waldoirc

@KlezVirus and I got a Defcon talk accepted. We will talk about stack spoofing techniques we made with our friend @trickster012 and based on research from @namazso. Hope to see you there!

Havoc Professional Finally Released! 🕸️🕷️ Since our last blog post introducing the Havoc Professional framework and the Kaine-Kit, we've been refining the framework behind the scenes while also welcoming @avx128 as a new member of our team. This blog post covers the numerous features included in the initial release of Havoc Professional. I'm excited to finally share the work my team and I have put in over the past year. This is just the beginning of what we have planned. infinitycurve.org/blog/release

Wrote a short blog post on how we pivoted from a windows workstation to AWS on a recent engagement via IoT greengrass. Do not worry, in the post I do not ask to "touch grass" lol :P medium.com/seercurity-spo…

I’ll be teaching how EDR REALLY works this Friday at BSIDES NOVA bsidesnova-2025.sessionize.com/session/998540. It’ll be a medium level course where we analyze malware and its telemetry found in EDR, then try to build hunts around it. Great for attackers and defenders. Hope to see you there!

@IOKernel Furthermore, an additional claim was made that these systems should work perfectly on their own without the human. If this was easy and it was done security is solved. Pack ur bags, lets find new jobs. Spoiler, were no where near this yet.

@IOKernel I also want to address this because I agree with you but the person you originally quoted appears to believe talent is actually everywhere, not scarce. In his claim, we are replacing talent with AI. As 1 AI and 1 talent can do the work of 15 people. I disagree with this.

@IOKernel So it becomes very nuanced to think AI can just start replacing people. Rather we should look at it as increasing their workflow just enough that for their specific tasks we can see 20% improvement at best, not enough to say “toss tommy, we got 20% improvement, we dont need him”

@IOKernel The AI doesnt replace the human it enhances its workflow. And if that means ai can do the code and i can do the research then we replaced 1 research role. But did we? Because maybe the non ai researcher brings a strong breath of information

@IOKernel So the next concern is can we just have AI replace those humans we deem non smes? Kind of sorta but no. The AI will speed up workflows for tasks in a limited capacity as managed by smes but no sme no good ai, no one to prompt well, no good ai etc. SO

@IOKernel IN GENERAL yeah i agree. My workflows have increased substantially. But again ive TRIED to use AI to make hunting easier, i WANT it to work i promise. It still fails me. It cant even make me valid kql queries half the time.

@IOKernel Also most people dont think AI wont take our jobs just that most of it today is overhype and it is. Surely one day itll do a great job and maybe today you can reduce 20 employees to 16 but thats just not enough. Youd mostly demoralize the rest of your team.

@IOKernel I think this is a weird take. First off AI is incredible. Its improving fast and its very useful. Anyone who thinks its ready to replace us today isn’t correct. At best in the most simple environments MAYBE. But those environments would do fine just using a good ngav too.

@eliedelkind @techspence @KATLGable Glad you learned something new.

@waldoirc @techspence @KATLGable Thanks for teaching me. Take care.

"Most CISOs have more tools than qualified practitioners to run them." cc @katlgable

@eliedelkind @techspence @KATLGable Sorry I missed this. I just want to point out no one thinks we need superhumans, we just need to train our defense as aggressively as we train offensive teams. SOCs still often mark real attacks as FPs from both real world and red teaming simply due to a lack of understanding.

@waldoirc @techspence @KATLGable I have been around the block a time or two. My point is that if we keep looking at this as a problem that requires super-humans to solve we’ll never solve it.