Loading
Preparing the page...
Loading
Preparing the page...
Score likelihood and impact, see the colour-coded risk, and capture mitigation intent for the scenario.
Usage reminder
This is an educational and planning support tool. It is not legal advice and does not replace professional security testing. Use only on systems and data you are permitted to work on.
Screen capture agreement
Only capture when permitted and avoid showing sensitive data. Keep attribution visible in captures.
Replace these steps with domain-specific guidance when the template is implemented.
Insert form fields, interactive controls, or dashboards that collect inputs.
Exports
Choose PDF, DOCX, or CSV. A consent check will confirm intended use and attribution rules before download.
Autosaves locally. Last updated: Not saved yet
Medium risk
9/25 score
Combine this score with control effectiveness and threat intelligence before finalising your decision. Capture mitigations below to shift likelihood or impact.
What system, data, or change are you assessing?
List the assets, data classifications, and exposure (internet/internal).
Note the threat actors, likely techniques, and any assumptions you rely on.
List controls, owners, and timelines that change likelihood or impact.
Risk score 9/25 (Medium). Likelihood 3/5, impact 3/5.
Medium risk: confirm compensating controls, monitor drift, and schedule a mitigation checkpoint.
Commercial downloads must retain author and brand attribution. Internal or personal use may remove attribution, but keep provenance where reasonable.
Created by Ransford for Ransfords Notes. Internal use allowed. Commercial use requires visible attribution. Downloads will be gated in the next stage.
Author: Ransford · Brand: Ransfords Notes
To remove attribution for commercial use, obtain explicit permission or complete the approved donation flow.
Placeholder gating: enforce download-time checks before allowing attribution removal.