Toritragging: A Threat Modeling Tool for SAS Applications

A threat model is a way of documenting an application and classifying the risks. OOSP actually makes a tool that's web-based that you could run in a Docker container and generate a threat model. You can just run it on your own system locally check your data in and you don't have to upload it to anyone else's servers because if you look for the modeling tools most of them are going to be SAS applications.