Comments (5)
@shambho Does your commit 3 days ago resolve this issue? If so, let's close this one.
Alternately, or maybe also, we should document the object model on the wiki. I had put one up there a long time ago, but it is no longer valid, so I will deprecate it (I'd like to keep it around for some future looking work).
from pytm.
@colesmj nope. Commit from 3 days ago was about adding some cosmetic changes to tm.py, Readme and pytm.py. Agree, we should have more documentation on the properties available in each Class.
from pytm.
#91 documents a very small subset of attributes.
from pytm.
I would like to second this issue report: flags such as "sourceFiles" are not clear to the average user/reader, without explanation.
from pytm.
+1 Being new to threat modeling, some of these are quite hard to understand. Some can be figured out with a google search, like usesStrongSessionIdentifiers
.
But for checksInputBounds
, I had to check in the threats.json to understand, that it refers to Buffer sizes. So some additional documentation for many properties would certainly be beneficial.
from pytm.
Related Issues (20)
- Error with make image HOT 2
- Error with data field in input JSON HOT 5
- How are threats named, e.g., INPXX or AAXX? HOT 4
- How are "target" and its relevant "condition" extracted from a particular threat? HOT 5
- Documentation for attributes HOT 5
- Suggest to support converting c4 models into pytm HOT 7
- Use RAAML for threat models HOT 3
- Is the makefile broken? HOT 3
- Question: What's the purpose of defining trust boundary? HOT 7
- Got an error "AttributeError: 'str' object has no attribute 'name'" when using the "--sqldump SQLDUMP". HOT 2
- Cannot override findings, threats remain, DFD impacted, exception thrown for overrides len > 1 HOT 16
- pytm --report gives an error HOT 4
- Replace custom template engine with Jinja2 HOT 1
- README.md, section Currently Supported Threats, needs a legend HOT 7
- Enhancement request: move pyDAL to local import HOT 4
- Alternative format for threat lib for better readability and editing HOT 5
- AC22 Credential Aging review HOT 5
- Add a way to exclude threats for specific Elements HOT 2
- Outdated plantuml download link in Dockerfile HOT 1
- Upgrade docker base image to reduce the number of open-source vulnerabilities
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pytm.