What type of diagram in application threat modeling captures malicious users and includes mitigations and threats?

The type of diagram that effectively captures malicious users, their potential threats, and the corresponding mitigations in application threat modeling is the misuse case diagram. Misuse case diagrams specifically illustrate how a malicious user could exploit system vulnerabilities, unlike other diagram types that focus more on legitimate user interactions or processes.

In a misuse case diagram, you can represent legitimate use cases alongside potential misuse cases, allowing for a comprehensive view of security risks and demonstrating how threats could occur. This helps teams design appropriate mitigations for identified risks, making it a crucial tool for security assessment and testing. It emphasizes the security perspective and guides developers in addressing potential vulnerabilities.

Other diagrams, such as use case diagrams, sequence diagrams, and activity diagrams, primarily represent user interactions and workflows without a specific focus on malicious actions or threats. They serve different purposes in the design and understanding of systems, but they do not effectively illustrate the security-related aspects that misuse case diagrams specifically target.