Skip to main content

Shostack + Friends Blog

Recent Blog Posts, Page 2

New Adventure! CyberSec Game Challenge 2025

Register for CyberSec Game Challenge 2025! (12 Sep 2025)

How could LLMs change threat modeling

LLMs will change threat modeling. Will it be for the better? (09 Sep 2025)

OWASP Training in Washington, D.C.

Register for OWASP training in Washington D.C.! (08 Sep 2025)

Our back to school sale

Our biggest back to school sale of the year! (05 Sep 2025)

Secure By Design roundup - July/Aug 2025

All the exciting secure by design news from the end of summer (31 Aug 2025)

Mansplaining your threat model, as a service

Everyone wants robots to help with threat models. How’s that working out? (26 Aug 2025)

Threat Modeling Tools

A 2025 view of threat modeling tools (25 Aug 2025)

Risk is not a hammer

My Usenix Enigma 2025 talk (12 Aug 2025)

LLMs as Compilers

What if we think about LLM coding as if it’s a compiler stage? (29 Jul 2025)

Blackhat and Defcon 2025

Adam’s plans for summer camp (24 Jul 2025)

Risk Management and Threat Modeling

Threat modeling finds threats; risk management helps us deal with the tricky ones. (21 Jul 2025)

The Cyber Resilience Act (CRA)!

The CRA is coming and it's going to be a dramatic change for technology producers (15 Jul 2025)

Threat modeling as a dial, not a switch

Thinking of threat modeling with a knob helps you get more out of it. (09 Jul 2025)

Voting Twice for Secession Would be More Fair

Thinking about secession and mechanisms (05 Jul 2025)

The Unanimous Declaration of the Thirteen United States of America

When was the last time you looked over what our country was founded upon? (04 Jul 2025)

Our site works best with Javascript enabled, however we have done our best to minimize any negative impacts to your experience without it.