GitHub

pytm: A Pythonic framework for threat modeling

Traditional threat modeling too often comes late to the party, or sometimes not at all. In addition, creating manual data flows and reports can be extremely time-consuming. The goal of pytm is to ...
GitHub

Asset definitions for an organization's external attack surface

It all started at a panel back in 2022. Jeff Foley, the amass project lead, was asked the question “What is an attack surface - is it simply internet infrastructure assets?”. Having written an asset ...

Ivan Battimiello Receives 2025 Global Recognition Award For Secure Systems Leadership And High-Impact Engineering

Ivan Battimiello earned a 2025 Global Recognition Award for technical leadership in secure systems engineering. His nine-year ...
IEEE

Automated Penetration Testing Architecture Using Metasploit and OWASP ZAP for Web Applications

Abstract: This research study introduces an innovative approach to fortify web application security through the utilization of automated penetration testing architecture. While leveraging the robust ...