Please enable JavaScript.
Coggle requires JavaScript to display documents.
Attacker - Coggle Diagram
Attacker
Message contents
Reading/viewing
Priviledge Escalation
Read all data
Tampering data presentation
Changing
Data at transit
Burp
Man in the middle
TLS
JWT
Data at rest
XSS
CORS, CSP
SQL-injection
Prepared statements
ORM
System breach (OS, Application)
OS updates
Firewall
Application updates
Hardened confs
User indentity
Sender ID
Receiver ID
Social engineering
General education
Knowledge about threats
Usability
DoS/DDoS
Flooding
Spam
F5, proxy, etc.
Integrity, general trust