Threat Model Template

Securitysecuritythreat-modelstrideappsec

A STRIDE-based threat modeling template for analyzing application security with likelihood/impact ratings.

Prompt

Create a threat model for the following system:

{{system}}

Using the STRIDE framework, analyze:

**S — Spoofing** (Identity)
- How could an attacker impersonate a legitimate user or service?

**T — Tampering** (Data Integrity)
- Where could data be modified in transit or at rest?

**R — Repudiation** (Accountability)
- Can users deny performing actions? Is there adequate logging?

**I — Information Disclosure** (Confidentiality)
- Where could sensitive data be exposed?

**D — Denial of Service** (Availability)
- What endpoints or resources could be overwhelmed?

**E — Elevation of Privilege** (Authorization)
- How could a user gain unauthorized access?

For each threat:
- Likelihood: High / Medium / Low
- Impact: Critical / High / Medium / Low
- Mitigation: Specific countermeasure
- Status: Mitigated / Partially Mitigated / Open

What you get when you save this prompt

Your workspace unlocks powerful tools to iterate and improve.

AI OPTIMIZE

AI Optimization

One-click improvement with structure analysis and pattern suggestions.

VERSION DIFF

Version History

Track every edit. Compare versions side-by-side with word-level diffs.

ORGANIZE

Development

Code Review

Testing

Marketing

Folders & Tags

Organize your library with nested folders, tags, and drag-and-drop.

MCP

$ npm i -g @promptingbox/mcp

Claude · Cursor · ChatGPT

Use Everywhere

Access prompts from Claude, Cursor, ChatGPT & more via MCP integration.

Your prompts, organized

Save, version, and access your best prompts across ChatGPT, Claude, Cursor, and more.