{"id":27324,"date":"2026-06-27T02:28:00","date_gmt":"2026-06-27T00:28:00","guid":{"rendered":"http:\/\/stocks-future.com\/?guid=9c13b0eb6cb7ea9cb228ce271e56ded8"},"modified":"2026-06-27T02:28:00","modified_gmt":"2026-06-27T00:28:00","slug":"versprite-launches-fork-and-knife-ai-driven-threat-modeling-and-adversarial-testing-built-for-the-speed-of-modern-software","status":"publish","type":"post","link":"https:\/\/stocks-future.com\/?p=27324","title":{"rendered":"VerSprite Launches Fork and Knife: AI-Driven Threat Modeling and Adversarial Testing Built for the Speed of Modern Software"},"content":{"rendered":"<p>\n<i>Powered by the risk-centric PASTA methodology and two decades of accredited offensive security, the integrated platform lets enterprises threat model in a security sprint\u2014then prove the risk through AI-led, human-on-the-loop testing.<\/i><\/p><br\/><a href=\"https:\/\/mms.businesswire.com\/media\/20260626289581\/en\/2840748\/5\/VerSprite_Logo_Screen_Color.jpg\"><img src=\"https:\/\/mms.businesswire.com\/media\/20260626289581\/en\/2840748\/22\/VerSprite_Logo_Screen_Color.jpg\" \/><\/a><br\/><a href=\"https:\/\/mms.businesswire.com\/media\/20260626289581\/en\/2840748\/5\/VerSprite_Logo_Screen_Color.jpg\"><img src=\"https:\/\/mms.businesswire.com\/media\/20260626289581\/en\/2840748\/21\/VerSprite_Logo_Screen_Color.jpg\" \/><\/a><p>ATLANTA--(BUSINESS WIRE)--VerSprite, a global leader in risk-based threat modeling and the firm behind the PASTA (Process for Attack Simulation and Threat Analysis) methodology, today announced the general availability of <b>Fork<\/b> (<a  href=\"https:\/\/cts.businesswire.com\/ct\/CT?id=smartlink&amp;url=https%3A%2F%2Fwww.forktm.com&amp;esheet=54561295&amp;newsitemid=20260626289581&amp;lan=en-US&amp;anchor=www.forktm.com&amp;index=1&amp;md5=c62356d7211a8b5d268afc187be9996c\" rel=\"nofollow\" shape=\"rect\">www.forktm.com<\/a>), a continuous application threat modeling platform, alongside <b>Knife<\/b>, an AI-led, human-on-the-loop adversarial testing platform for web applications and web API endpoints. Together, the two products operationalize a new model for product security\u2014one where applications are securely designed, continuously modeled, and actively tested as part of the build process itself.<\/p><p>\nThe launch addresses a problem every security leader knows but few tools have solved: threat modeling is essential, never more so than in an AI-driven era, yet it has remained slow, manual, and anchored to frameworks designed for a different threat landscape.<\/p><p>\n<b>The problem: threat modeling matters more than ever\u2014and most tools are stuck in 2005<\/b><\/p><p>\nFor two decades, application threat modeling has leaned heavily on STRIDE\u2014a categorization mnemonic for spoofing, tampering, repudiation, information disclosure, denial of service, and elevation of privilege. STRIDE is useful for sorting threats into buckets, but it was never a methodology. It does not ingest real-time threat intelligence, it does not weigh business impact, and its static categories say nothing about the adversary behaviors defining risk today\u2014persistence, extortion, double-extortion ransomware, supply-chain compromise, and the novel attack surfaces introduced by AI-enabled applications.<\/p><p>\nThe result is a familiar bottleneck. Threat modeling gets treated as a one-time, document-heavy exercise that lands too late in the lifecycle, goes stale the moment an application changes, and rarely connects to the testing that would actually validate whether a threat is real. As organizations ship faster and adopt AI across the stack, the gap between how quickly software evolves and how slowly it gets modeled has become a material risk.<\/p><p>\n<b>The solution: risk-centric threat modeling at sprint speed<\/b><\/p><p>\nFork is a practical, software-driven implementation of PASTA\u2014the only risk-centric, business-aligned threat modeling methodology, co-authored by VerSprite founder and CEO Tony UcedaVelez. Rather than categorizing threats in the abstract, PASTA\u2019s seven stages move from business objectives through attack surface, application decomposition, threat analysis, weakness and vulnerability analysis, attack modeling, and finally risk and impact analysis\u2014so the threats that surface are the ones most likely to happen and most damaging if they do.