- Published on
An experiment in adversarial AI: local, air-gapped agent crews playing attacker and defender against each other in a sealed, fully observable lab.
- Published on
Version control, CI testing, and ATT&CK coverage mapping turned a folder of SIEM rules into an engineering discipline. What changed, what it cost, and what I would do differently.- Published on
Lessons from building ML-assisted detection in production: the places machine learning genuinely moves the needle, and the places it quietly makes things worse.