This system provides our approach to model risk by utilizing Attack Flow. This is our preferred method for visualizing and understanding potential attack paths in your organization’s security infrastructure.
Attack Flow is an easy and effective way to help security teams to see how various vulnerabilities and threats could be exploited in sequence, offering a dynamic view of potential attack paths.
After creating and visualizing numerous scenarios for dozens of clients we concluded that there are no perfect visualization tools to start with.
There's just more solutions that work for specific use cases.
This led us to exploring Attack Flow from the Center of Threat-Informed Defense.
It was released a while back, but we found that it actually fits a lot of the criteria we have:
Here's what it looks like:

A fool with a tool is still a fool.
We compiled lessons learned that you need to think about up-front, before you even consider visualizing anything.