Back to Arcade
Play · Threat Modeling
Heads up: this content is AI-generated and has not been human-reviewed. In-app AI evaluation (AI Check / AI Assist / GRC Coach) is also AI — so both the content and the feedback can be wrong. Verify against primary sources. Learn more.
Threat Modeler
STRIDE is a threat framework: Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege. Walk each component of a system and pick the STRIDE categories that apply plus the mitigations you'd require. +1 per correct pick, −1 per wrong pick (floored to 0 per component per category).
AI-generated system · Pro
Paid members can generate fresh STRIDE threat-modeling scenarios on any system architecture they want to practise.
Upgrade to unlock