Explore agile threat modeling techniques using open-source tools in this 30-minute OWASP Foundation talk. Learn how to capture the risk landscape of agile projects efficiently and maintain a living threat model with the Threagile toolkit. Discover the benefits of "Threat-Model-as-Code" in DevSecOps, enabling continuous risk assessment throughout project evolution. Gain insights into using Threagile's command-line tool or server with REST-API to process YAML input files, execute over 40 built-in risk rules, and generate comprehensive diagrams, reports, and mitigation recommendations. Understand how to integrate threat modeling seamlessly into agile development processes, create and edit models in developer IDEs, and leverage features like model macros, GitHub integration, and custom risk rules. Delve into topics such as STRIDE classification, relative attacker attractiveness, data breach probabilities, and risk tracking within YAML files.