Generate STRIDE threat models for system architectures. Identifies Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege threats with risk ratings, CWE references, and actionable mitigations.

Weekly scheduled job that generates a compliance scorecard. Reviews authentication and access control, data protection, audit logging, vulnerability management, incident response, and change management — scoring each area and flagging anything below threshold.

Collection of OWASP-based security cheatsheets covering SQL injection prevention, XSS prevention, authentication best practices, secure headers, API security, and secrets management.

Hook that triggers when dependency files change (package.json, requirements.txt, Cargo.toml, go.mod). Scans updated dependencies against known vulnerability databases and alerts on HIGH/CRITICAL CVEs.

Structured incident response workflow following NIST SP 800-61. Guides teams through six phases — Detection, Triage, Containment, Investigation, Remediation, and Post-Mortem — each with checklists, prompts, and evidence-collection guidance.

AI assistant configured as an expert security analyst. Threat modeling, vulnerability assessment, OWASP Top 10, SAST/DAST, compliance frameworks, and incident response.

MCP server for searching the NIST National Vulnerability Database (NVD). Look up CVE details by ID, search by keyword or product, and check library versions for known vulnerabilities with CVSS severity scores.

Complete Snippbot setup for security analysts. Bundles a security-focused AI persona with threat modeling, CVE lookup, an incident-response workflow, dependency vulnerability alerts, weekly compliance reporting, and an OWASP knowledge base.