AI-Powered Mitigation Suggestions
Optionally connect your own LLM for context-aware remediation guidance. ThreatMitigator never sends your source code to AI providers - only redacted threat metadata.
Read More
2 min read
Optionally connect your own LLM for context-aware remediation guidance. ThreatMitigator never sends your source code to AI providers - only redacted threat metadata.
Severity-based exit codes, CI-optimized commands, and SARIF output for GitHub Advanced Security. Works with any CI system.
Scan application source code to automatically detect network connections and generate Data Flow Diagrams for threat modeling.
Scan Terraform, CloudFormation, Docker, and Helm configurations to identify security threats. Full HCL 2 parsing, module resolution, and multi-format support.
Generate findings in JSON, YAML, SARIF, Markdown, PDF, and Table formats. Professional PDF reports with charts, custom branding, and AI-enhanced content.
Parallel policy evaluation with near-linear scaling across CPU cores. Fast scan mode for development, configurable timeouts, and detailed performance statistics.
Extend ThreatMitigator with custom plugins written in any language. JSON-RPC 2.0 protocol over stdin/stdout with sandboxed execution.
Industry-standard Rego policy language from Open Policy Agent, powered by Microsoft's Regorus runtime in Rust. Write custom policies without recompiling.
AI-powered STRIDE threat modeling for Infrastructure as Code. Scan Terraform, CloudFormation, Docker, and Helm configurations with 90+ built-in policies and multi-framework support.
Track threats across scans with a git-friendly threat model file. Manage threat lifecycle from detection through resolution with drift detection.