• HOME
  • CATEGORIES

    • CATEGORIES

    • Browse All Categories
  • FOR VENDORS

    • FOR VENDORS

    • Log In to Vendor Portal
    • Get Started
  • REVIEWS

    • REVIEWS

    • Write a Review
    • Product Reviews
    • Vendor Directory
    • Product Comparisons
  • GARTNER PEER COMMUNITY™
  • GARTNER.COM
  • Community GuidelinesListing GuidelinesBrowse VendorsRules of EngagementFAQPrivacyTerms of Service
    ©2026 Gartner, Inc. and/or its affiliates.
    All rights reserved.
  • Categories

    • No categories available

      Browse All Categories

      Select a category to view markets

  • For Vendors

    • Log In to Vendor Portal 

    • Get Started 

  • Write a Review

Join / Sign In
Powered by Google TranslateThis service may contain translations provided by Google. Google disclaims all warranties related to the translations, express or implied, including any warranties of accuracy, reliability, and any implied warranties of merchantability, fitness for a particular purpose and noninfringement. Gartner's use of this provider is for operational purposes and does not constitute an endorsement of its products or services.

Gartner Peer Insights content consists of the opinions of individual end users based on their own experiences, and should not be construed as statements of fact, nor do they represent the views of Gartner or its affiliates. Gartner does not endorse any vendor, product or service depicted in this content nor makes any warranties, expressed or implied, with respect to this content, about its accuracy or completeness, including any warranties of merchantability or fitness for a particular purpose.

This site is protected by hCaptcha and its Privacy Policy and Terms of Use apply.


Software reviews and ratings for EMMS, BI, CRM, MDM, analytics, security and other platforms - Peer Insights by Gartner
Community GuidelinesListing GuidelinesBrowse VendorsRules of EngagementFAQsPrivacyTerms of Use

©2026 Gartner, Inc. and/or its affiliates.

All rights reserved.

All Categories
/
IT Security
/
Threat Modeling Automation

Threat Modeling Automation Reviews and Ratings

Top Trending Products

Microsoft Azure

Popular Product Comparisons

IriusRisk vs SD ElementsOWASP Threat Dragon vs SD ElementsMicrosoft Azure vs IriusRiskMicrosoft Azure vs SD ElementsIriusRisk vs OWASP Threat DragonIriusRisk vs Threat CanvasMicrosoft Azure vs OWASP Threat DragonSD Elements vs Threat Canvas

What is Threat Modeling Automation?

Threat modeling automation tools automate the creation of security requirements and threat models. They can integrate with software development life cycle (SDLC) tools to manage requirements and perform validation. Threat modeling automation tools dynamically highlight potential security ramifications of application architecture and recommend secure coding practices or architectural countermeasures. These tools significantly decrease the effort required to create and maintain threat models, security requirements and risk assessments. This tool automatically identifies potential threats based on predefined criteria, seamlessly integrates with development tools like JIRA, Jenkins etc., and checks for coding standards, potential bugs, and security vulnerabilities. Typical users include security teams, developers, DevOps teams, product owners, and risk management professionals, who use it to efficiently identify and mitigate security risks.

How Categories and Markets Are Defined

Product Listings

Filter by

Products 1 - 11 of 11
Sort by
Logo of SD Elements

SD Elements

By Security Compass

4.7
(29 Ratings)

SD Elements is a software designed to automate software security requirements and streamline risk management processes within the software development lifecycle. It provides features such as security requirements generation, risk assessment, and remediation guidance based on regulatory and industry standards. The software integrates with development workflows and tools to help organizations identify, manage, and mitigate security risks early in the development process. SD Elements addresses the business need for improving software security posture by embedding security practices into development activities, reducing the potential for vulnerabilities and ensuring compliance with relevant security and privacy standards.

Show More Details
Logo of Microsoft Azure

Microsoft Azure

By Microsoft

4
(14 Ratings)

Microsoft Azure is a cloud computing software that offers a range of services including virtual machines, databases, networking, storage, artificial intelligence, and analytics. The software enables organizations to build, deploy, and manage applications across a global network of data centers. It allows users to scale resources as required and supports multiple operating systems and development frameworks. Azure provides tools for security, compliance, and disaster recovery to help address business continuity challenges. It is designed to support workloads from simple web hosting to complex data analysis, allowing businesses to optimize infrastructure management and operational efficiency.

Show More Details
Logo of IriusRisk

IriusRisk

By IriusRisk

4.3
(4 Ratings)

IriusRisk is a software designed to facilitate threat modeling and risk management for application security. The software enables organizations to identify, assess, and mitigate security threats throughout the development lifecycle by automating the creation of threat models and recommending security controls. It provides customizable templates, integrates with development tools, and allows collaboration among security teams and developers. IriusRisk supports the tracking of identified risks and compliance requirements, helping organizations address vulnerabilities and strengthen application security posture while streamlining communication and documentation of risk management activities.

