Olivia
Online
RunReveal
@RunReveal
RunReveal makes it easy to collect your security logs and comes with the alerts every company needs.
Austin, TX.
Joined December 2022
2 Following
325 Followers
174 Posts
Β Pinned Tweet
Announcing RUNWAY, our first security conference.
September 29, San Francisco.
One day, an intimate group of security practitioners, and real talks about where security ops is headed.
Early bird reg is open now π
https://t.co/3CaQY1X0vO
Excited to share that RunReveal was named a User Reliability Leader in the Latio 2026 Security Operations Market Report. π
The report is worth reading regardless of us being in it. It's one of the clearest breakdowns of where the SOC and SIEM market is headed. The fact that we're in it as a recognized platform makes it a little more fun to share!
Check out the full report here: https://t.co/0aQvIOrWsC
We're excited to be part of @ClickHouseDB's inaugural House Mates partner cohort, announced last week at Open House.
RunReveal is one of 25+ ISV partners in the program, alongside dbt Labs, Fivetran, Confluent, Grafana Labs, + others.
If you're building on ClickHouse and need a security data layer, we'd love to talk.
AI SOC is everywhere. The token economics aren't talked about enough.
We ran the numbers. Here's what we found:
- ~$2/alert on Sonnet
- ~90 seconds per investigation
- 100 alerts = ~$200 and 1 hour vs. days of analyst time
Worth reading if you're thinking about the build vs. buy vs. automate question in D&R.
https://t.co/jaXuOFvUhs
Who to follow
codefromthecrypt
@adrianfcole
bringing code from the dead, so it can kill me
work version of me is adrianfcole on linkedin
Julien Fabre
@julien_fabre
Engineering leader, entrepreneur and cyclist! Building big robots at https://t.co/N4GMfcfUig, prev. founder at https://t.co/WyB4cCQc4H, principal at https://t.co/L18MD6OSGh
evan j
@ejcx_
πΎπΎ Co-Founder of @RunReveal . ππ JMU Double Duke. There's always more to learn.
RunReveal is a proud sponsor of @ClickHouseDB Open House!
We're excited to meet other ClickHouse users, share with them how we use ClickHouse to power RunReveal, and meet fellow techies in SF. (And don't miss @Caust1c 's talk!)
May 26β28, 2026 | Convene, 100 Stockton St, San Francisco
New in RunReveal: search raw logs directly from any S3-compatible object storage bucket π₯
No ingestion required. Query it like any other table. Works with our AI agent out of the box.
https://t.co/MX6q0GkQDC
Our very own @Caust1c is speaking at @ClickHouseDB's Open House conference next week May 26-28!
Alan is sharing insight into how the team at RunReveal has operated ClickHouse across Cloudflare, Segment, and now a purpose-built security data platform handling petabyte-scale event logs. His session covers a decade of real schema decisions, operational lessons, and a technical breakdown of why ClickHouse's architecture outperforms legacy approaches for security analytics at scale.
@ejcx_ shows how to use RunReveal's Tier 1, high-signal detections to build a robust and automatic detection and response program in minutes.
If your SIEM isn't:
- Giving you free filtering
- Automatically investigating your alerts with an AI agent
- Allowing you to enrich your alerts with other tools
- Enabling you to make your own AI agent
- Capable of running in your VPC
...it might be time to take a look at RunReveal οΏ½οΏ½οΏ½
π₯ Pipelines just got more powerful π₯
RunReveal now lets you selectively route logs to object storage destinations; instead of sending everything everywhere, you can match specific log sources and send only what you need to where you need it.
This is part of a bigger vision: one platform where your data pipelines, detections, and investigations all talk to each other β without the compatibility headaches.
Check out the full walkthrough on the blog π
https://t.co/7k6W2f3mI9
This is a very good idea https://t.co/4e856lUjN3 @RunReveal hosting a "play against a Chess grandmaster" for their #RSAC2026 booth
@NVIDIAGTC starts tomorrow.
Find Docker at Booth 3207 and at the Docker + @ClickHouseDB + @RunReveal RunReveal meetup - March 16, 7:30 PST.
Stop by and bring your hardest AI infrastructure questions!
See you in San Jose.
Register for the meetup here: https://t.co/iO0JuisK4d
We're co-hosting a rooftop after party for BSidesSF 2026 with @RunReveal, @csideai, @tracebit_com, and @SocketSecurity.
March 22. SF. 250+ people, no pitches, good vibes. RSVP required π
RSA week is almost a month out! π
Find us at Booth #2337, South Hall all week.
We've also got events on Sunday + Tuesday worth checking out:
π Sunday rooftop after party β https://t.co/fjSZttXFtO
π Tuesday Nacho Party Security happy hour β https://t.co/zg60FRcyZ9
Come say hi π
Security teams have a data hoarding problem β and it's not their fault.
When you never know which log will matter, you collect everything. When you collect everything, you need to store it for sometimes over a year for compliance reasons. When you potentially store years of data, you need it to be searchable in seconds during an incident.
The two solutions most teams reach for β heavy indexing or splitting data across S3/Athena/BigQuery β both create new problems. Costs spike, stacks get fragmented, and investigations slow down.
What does @ejcx_ think the real path forward is? Simplifying your stack, understanding your actual business risks, and recognizing that fast search and cheap storage will always be a trade-off. (And anyone promising both is probably hiding something!)
Security teams shouldn't have to choose between coverage and cost.
@lumosidentity didn't.
Full-stack coverage across cloud, product security, and detection & response β logs flowing in two days, AI handling triage, broader detections without the noise.
Read about their journey here: https://t.co/UXIb2P47th
The worst time to meet your legal team is during an active security incident.
@ejcx_ walks through 3 free steps to prepare for your next incident (that don't require any budget):
β Build relationships now
β Create your response plan
β Align on transparency
https://t.co/z7AWtsE9VM
RunReveal now supports Just-In-Time (JIT) provisioning π
Automatically create user accounts in RunReveal when users first authenticate via SSO, eliminating the need for manual user invitations.
Streamlines user onboarding by allowing users to access RunReveal immediately upon their first SSO login, provided they meet the configured criteria β
Read more about how it works here: https://t.co/i6PsODJ6Mv
"I need devs in our SIEM but they can't see auth logs" "Our custom logs are unparsable JSON blobs"
Heard this before?
We just shipped RBAC + Custom Views to solve exactly this.
Granular access control + instant parsers for any log type.
https://t.co/6tLySUWxM1
Last Seen Users on Sotwe
Chaaπ«
Seen from Malaysia
Ψ²ΩΩ π«¦.
Seen from Turkey
MILFFSLAYER
Seen from Netherlands
sexiest snap sluts
Seen from Spain
ferdi41
Seen from Turkey
madimaji
Seen from Thailand
Ψ¬ΩΨ±Ψ¬ΩΩΨ§ π«¦
yerli ifsa
Seen from Germany
Cantik Rebecca β€οΈ
Seen from Indonesia
π»πΊ Kembang Desa πΊπ»
Seen from Indonesia
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers