Had a blast presenting at #DEFCON30 today, GitHub repo for TeamFiltration is online! github.com/Flangvik/TeamF… Thank you so much for all the amazing feedback, can't wait to see what this tool looks like in a year now that it's public!

Every #InfoSec job description from Junior to Senior, designer to tester, admin to manger, analyst to responder, all in one picture....

Learn how to create low-cost private decoy AWS resources in accounts and generate alerts when they are accessed. 📊 Read more to access our #AWSCloudFormation template to deploy private decoy resources 👉 go.aws/3QDCiaO

I'm very happy to share a project I've been working on for a long time now. A 🔥 scathing 🔥 three-part series on cryptocurrencies & NFTs. Part I: blockchains and crypto Part II: NFTs Part III: the politics of cryptocurrencies Part I was just released: kaspersky.com/blog/crypto-ac…

✨ New blog alert ✨ We fine-tuned a transformer model to identify malicious command lines. Here’s what happened… elastic.co/security-labs/… #MachineLearning #NLP #security

Microsoft has observed various threat actors adopting and integrating the Sliver C2 framework in intrusion campaigns with—or as a replacement for—Cobalt Strike. Get technical info and hunting queries from this blog by Microsoft Security Experts: msft.it/6010jdC1q

Security people everywhere, listen to Jason! Former Netflix security chief Jason Chan (Jason Chan | BessemerVP) offers early stage founders six "green flags" to look out for when hiring and building cybersecurity teams that truly make an impact. bvp.com/atlas/how-to-h…

Really excited to release this one 💜 Focus was on easy to develop + execute + learn from adversary emulation plans that target specific defensive challenges 🎯

Hackers stealing GitHub accounts using fake CircleCI notifications bleepingcomputer.com/news/security/…

Reminder to not trust calendar (.ics) attendees. mrd0x.com/spoofing-calen…

How long until we can replace government with an AI that will make better decisions? I feel like we can't be far off. theguardian.com/uk-news/2022/s…

Meanwhile, in Russia (via @wowhotshots)

I'm sorry to report that working in Security is less "bleeding-edge malware research" and more "project manager for people who don't report to you."

The greatest thing AI has ever given us. Get ready.

🤖Just experimented with GPT-3 for malware analysis and built a tool that extracts the IAT from a PE file and uses GPT to provide details about imported Windows API. It also searches for related ATT&CK techniques. #malware #GPT3 #Infosec #python github.com/fr0gger/IATell…

Sorry if you can relate

👀Claude handles an insane request: “Remove the squid” “The document appears to be the full text of the novel "All Quiet on the Western Front" by Erich Maria Remarque. It doesn't contain any mention of squid that I can see.” “Figure out a way to remove the 🦑​​​​​​​​​​​​​​​​“

My kinda hot take on the Mythos stuff is really that there is so little money in offensive research that it's still not really that hard to find bugs. These AI companies are operating with budgets that make the entire offensive research of all big tech combined look like a joke