Beta launching!

Threat Modeling
as Code.
Now Collaborative.

Transform scattered threat models into organizational security intelligence. The collaboration layer for threatcl that enterprises have been waiting for.

Check out the Beta View Documentation
threatcl — zsh
# Configure cloud backend
$ cat threatmodel.hcl
backend "threatcl-cloud" {
  organization = "acme-corp"
  threatmodel    = "payments"
}
 
$ threatcl cloud push
✓ Cloud version matches local version (v1.0.0)
The Problem

Threat models shouldn't live in silos

Your threat models-as-code are powerful. But scattered across repos, they create blind spots that put your organization at risk.

🔍

Zero Discoverability

Your team can't find relevant threat models. Similar services get analyzed repeatedly while others go unprotected.

👥

Collaboration Friction

Non-technical stakeholders can't participate. Legal, compliance, and executives are locked out of the review process.

📊

No Visibility

Security leaders can't easily answer "Which systems have unmitigated high-severity threats?"

⚖️

Governance Gaps

No audit trails, no approval workflows, no policy enforcement. Compliance teams struggle with evidence collection.

The Solution

Enterprise-ready. Developer-loved.

All the power of threatcl CLI, plus collaboration, governance, and intelligence capabilities that scale across your organization.

🔎

Central Threat Registry

Every threat model automatically indexed with full-text search. Find all integrity related threats in seconds. Discover related threat models before starting new ones.

$ threatcl cloud search -impacts "Integrity"
Found 4 threat(s) over 2 threatmodel(s) in 2 org(s)
👁️

Executive Dashboards

Real-time visibility into threat coverage, risk trends, and control effectiveness across your entire portfolio.

Approval Workflows

Manage the review status of threat models. Get sign-offs from security, legal, and compliance before production.

📜

Policy as Code

Codify security standards. Ensure every internet-facing system has a threat model. Block deployments until high-severity threats have controls.

🔗

Integrations

Connect to JIRA, Slack*, your CI/CD pipeline* and more. Import vulnerabilities, create tickets, and notify teams automatically.

* Available now

📋

Audit Logging

Version your threat assessments. Complete history of every change, approval, and access.

🤖

AI Ready

MCP Connector available. Interact with your threat data from popular AI tools.

How It Works

Your workflow, enhanced

Add a backend block to your existing threatcl files. Everything else stays the same.

01

Connect

Add the cloud backend to your HCL files. One line of configuration.

02

Sync

Run threatcl cloud push. Models sync automatically to the cloud.

03

Collaborate

Review in the browser. Comment on threats. Get approvals from stakeholders.

04

Govern

Enforce policies. Track coverage. Report to leadership with real data.

Pricing

Start free. Scale as you grow.

Start with the free tier for individuals, then expand to your teams. Enterprise* features for organizations that need them.

Free

$0

For individuals getting started

  • 5 threat models
  • 10 historical versions
  • Web-based viewing
  • Basic dashboards
  • 1 API Token
  • Community support
Get Started

Team

For growing teams that need collaboration

  • Up to 100 Users
  • Unlimited threat models
  • 90 historical versions
  • Centralized Threat and Control Library
  • 5 API Tokens per User
  • MCP Connector
  • Email support
Visit the #beta chan

Business

  • Everything in Team
  • Projects for organization
  • Unlimited versions
  • 10 API tokens per user
  • RBAC
  • AI-powered analysis
  • SSO integration
  • Audit logs
  • Priority support
Coming soon

Ready to transform your threat modeling program?

Start with the free tier. No credit card required. Be up and running in minutes.

Get Started Free Join our Community