SeaSponge

SeaSponge is an accessible web-based threat modeling tool developed for Mozilla Winter of Security 2014.

About

This web-based application is being developed with three characteristics in mind:

Accessibility: We want everyone to be able to map out their infrastructures and generate security reports on any operating-system and on any browser.
Aesthetics: We’re tired of clunky, boring interfaces - we want to bring the pizazz into threat-modeling.
Intuitive User-Experience: We hate manuals, and we want you to be able to use this software without one.

Here is a share link for the SeaSponge threat model we developed in our Air Mozilla demo video: http://goo.gl/Q8mt0T

See our Usage page in our Wiki for more details.

usage_demo

With Mozilla Advisor Curtis Koenig and Professor Dr. Pawan Lingras

You may need to prefix commands with sudo

Node.js
- Bower npm install -g bower
- Grunt npm install -g grunt-cli
- Yeoman npm install -g yo
  - AngularJS Generator npm install -g generator-angular
Ruby
- Linux users may also need ruby-dev via sudo apt-get install ruby-dev
- Sass gem install sass
- Compass >=0.12.2 gem install compass

After forking and cloning the repository in the location of your choice run the following commands to install your Node.js and Bower dependencies.

On Debian and Ubuntu-based platforms, the nodejs-legacy package must be installed along with nodejs and npm using apt-get in order to fix a naming conflict that will otherwise prevent some packages from building and running correctly, as explained in [/usr/share/doc/nodejs/README.Debian] (http://apt-browse.org/browse/ubuntu/trusty/universe/i386/nodejs/0.10.25~dfsg2-2ubuntu1/file/usr/share/doc/nodejs/README.Debian)

npm install
bower install

Once you have the application and dependencies installed you can start building the app.

# Previews the app on a local server
grunt serve

# Builds the application to dist/
grunt build

# Build docs to docs/
grunt docs

# Build docs and serve docs/ for web browser
grunt serve:docs