<\/p><p>\nFork brings that rigor to the cadence of modern development, enabling teams to produce a defensible, risk-prioritized threat model in under two hours and keep it current from Sprint 1 onward. Key capabilities include:<\/p><ul class=\"bwlistdisc\">\n<li>\n<b>AI-accelerated attack trees. <\/b>Fork\u2019s AI capabilities intelligently trim the attack tree for an application, removing noise and focusing analysts on viable, high-impact paths instead of exhaustive theoretical ones.<\/li>\n<li>\n<b>Contextualized, threat-informed models. <\/b>Fork enriches every model with live cyber threat intelligence, the latest vulnerability data across a product\u2019s full technology stack, and viable attack vectors substantiated through real adversarial testing.<\/li>\n<li>\n<b>Industry-aligned taxonomies. <\/b>The platform automatically correlates findings with trusted MITRE and OWASP frameworks\u2014including CWE, CVE with EPSS scoring, CAPEC, ATT&amp;CK, D3FEND, and ASVS\u2014to drive targeted, defensible mitigations.<\/li>\n<li>\n<b>A proprietary residual risk formula. <\/b>As tests complete and conditions change, Fork recalculates residual risk so leaders always have an accurate, current view of exposure.<\/li>\n<li>\n<b>A single pane of glass. <\/b>Industry threats, an application\u2019s attack surface, and threat intelligence converge into one unified, collaborative view for security, engineering, product, and business stakeholders.<\/li>\n<\/ul><p>\n<b>From blueprint to proof: introducing Knife<\/b><\/p><p>\n<i>A threat model defines which attack paths matter most. Knife proves them.<\/i><\/p><p>\nVerSprite is debuting Knife, an AI-led, human-on-the-loop adversarial platform for web applications and web API endpoints, trained on more than 20 years of accredited, industry-recognized offensive security work from VerSprite\u2019s BREAKERS OffSec team. Where Fork serves as the blueprint for adversarial testing, Knife executes against that blueprint\u2014pairing the scale and speed of AI with expert human oversight to validate exploitability with real-world fidelity.<\/p><p>\nThe integration closes the loop that has long separated threat modeling from testing. From within a Fork threat model, teams can request targeted, on-demand testing of specific weaknesses and attack patterns. Knife runs the assessment; results flow back into the model; and Fork updates the residual risk of the product automatically. Threat modeling and adversarial testing stop being sequential, disconnected events and become a continuous, self-updating system.<\/p><p>\n<b>A new operating model: AI SecOps<\/b><\/p><p>\n<i>\u201cThe future of product and software security is an integrated model of AI SecOps\u2014where products are securely designed and tested as part of the functional build process, not bolted on afterward. STRIDE gave the industry a vocabulary. PASTA gave it a methodology. Fork and Knife now give it operational speed\u2014continuous threat modeling and integrated, AI-led testing that keeps pace with how software is actually built and how adversaries actually behave.\u201d<\/i><\/p><p>\n<b>\u2014 Tony UcedaVelez, CEO and founder of VerSprite and co-author of the PASTA methodology<\/b><\/p><p>\n<b>Operationalized visibility through deep integrations<\/b><\/p><p>\nFork is designed to supercharge, not replace, the security tooling enterprises already run. Through integrations across the AppSec ecosystem\u2014spanning SAST, DAST, and software composition analysis, vulnerability scanning, cloud security posture, attack surface management (CASM), penetration testing platforms, and IT service management\u2014Fork turns scattered findings into a living risk picture. Connected and roadmapped integrations include ServiceNow, Veracode, Snyk, Semgrep, Checkmarx, OpenCTI, Qualys, Tenable, Mandiant, and Archer, among others.<\/p><p>\nThe payoff is real-time visibility, operationalized: as continuous and on-demand tests complete and report back, a product\u2019s threat model and residual risk update at the speed of delivery\u2014giving security and product leaders an always-current understanding of what could go wrong, how likely it is, and what it would cost the business.