Home
This repository provides a comprehensive multi-cloud threat modeling framework built around the Microsoft Security Threat Model Stencil system. The framework enables security architects and engineers to create detailed threat models for Azure, AWS, and cloud SaaS environments through standardized stencils, threat properties, and binary template files.
The repository contains binary threat model templates (.tb7 files), stencil definitions for cloud services, compliance-focused threat properties, and sample implementations. For detailed information about the stencil categories and their components, see Stencil Categories. For guidance on compliance standards and threat properties, see Threat Properties and Compliance Standards. For practical implementation examples, see Sample Implementations.
The repository is organized around several key systems that work together to provide a complete threat modeling solution:
The core system implements the Microsoft Security Threat Model Stencil framework through versioned binary templates and organized stencil categories:
The repository implements its threat modeling capabilities through specific file types and naming conventions:
<style> </style>| Component Type | File Pattern | Current Versions | Purpose |
|---|---|---|---|
| Binary Templates | AzureTemplate.v*.tb7 | v3, v4, v5, v6 | Executable threat model templates |
| Release Documentation | README.md | Single source | Stencil catalog and release notes |
| Sample Models | Samples/ directory | ADAP implementation | Real-world usage examples |
| Governance | *.md files | Latest | Community and security policies |
The current production template is AzureTemplate.v6.tb7, which includes the most comprehensive stencil set as documented in the Release 6 notes. Legacy templates (v3-v5) are maintained for backward compatibility and migration scenarios.
The system supports a structured approach to threat modeling across multi-cloud environments:
To begin using the threat modeling templates:
- Download the latest template: Use AzureTemplate.v6.tb7 for the most current stencil set
- Review the stencil catalog: Reference the Release 6 notes in README.md for available components
- Examine sample implementations: Study the Azure Data & Analytics Platform model in the Samples/ directory
- Select appropriate threat properties: Choose from 27+ compliance standards based on your requirements For detailed usage instructions, see Using the Stencil System. For template version comparisons, see Template Files and Versions. For contribution guidelines, see Contributing and Project Governance.