Shostack + Friends Blog

After a Conference

Some tips on how to regoup and catch up after being away for conferences. (11 Mar 2019)

screencap of Adam in new LinkedIn Learning course

Spoofing In Depth

(28 Feb 2019)

Adam @ RSA

Where and when to find Adam Shostack at RSA 2019 (28 Feb 2019)

What Should Training Cover?

When suggesting that someone needs more training, consider what specific points should be covered. (24 Feb 2019)

dolphin with pufferfish hanging from its mouth

Dolphins and Pufferfish

More chaos in nature (16 Feb 2019)

Cover of my book, Threat Modeling: Designing for Security

55 5 ⭐ Reviews?

Almost 5 years after release, I'm looking for a few more Amazon reviews. (14 Feb 2019)

Podcast: DevSecOps

I recently chatted with Mark Miller over at DevSecOps (13 Feb 2019)

The Queen of the Skies and Innovation

Innovation, regulation, and more. (10 Feb 2019)

Nature and Nurture in Threat Modeling

What comes easily should still be taught and elaborated upon. (06 Feb 2019)

cover of Fire Doesn't Innovate by Kip Boyle

Fire Doesn't Innovate by Kip Boyle (Book Review)

An unexpected book review. (04 Feb 2019)

Incentives and Multifactor Authentication

What if we gamified security? (01 Feb 2019)

Threat Modeling: Attackers May Adapt, Respond

Reasons for failure in real-world security (31 Jan 2019)

Threat Modeling as Code

Exploring threat models as code. (23 Jan 2019)

Behind the scenes taping a LinkedIn Learning video

LinkedIn Learning: Producing a Video

My Linkedin Learning course is getting really strong positive feedback. Today, I want to peel back the cover a bit, and talk about how it came to be. (10 Jan 2019)

IriusRisk 2.0

I’m excited to be able to share “Announcement: IriusRisk Threat Modeling Platform 2.0 Released.” (10 Jan 2019)