Conf42 DevSecOps 2025 - Online

December 04 2025 - premiere 5PM GMT

Subscribe to watch

Do Threat Models Dream of Fuzzing Apps?

Abstract

we’re introducing a new technique that uses existing tools in a novel way: using a threat model as a configuration file for continuous, adaptive pentesting:

parse model, get attack surface, risks.
create scanner inputs for ZAP, Nuclei, and fuzzers.
Scan
Filters results
Report

See all 42 talks at this event!

Spyros Gasteratos

Founder @ Smithy.security

Join the community!

Learn for free, join the best tech learning community

Newsletter

$ 0 /mo

Event notifications, weekly newsletter

Access to all content

Email address

First Name

Last Name

Company

Job Title

Phone Number

Country

Featured event

2026

2025

Info