Show More Details
Logo of OWASP Threat Dragon

OWASP Threat Dragon

By The Open Web Application Security Project (OWASP)

4.6
(4 Ratings)

OWASP Threat Dragon is a software designed for threat modeling applications to help identify, evaluate, and mitigate potential security threats in software systems. It enables users to create data flow diagrams and assign threats to elements within these diagrams, facilitating detailed analysis of security risks. The software provides a structured environment for managing and updating threat models, supporting both single projects and team collaboration. OWASP Threat Dragon aims to address challenges related to understanding and documenting security vulnerabilities in application design, promoting a systematic approach to threat management throughout the software development lifecycle.

Show More Details
Logo of Threat Canvas

Threat Canvas

By SecureFlag

5
(2 Ratings)

Threat Canvas is a software designed to assist organizations in identifying, assessing, and managing vulnerabilities within their software development lifecycle. The software provides features for automated threat modeling, enabling users to visualize application structures, detect security risks, and prioritize mitigations. It integrates with development workflows to facilitate continuous security assessment and supports compliance with security frameworks by generating actionable reports. Threat Canvas addresses the business problem of reducing security risks and improving application security through its collaborative capabilities and integration with existing tools used in software development and DevSecOps processes.

Show More Details
Logo of Cisco Vulnerability Management

Cisco Vulnerability Management

By Cisco Systems

3
(1 Rating)

Cisco Vulnerability Management is a software designed to help organizations identify, assess, and manage vulnerabilities across their IT environments. The software enables users to continuously scan assets, prioritize vulnerabilities based on risk, and track remediation efforts. It provides insight into threats by aggregating vulnerability data, allows security teams to focus on issues that may pose the greatest operational risk, and integrates with various security and IT management tools. Cisco Vulnerability Management assists organizations in reducing their attack surface by automating vulnerability discovery, prioritization, and remediation workflows, thereby supporting compliance and helping businesses manage their exposure to security risks.

Show More Details
Logo of Seezo

Seezo

By Seezo.io

5
(1 Rating)

Seezo automates security design reviews before code is written, eliminating the manual bottleneck that prevents threat modeling from scaling. Built for AI-assisted development, it helps security governance keep pace with the speed of the AI-SDLC.

Seezo ingests existing design artifacts, PRDs, Jira epics, Confluence pages, and Google Docs, to generate data flow diagrams, threat models, and security requirements mapped to trust boundaries, assets, and data flows. Findings flow directly into Jira, Slack, and Google Docs comments.

Built API-first, Seezo integrates with upstream and downstream SDLC systems without changing existing workflows. Every security requirement maps to internal standards and compliance controls with traceable decision trees, triggered rules, and source inputs, making outputs reviewable, auditable, and defensible. No black-box reasoning.

Coverage scales to every feature change, not just high-risk ones. SOC 2 audited and ISO 27001 certified.

Show More Details
Logo of Aristiun Automated Threat Modeling

Aristiun Automated Threat Modeling

By Aristiun

Aristiun Automated Threat Modeling is a software designed to support organizations in identifying potential security risks within their systems, applications, and processes. The software automates the process of detecting threats, mapping attack vectors, and visualizing vulnerabilities to facilitate informed risk assessments during design and development phases. It enables teams to collaboratively model security threats, analyze system architecture, and prioritize remediation efforts according to potential impact. By integrating with development workflows and providing actionable insights, the software streamlines threat modeling activities and assists businesses in reducing exposure to security vulnerabilities.

Be the first to .
Logo of Devici

Devici

By Security Compass

Devici is a diagrammatic solution for threat modeling. Security teams use it to visualize threats and understand risks so they can quickly begin putting security by design into practice.

Devici makes threat modeling faster, smarter, and easier to adopt. With built-in threat libraries and visual workflows, it’s ideal for teams moving to a more consistent, structured approach.

Be the first to .
Logo of Splunk Attack Analyzer

Splunk Attack Analyzer

By Cisco Systems (Splunk)

Splunk Attack Analyzer is a software designed to help organizations detect, analyze, and respond to cyber threats by automating the investigation of suspicious activities across email, web, and cloud platforms. The software integrates with security information and event management environments to facilitate real-time threat detection and analysis, providing contextual insights on potential attacks. It enables security teams to correlate data from multiple sources, perform automated enrichment of indicators of compromise, and accelerate remediation efforts. Splunk Attack Analyzer assists in reducing manual investigation workflows and enhances visibility into advanced threats, supporting incident response and security operations to address common business challenges such as improving response times and strengthening organizational security posture.

Be the first to .
Logo of ThreatModeler

ThreatModeler

By ThreatModeler software

ThreatModeler is a software designed to automate and simplify threat modeling processes for organizations. The software helps identify, assess, and mitigate potential security threats throughout the application lifecycle. It provides features such as visual diagrams, integration with development and security tools, real-time analysis, and import-export capabilities. ThreatModeler enables teams to model threats for cloud, on-premises, and hybrid environments, facilitating the identification of vulnerabilities and the implementation of security controls. The software aims to support collaboration across teams, streamline compliance processes, and reduce risk exposure by supplying actionable insights into possible threats and countermeasures during system design and deployment.

Be the first to .