Participatory Extensible Security đź”—
In the past, I’ve explained how security products combine sensors and throttles with threat intelligence to protect users and devices from attack. I’v [...]
text/plain
Posts
Spring 10Ks đź”—
After two solid half-marathons early this year, I was excited for the start of the 10K season to see whether I could keep improving my times. I had mi [...]
Cybersecurity Metaphors đź”—
Uneven Protection Attacks flow like water: if you have a hole in your defenses, attacks will flow through that hole. Unless they’re trying to win a pr [...]
Exploiting Vulnerable Drivers đź”—
Often, attackers will attempt to prevent security software from interfering with their attack chains by abusing a vulnerable driver to kill or otherwi [...]
Smart App Control đź”—
Users of modern versions of Windows 11 have a powerful security feature for keeping their devices secure, known as Smart App Control. I’ve talked abou [...]
Attack Techniques: RMM Abuse đź”—
After you sign up on the Social Security Administration’s website, they’ll send you a yearly email inviting you to check out your benefits. Flipping t [...]
Understanding Defender AV Scans đź”—
Microsoft Defender Antivirus Defender is intended to operate silently in the background, without requiring any active attention from the user. Because [...]
Windows: Choose Where To Get Apps đź”—
Modern versions of Windows offer a setting named “Choose where to get apps” which can reduce attack surface by limiting the locations from which appli [...]
Winter 2026 Runs đź”—
I did a reasonably good job running on my treadmill throughout the fall of 2025, in preparation for my second summit of Mount Kilimanjaro over New Yea [...]
Security Software False Positives đź”—
Software developers and end-users are often interested in understanding how to resolve incorrect detections from their antivirus/security software, in [...]