SDL Threat Modeling Tool 3.1.8

The SDL Threat Modeling Tool helps engineers analyze the security of their systems to find and address design issues early in the software lifecycle.
  • Version:


    File Name:


    Date Published:


    File Size:

    6.6 MB

      The Microsoft SDL Threat Modeling Tool is a core element of the SDL. The Microsoft Security Development Lifecycle (SDL) specifies development teams should define a products default and maximum attack surface during the design phase and reduce the likelihood for exploitation wherever possible. The tool is used during the design phase of the SDL and helps architects and engineers analyze their designs and software architecture before they start implementation.
  • Supported Operating System

    Windows 7, Windows Server 2003, Windows Server 2008, Windows Vista

      • Requires Microsoft Visio 2007 or Microsoft Visio 2010 (there’s a 60 day trial available on Microsoft’s web site as of this writing. SDL Threat Modeling Tool works with that trial version).
      • Requires Visual Studio Team Explorer for bug filing with TFS if that functionality is desired
    • Setup consists of installing SDL Threat Modeling Tool on your local machine with necessary prerequisites. To perform setup:

      1. Install Microsoft Visio 2007 or Microsoft Visio 2010, if it is not already installed.
      2. If you are using Visual Studio Team Explorer, make sure it is installed before installing the SDL Threat Modeling Tool.
      3. Download the SDL Threat Modeling Tool (ThreatModelingToolSetup318.msi) from
      4. Run ThreatModelingToolSetup318.msi

      By default, the executable SDLTM.exe and its associated files is available when you click Start, click All Programs, and then click SDL Threat Modeling Tool. They are installed in the directory C:\Program Files\Microsoft\SDL Threat Modeling Tool.
Site feedback

What category would you like to give web site feedback on?

Rate your level of satisfaction with this web page today: