← @kwm Twitter archive



Disclosure of tools, tradecraft by top-tier red teams may be the only way that public security research even *begins* to give chase to state-sponsored programs.

In general, we overestimate the novelty of even the highest-end public work while underestimating the capability gap.

4/3/2018, 10:35:34 PM

Favs: 32

Retweets: 2



One of the most promising trends in information security is the *market's* continued embrace of full disclosure across offensive and defensive disciplines. It's easy for practitioners to grok the value, but for many years the market valued and rewarded black boxes. No more.

4/3/2018, 10:43:39 PM

Favs: 8

Retweets: 1