book signing at the Pheonix Security booth at OWASP Global Appsec San Francisco on Friday the 27th at 3PM.
* Adam will be keynoting ThreatModCon San Francisco (Sept 27-28), immediately after OWASP Global Appsec... and we’ll have our […]

My talk at Threat Modeling Connect's ThreatModCon Lisbon 2024 was on Inherent Threats and how we manage them.

https://shostack.org/blog/inherent-threats-threatmodcon/

At #threatmodcon Frank Simorjay mentions that microsoft is using STRIDE, owasp top 10 and Mitre att&ck, incidentally addressing the weird claim that MSFT no longer uses STRIDE.

Excited to be at threatmodcon Lisbon

Check out my Trip Report about #ThreatModCon and #OWASPGlobalAppSec DC 2023!
shehackspurple.ca/2023/11/07/t...

Thank you for having me #owaspglobalappsecdc, #threatmodcon, Washington DC, and Adam Shostack , I had an AMAZING trip!!! Headed home to Canada now! 🇨🇦
youtu.be/oNbMkz2AFls?...

From #threatmodcon Kim Wuyts and Jonathan Marcil 🎉

And that's a wrap on the first (of hopefully many) #ThreatModCon conference!!! What a fantastic event!!! Threat Modeling Connect

Here's Kim Wuyts at #threatmodcon, talking about how we can't tag privacy on after we do security. @TMConnectHQ

Here's Avi Douglen speaking about The Threats to Our Community, at #threatmodcon Threat Modeling Connect

See you at ThreatModCon today? Watch the video to hear how I missed an early morning threat!

youtu.be/WwnS8BBIORQ?...

I'm speaking at the very first #ThreatModCon Oct 29th in Washington, DC! Think "Threat Modeling is for Everyone", a full day of threat modelling!
tix = $30-$60 get them here: https://www.eventbrite.com/e/threatmodcon-tickets-631781644907
#threatmodelling #appSec #threatmodeling

I'm speaking at #ThreatModCon Oct 29th in Washington, DC, and the CALL FOR PAPERS is open! "Threat Modeling is for Everyone", CFP closes July 15th, get going!

https://www.threatmodelingconnect.com/general-discussion-32/call-for-papers-threat-modeling-conference-2023-238