OWASP Risk Assessment Calculator


Likelihood factors

Threat Agent Factors

Skills required
Motive
Opportunity
Population Size

Vulnerability Factors

Easy of Discovery
Ease of Exploit
Awareness
Intrusion Detection

Score

Impact factors

Technical Impact Factors

Loss of confidentiality
Loss of Integrity
Loss of Availability
Loss of Accountability

Business Impact Factors

Financial damage
Reputation damage
Non-Compliance
Privacy violation

Score

Overall Risk Severity = Likelihood x Impact

 
Impact
Likelihood
Low
Medium
High
Low
Low
Low
Medium
Medium
Low
Medium
High
High
Medium
High
Critical

This Risk Rating Calculator is based on OWASP's Risk Rating Methodology.

Rewrited from some old script from "The Net" by Ivan Marković <ivanm@security-net.biz> | Tnx @commjoenie for motivation :)