Friday Star Wars: Presidents Daily Brief
The return of the (my) Friday Star Wars posts
Shostack + Friends Blog
Threats Book Launch Party
The live launch party for Threats!
Threats Book is Complete
The serious side of the book
Threats: The Table of Contents
Like the Force, each threat has a light side, and a dark side.
Threat Modeling is Measure Twice, Cut Once
Threat Modeling is the software version of measure twice, cut once.
The Appsec Landscape in 2023
External changes will be driving appsec in 2023. It’s time to frame the decisions in front of you.
The Last 747
Thoughts on the last 747, and engineering culture.
Threat Model Thursday: curl
Looking at a threat model for curl, the command line web client.
Fast, Cheap and Good, Redux
A new paper on how fast, cheap and good can combine into something we usually discount.
More on GPT-3 and threat modeling
More thoughts about AI and threat modeling
Gavle Goat
A straw goat that has not been burned.
What do you get the person who has everything?
The best gift for 2023
Darkreading: Threat Modeling in the Age of OpenAI's Chatbot
Pointer to Adam’s latest Darkreading article
Usable Security Matters
Usable security matters
Worthwhile Books Q4 2022
Books that I read in the fourth quater that are worth your time include several about safety with lessons for cybersecurity