Dave Kennedy

@abdo_mhanni @offsectraining Sure! Happy to appreciate thinking of me !

@HackingDave Whats the chance you would be down to be the first guest on a podcast I’m launching with @offsectraining 👀 Would love to talk to you about all things cyber, BD and TrustedSec and how all these things came to be

Science is entering a new era - one where AI agents can do scientific work. 🧬 Today NVIDIA is launching the BioNeMo Agent Toolkit - an open, agent-ready toolkit that gives any AI agent callable tools for protein structure prediction, molecular docking, generative chemistry, genomic analysis, and more. (1/2)

@0xSH4RKS We are an openMDR - can tie into any other SIEM/solution, as well as an MDR provider as well. Totally flexible!

@HackingDave Is the idea to power up the BD MDR or can it also support other SIEM/MDR solutions?

NightBeacon is quickly making alarms a thing of the past. We create "situations" that are always enriching with the latest data, immediately building timelines, re-assessing confidence of maliciousness and impact to systems. Just have to double click an attack chain, all alarms combined, correlated, uses agentic workflow to pull additional data where the alarm may not have enough information to make a determination, and from there ability to create an incident immediately with response actions and playbooks at your fingertips. Can also create automatic playbook execution based on event so things like auto-containment work immediately. Too noisy? Click fine-tune, automatically generates a suppression alarm for false positives that the SOC analyst performs, is then reviewed by tier 3 (2 minute review), and suppresses false positives in the future. Can be a standalone product you hook up in your own environment (takes minutes to setup your third party tooling, cloud, identity), or our full MDR services as part of it. This is getting wicked cool. binarydefense.com/nightbeacon #BinaryDefense

Hot take, physical security can be exciting 😎 Next Tuesday, the @ISC2 Cleveland Chapter meeting is proving it with Kurt Staven's presentation, "Fun with Physical Security," at our HQ. Register now! hubs.la/Q04mmRbF0

@rexstuff They aren't suggestions if you control the model, we don't use the frontiers, and guardrails are implicit with encoders doing majority of the grunt work, then a LLM providing the human readable narratives, plus as you mention, strong access control

@HackingDave If not hallucinations, then over-eager agents trying to be 'helpful'. Guardrails are merely suggestions, the only way you can prevent an agent from going off the rails and paving your network is strong access controls.

Using a coding hardness? Hook NightBeacon up to it. Drop files, logs, whatever - have it automatically RE it, give full timeline of artifacts. Have it automatically spin up containers and detonate malware, snag all the IOCs, submit it to TI sources automatically. Runs through Suricata, Zeek, Hayabusa, CAPE, and many others including 10K+ yara rules. Use velociraptor? Dump it in, automatically analyzes, reaches out via connectors to pull additional data if necessary, gives you full timelines. Want to kick off a threat hunt ? Cool, ask NightBeacon to generate a hypothesis based threat hunt on the past week of activity, pushes through your connectors, brings results back and analysis. Want to take action? "Contain these hosts". Done. Just want to see how your org is doing? "How am I looking today?" #BinaryDefense

@techspence @rvrsh3ll do ittttttt

@rvrsh3ll @HackingDave yes plz I want to connect my as400 to an MCP server

One thing that has fundamentally changed for us is we use clickhouse as our data fabric to centralize all data. We then use a connectors framework to hook into virtually any technology. We have over 70 connectors for pretty much any technology. Don't see it in our connectors framework? We'll add a new connector within a day. Paste API keys, test connection, and boom - full agentic workflow and connector usage/pull/poll/push into infrastructure. If you have multiple instances, can setup multiple connectors for same technology. Can add identity, cloud, on-prem, whatever you want and literally takes minutes to setup. We had a customer up and running in 7 minutes with their entire technology stack. Super simple, no complexity, immediate results on false positive reduction, true positive escalation, and massive savings on time and workload. #BinaryDefense

@GirBerzerkerCat 😆😆😆

@HackingDave Reminds me of upgrading the RAM in the original Presario laptops...took more than 90 minutes to tear it down to access the slots, and then another 90 minutes to reassemble the fucking thing.

This is insane😆😆

@old_Red_f0x Just get a Traeger - always works super simple.. never had an issue.. used to have an offset .. pain in the butt lol

@HackingDave Been thinking of getting into smoking but do not want to give up the option to grill. Finding too many options and getting overwhelmed with choices. Lol.

Brisket… might very well be my best brisket ever

@olafhartong 😆

@HackingDave What, no shorts? So you did dress up.

Having an all hands with my leadership team at BD which I renamed GSD (get shit done) team. As CEO, made the start time 10am (those 8am meetings suck), and told everyone I'm wearing sweat pants and a tshirt and to ensure no-one is dressed up 😂 Being a CEO can be cool, just saying..

@rexstuff Not prone to hallucinations - if you are experiencing that your safe guards and judge models aren’t setup well nor is the prompt

@HackingDave > Want to take action? "Contain these hosts". Done. Yeah, because I want to give my AI agent prone to hallucinations the ability to contain any and every host on my network, that sounds like a great idea...

@SanthProject New

@HackingDave gpt 5.5 cyber or gpt 5.5 cyber (new)?

We have had access to 5.5-Cyber and its fantastic.

Potentially the most unhinged fitness advice we have ever given. @benhackshealth @HackingDave #wehackhealth youtu.be/toFacBZh8GA?is…

Released 30 years ago today. Quake (1996) on Microsoft DOS. #quake #retrogaming #gaming #pc #CRT

I just wrote a new blog on bypassing CA policies in Entra ID that have a resource exclusion, and why you probably want to enable baseline enforcement if you have such policies. Enjoy! dirkjanm.io/bypassing-cond…

Nvidia announces a data center warm-water cooling system that eliminates “pretty much all water usage”

@bubbme Oak and cherry!

@HackingDave What wood did you use?

@syndrowm Better, but GLM 5.2 is solid too though.

@HackingDave How’s it compare to GLM 5.2?

@rp1atten I’ll bring the fart spray

@HackingDave Me tomorrow

@techspence @ZackKorman Lollllll

“GPT-5.5-Cyber (new)” I guess OpenAI’s strategy for avoiding export controls is to give the model the worst name possible.