<\/p><p>\n<b>Availability<\/b><\/p><p>\nFork is available today. A free <b>Fork Community<\/b> edition supports a single application threat model with vulnerability ingestion via SBOM or OVAL, while <b>Fork Enterprise<\/b> unlocks unlimited applications and teams, all integrations, SSO, granular access controls, and audit logging. <b>Fork Enterprise PT<\/b> extends the platform with on-demand adversarial testing\u2014powered by Knife and VerSprite\u2019s BREAKERS team\u2014requested directly from within a threat model. VerSprite also offers Threat Modeling as a Service for organizations seeking expert-led training and managed delivery.<\/p><p>\nTo learn more, request a demo, or start for free, visit <a  href=\"https:\/\/cts.businesswire.com\/ct\/CT?id=smartlink&amp;url=https%3A%2F%2Fwww.forktm.com&amp;esheet=54561295&amp;newsitemid=20260626289581&amp;lan=en-US&amp;anchor=www.forktm.com&amp;index=2&amp;md5=fdc910cff3c79c59440afeb6c9706786\" rel=\"nofollow\" shape=\"rect\">www.forktm.com<\/a>.<\/p><p>\n<b>About VerSprite<\/b><\/p><p>\nVerSprite is a global cybersecurity firm specializing in risk-based threat modeling, offensive security, and managed security services. Founded in 2007 and headquartered in Atlanta, Georgia, VerSprite is the originator of the PASTA (Process for Attack Simulation and Threat Analysis) methodology and partners with Fortune 500 enterprises and product organizations worldwide to reduce cyber risk through a structured, data-driven, adversary-informed approach. Learn more at <a  href=\"https:\/\/cts.businesswire.com\/ct\/CT?id=smartlink&amp;url=https%3A%2F%2Fwww.versprite.com&amp;esheet=54561295&amp;newsitemid=20260626289581&amp;lan=en-US&amp;anchor=www.versprite.com&amp;index=3&amp;md5=aa95afd22a0a58734ba53a7c9fef5fca\" rel=\"nofollow\" shape=\"rect\">www.versprite.com<\/a>.<\/p><p>\n<b>About Fork<\/b><\/p><p>\n<a  href=\"https:\/\/cts.businesswire.com\/ct\/CT?id=smartlink&amp;url=https%3A%2F%2Fwww.forktm.com&amp;esheet=54561295&amp;newsitemid=20260626289581&amp;lan=en-US&amp;anchor=Fork&amp;index=4&amp;md5=ec6d07192232d7e4845ce34c82ceabaa\" rel=\"nofollow\" shape=\"rect\">Fork<\/a> is VerSprite\u2019s continuous application threat modeling platform. Built on the PASTA methodology and accelerated by AI, Fork enables security, engineering, and product teams to produce risk-centric threat models in under two hours, contextualize them with live threat intelligence and full-stack vulnerability data, and keep them continuously aligned with how applications evolve\u2014now with integrated, AI-led adversarial testing through Knife.<\/p><br\/> <b>Contacts<\/b> <br\/><p>\nTim Deleon\n<br\/><a  href=\"mailto:beetle@versprite.com\" rel=\"nofollow\" shape=\"rect\">beetle@versprite.com<\/a><br\/>7079278611<\/p><p>\n<a  href=\"https:\/\/cts.businesswire.com\/ct\/CT?id=smartlink&amp;url=https%3A%2F%2Fwww.versprite.com&amp;esheet=54561295&amp;newsitemid=20260626289581&amp;lan=en-US&amp;anchor=www.versprite.com&amp;index=5&amp;md5=1cf2d58268829a642f6b28c8ca8e0c4c\" rel=\"nofollow\" shape=\"rect\">www.versprite.com<\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>Powered by the risk-centric PASTA methodology and two decades of accredited offensive security, the integrated platform lets enterprises threat model in a security sprint\u2014then prove the risk through AI-led, human-on-the-loop testing.ATLANTA&#8211;(BUSINESS&#8230;<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-27324","post","type-post","status-publish","format-standard","hentry","category-infos-businesswire"],"_links":{"self":[{"href":"https:\/\/stocks-future.com\/index.php?rest_route=\/wp\/v2\/posts\/27324","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/stocks-future.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/stocks-future.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/stocks-future.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/stocks-future.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=27324"}],"version-history":[{"count":1,"href":"https:\/\/stocks-future.com\/index.php?rest_route=\/wp\/v2\/posts\/27324\/revisions"}],"predecessor-version":[{"id":27325,"href":"https:\/\/stocks-future.com\/index.php?rest_route=\/wp\/v2\/posts\/27324\/revisions\/27325"}],"wp:attachment":[{"href":"https:\/\/stocks-future.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=27324"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/stocks-future.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=27324"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/stocks-future.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=27324"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}