Mastodawn

Open source and free. Download print-ready files and play Cornucopia together, browse the cards online, or play games online with remote team members.

https://cornucopia.owasp.org

https://copi.owasp.org

If you prefer, printed decks are available to purchase from a vendor as a dual-packaged Website App Edition x Companion Edition combination set:

https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection

@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec

2/2

OWASP Cornucopia - Threat modeling for everyone

OWASP Cornucopia is a mechanism in the form of a card game to assist software development teams identify security requirements in Agile, conventional and formal development processes.

Colin Watson 3d ago

The new Companion Deck for OWASP Cornucopia includes six novel suits to assist threat modelling of Agentic AI, Cloud, DevOps, Frontend, LLM and Automation. The suits can be used alone or in combination with suits from either existing Cornucopia decks: the Website App Edition or Mobile App Edition. My main contribution to this is the Automated Threats (BOT) suit.

https://cornucopia.owasp.org/news/20260508-companion-edition

@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec

1/2