scadastrangelove

@scadasl

The Group of security researchers focused on ICS/SCADA to save Humanity from industrial disaster and to keep Purity Of Essence.

Joined July 2012

13 Following

2.4K Followers

1.8K Posts

scadastrangelove @scadasl

7 days ago

An OWASP SAMM Extension proposal for AI-Driven Development This document extends OWASP SAMM to systems where software is no longer the only actor. https://t.co/5f1YAwbYBv v0.3 highlights Five additions that emerged from publication consistency review and real audit feedback.

scadasl's tweet photo. An OWASP SAMM Extension proposal for AI-Driven Development
This document extends OWASP SAMM to systems where software is no longer the only actor.

https://t.co/5f1YAwbYBv

v0.3 highlights
Five additions that emerged from publication consistency review and real audit feedback. https://t.co/3YPAKe5Wxu

0

0

0

0

57

scadastrangelove @scadasl

8 days ago

A curated list of tools for AI security and AI-assisted cybersecurity — autotriage, agent security, AI/ML supply chain, pentest agents, AI SAST, LLM-driven fuzzing, threat intelligence, SOC/SIEM triage, reverse engineering, LLM red-teaming, and more. https://t.co/1jvgz45bjQ

1

2

0

1

151

scadastrangelove @scadasl

11 days ago

ПРОГРАММА ёPRSTCON СОБРАНА Финал. Сетка готова, опубликована, можно изучать. → https://t.co/2EI5FR7em2 https://t.co/XoRYtyFxeX

scadasl's tweet photo. ПРОГРАММА ёPRSTCON СОБРАНА Финал. Сетка готова, опубликована, можно изучать. → https://t.co/2EI5FR7em2
https://t.co/XoRYtyFxeX https://t.co/iEKpxutKur

0

1

0

0

71

scadastrangelove @scadasl

25 days ago

ёprstcon — community one-day con in Moscow, May 26. Open call for anyone whose talk fits the room. 200 people, infosec + unusually curious crowd from adjacent fields. No sponsors. No VIP. Pallets instead of seats. ёprstcon is about you, your con, man. https://t.co/fbe6nr4y4D

0

1

0

0

88

Who to follow

Joel Langill is a experienced automation prof, security consultant, researcher, instructor, safety engineer, cyber soldier. Tweets are mine and not my employer.

Defending what Makes, Moves, and Powers the World.

Verified account

501(c)3 for education/awareness of #criticalinfrastructure security. #HackThePlant podcast: https://t.co/pj3xGssIa0 Our Channel: https://t.co/8F4NsUDpzn Founders: Tom, Bryson

scadastrangelove @scadasl

about 1 month ago

From Artifacts to Risk: Auditing Instruction Surfaces in Agent Systems This paper presents a bottom-up, artifact-centric audit of instruction surfaces in agent systems. https://t.co/WWZW4ytaHa

scadasl's tweet photo. From Artifacts to Risk: Auditing Instruction Surfaces in Agent Systems

This paper presents a bottom-up, artifact-centric audit of instruction surfaces in agent systems.

https://t.co/WWZW4ytaHa https://t.co/R2QY0v2PfZ

0

0

0

1

71

scadastrangelove @scadasl

about 1 month ago

OWASP SAMM asks: “Did we build the software securely?” Agentic SDLC must asks: Can the system be manipulated into taking unsafe actions after it is built? That’s what Agentic SAMM is for — an OpenSAMM for AI-driven development. https://t.co/RAebQkaQhz #DevSecOps #AIsecurity

0

0

0

1

79

scadastrangelove @scadasl

about 1 month ago

Forensic auditor for local AI coding agents (Claude Code, Codex CLI, OpenClaw) and project-surface scanner for repos containing skills, plugins, and MCP manifests. https://t.co/JEbE5kGPk5 agent-audit is one of the implementation projects in the broader ASAMM effort.

0

1

0

1

129

scadastrangelove @scadasl

about 2 months ago

The Builder's Manifesto Cybersecurity in a world where code is worth nothing Another agent today. It's all over Reddit. https://t.co/XI4TTFIAjG

0

1

0

0

72

scadastrangelove @scadasl

2 months ago

The Confused Matrix President Bramp of the United States stepped before the cameras at 03:17 Washington time. ... https://t.co/RAPVBEx4WY

scadasl's tweet photo. The Confused Matrix

President Bramp of the United States stepped before the cameras at 03:17 Washington time.
...

https://t.co/RAPVBEx4WY https://t.co/WjJ81V8gOe

0

1

0

0

79

scadastrangelove @scadasl

3 months ago

Blackhole is a Python ASGI mock server for black-box scanner testing, education, and reproducible benchmarking. And every white hat should remember: all requests eventually fall into the black hole. https://t.co/e6kRUnOmUK

scadasl's tweet photo. Blackhole is a Python ASGI mock server for black-box scanner testing, education, and reproducible benchmarking.

