Threat Uploader for Team Foundation Server

On Friday last week I was sitting in my office with a cappuccino about to get stuck into the e-mails I had received overnight when Rocky Heckman walked over. Apparently Rocky had the same idea but we took the opportunity to have a catch up and talk about some of the stuff we had been working on lately.

Recently Rocky completed a tour of Australia and New Zealand presenting with a number of speakers from Microsoft talking about a wide variety of security related subjects. One of the things that was covered at the Security Interchange events was the new Threat Analysis and Modeling Tool (BETA 2).

Rocky gave me a guided tour of the application and showed me how it can help application teams understand what the potential threats are to their applications and also provide guidance to mitigate thouse threats.


During the course of our discussion we talked about the file format in which Torpedo (the codename for the tool he was showing me) stores its data. Obviously its an XML file which means the data it contains is open for reuse.

When I saw the tool in action I thought that it would be cool if we could somehow upload the data into Team Foundation Server where the development of counter-measures for the generated threats could be tracked. I suggested to Rocky that I could bash together a simple utility that walks the XML file and creates Tasks in a Team Project.

Since Friday night I’ve been spending a few hours here and there putting the tool together and its finally read to be thrown out there for use. The application reads in the *.atmx file and looks for all threats which are set to reduce and all the counter-measures which are flagged for implementation.


Once the Upload button is clicked it connects to Team Foundation Server and creates Tasks for the identified threat and counter-measure combinations, inserting some of the details from Torpedo.


I’ve deployed the application using ClickOnce so you can just go and install it directly from this web-site, and you should be able to get updates automatically as I patch up any issues that people find with it. I’ve tried to tighten up the code to a reasonable level for this release, but I know that there are probably a few usability issues. If you have any comments feel free to leave comments on this post or shoot me an e-mail.


One thought on “Threat Uploader for Team Foundation Server

  1. PTA - Practical Threat Analysis tool

    Dear Mitch,

    I invite you to download PTA (Practical Threat Analysis) – a quantitative method and a software tool that enables you to model the security perimeter, identify threats on an asset-by-asset basis and evaluate the overall risk to the system. The risk level, potential damage and countermeasures required are all presented in real financial values. PTA calculates the level of risk and the available mitigation. It advises on the most cost-effective way to mitigate threats and reduce the risk.

    PTA is free-of-charge for students, researchers, software developers and independent security consultants. You are invited to visit our Web site, read more about the methodology and download a copy of the software at

    PTA’s great power is its ability to maintain dynamic threat models that are capable of reacting to today’s intensive changes in systems’ assets, vulnerabilities and threats. The product’s database infrastructure enables analysts to automatically recalculate threats and countermeasures priorities and provide decision makers with updated action item lists that reflect the daily changes in threat realities.

    Feel free to use PTA in your risk analysis and threat modeling missions – it is our contribution to the security community. I’ll be happy to have your comments and answer your questions on any issue.

    Yours Sincerely,

    Zeev Solomonik

    Chief Technology Officer

    PTA Technologies


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s