pasta
pasta
Perform threat modeling using the PASTA (Process for Attack Simulation and Threat Analysis) framework — a risk-centric, seven-stage methodology that combines business impact analysis with attacker simulation.
When to use
- When the user wants to perform threat modeling on an application or system
- When the user wants to identify and prioritize security risks
- When the user runs
/pasta
Instructions
Guide the user through all 7 stages of PASTA interactively. At each stage, ask the user relevant questions, wait for their answers, then synthesize the results before moving to the next stage. Output all results in the user's language.
If a target system or application name is provided as an argument, use it as context throughout. If not provided, ask the user what system they want to threat-model.
If the current directory contains source code relevant to the target system, read it proactively to inform stages 2, 3, and 5.
More from guni1192/agent-skills
create-pr
Create a pull request by branching from the default branch, committing changes with a signed commit, and pushing.
8docker-init
Initialize Dockerfile and .dockerignore for the current project by detecting language, framework, and package manager.
7designdoc
Write a design document following Google's design doc practices. Guides through structured sections interactively to produce a comprehensive design doc.
5git-tag
Create a new semver-compliant git tag by bumping major, minor, or patch from the latest existing tag. Defaults to a patch bump and refuses to run unless on the default branch.
1