Identify Threats with PASTA

PASTA (process for attack simulation and threat analysis) is a risk-centric approach to threat modeling which involves seven steps. It aims at selecting or developing countermeasures in relation to the value of the assets to be protected.

Stage I: Definition of the Objectives (DO) for the Analysis of Risks
Stage II: Definition of the Technical Scope (DTS)
Stage III: Application Decomposition and Analysis (ADA)
Stage IV: Threat Analysis (TA)
Stage V: Weakness and Vulnerability Analysis (WVA)
Stage VI: Attack Modeling & Simulation (AMS)
Stage VII: Risk Analysis & Management (RAM)