And every white hat should remember: all requests eventually fall into the black hole.
https://t.co/e6kRUnOmUK https://t.co/lccbsojIV3

1

2

0

0

213

scadastrangelove @scadasl

4 months ago

Grafana redteam. Zeronighs 2025 slides. And if you observe long enough, observability will gaze back into you. (And it will file a ticket.) https://t.co/S8Kw0SMQAV

scadasl's tweet photo. Grafana redteam. Zeronighs 2025 slides.
And if you observe long enough, observability will gaze back into you.
(And it will file a ticket.)

https://t.co/S8Kw0SMQAV https://t.co/XWlawIPIlZ

0

2

1

1

125

scadastrangelove @scadasl

5 months ago

EPSS, KEV, and the Joy of Predicting the Past a boring question: what if you actually ran patch management using EPSS thresholds? Not in theory. Not in slides. In reality—against vulnerabilities that were already exploited. https://t.co/p8SK5CCGzd

0

1

0

0

108

scadastrangelove @scadasl

about 4 years ago

Just did it. #phdays OST https://t.co/mgk6Zemjma

0

2

0

1

0

scadasl retweeted

cyberok @cyberokcom

about 4 years ago

CyberOK is hiring. Head of Security Services, [Lead/Senior] Vulnerability Researcher, [Lead/Senior] Penetration Testing Specialist, DevSecOps Team Lead. https://t.co/jSSQZU25Mf

cyberokcom's tweet photo. CyberOK is hiring.
Head of Security Services, [Lead/Senior] Vulnerability Researcher, [Lead/Senior] Penetration Testing Specialist, DevSecOps Team Lead.
https://t.co/jSSQZU25Mf https://t.co/EIaGLVSWL7

0

3

1

0

0

scadastrangelove @scadasl

about 4 years ago

Всероссийский конкурс open source cyber проектов для студентов и школьников. Засылай релизисы! https://t.co/yg57S5vwqR

0

0

0

0

0

scadasl retweeted

Insomni'hack @1ns0mn1h4ck

over 4 years ago

[TALK ANNOUNCEMENT] Hunting for Bugs in "Ethereum 2.0" by Denis Kolegov, JP Aumasson (@veorq) https://t.co/8aGG5ws5FW #INS22 #INSO22 #Talks

0

24

11

4

0

scadasl retweeted

over 5 years ago

So apparently someone broke to ICS systems of a US city and changed the chemical composition of water. That could have poisoned thousands of people. The potential humanitarian catastrophe was averted. https://t.co/WPgdPE3Ygq

lukOlejnik's tweet photo. So apparently someone broke to ICS systems of a US city and changed the chemical composition of water. That could have poisoned thousands of people. The potential humanitarian catastrophe was averted. https://t.co/WPgdPE3Ygq https://t.co/uyJl4jZ8Hb

2

25

21

4

0

scadastrangelove @scadasl

over 5 years ago

The DGX A100 Security Update fixes #vulnerabilities in NVIDIA #AI #ArtificialIntelligence servers BMC. Do #MachineLearning in a #secure way:) https://t.co/7geqQnwRuM

scadasl's tweet photo. The DGX A100 Security Update fixes #vulnerabilities in NVIDIA #AI #ArtificialIntelligence servers BMC.
Do #MachineLearning in a #secure way:)
https://t.co/7geqQnwRuM https://t.co/t0TEFBNERv

0

0

1

0

0

scadastrangelove @scadasl

over 5 years ago

GradeZero - 1:30 AM Rus https://t.co/YX6bcOI8ki Eng https://t.co/gICUnHTdeg #music #rock #indie #postpunk

0

2

1

0

0

scadastrangelove @scadasl

over 5 years ago

Vulnerabilities of Machine Learning Infrastructure (Slides/Video) as presented @codeblue_jp and @TheStandoff_rus https://t.co/bkCBRcoQ0d #aisec #cyber #security #vulnerabilities #ArtificialIntelligence #machinelearning #ai #ml

scadasl's tweet photo. Vulnerabilities of Machine Learning Infrastructure (Slides/Video) as presented @codeblue_jp and @TheStandoff_rus

https://t.co/bkCBRcoQ0d

#aisec #cyber #security #vulnerabilities #ArtificialIntelligence #machinelearning #ai #ml https://t.co/fbp23pnmFf

0

3

7

1

0

Last Seen Users on Sotwe

Trends for you

Most Popular Users