Last updated: January 2026

Blogs

• this week in security by Zach Whittaker - Essential weekly roundup of the most important security news and breaches
• tl;dr sec by Clint Gibler - My go-to newsletter for security tooling, AppSec, and cloud security trends
• Substack: Detection Engineering Weekly - Critical reading for anyone building detection rules and improving SOC capabilities

Websites

• DataBreaches
• MITRE EMB3D knowledge base of cyber threats to embedded devices
• MITRE ATT&CK knowledge base of adversary tactics and techniques - The foundational framework I use daily for threat modeling and mapping detection coverage
• MITRE ATLAS machine learning attack matrix
• Hacking The Cloud is an encyclopedia of attacks/tactics/techniques for cloud exploitation - Invaluable resource for understanding attacker TTPs in AWS, Azure, and GCP
• Known Breaches

Conference Talk Compilations

• AWS re:Invent 2024 Security Talks
• DEF CON 32 Main Stage Talks
• SANS CloudSecNext Summit 2024

Guides

• Collection of LLM resources related to security. From Dylan Williams
• Theory and Practice of Cryptography Mini-Course: taught in 2007 at Google
• APT_REPORT collected by @blackorbird
• CISA: Cyber Guidance for Small Business. Published 2024-04-01
• Incident Response Linux

Companies with Good Security Blogs

• Datadog security labs
• CloudFlare Security Blog
• Wiz Security Blog
• AWS Security Blog

Tools

• URL Validation Cheat Sheet
• Kubenomicon is a resource to understand Kubernetes from an offensive perspective
• Microsoft - Threat Matrix for Kubernetes
• Detection Armory by Anvilogic Forge
• Cloud Threat Landscapes
• DIANA - Automates the creation of detections from threat intelligence using LLMs
• Open Source Investigation Toolkit
• Ransomware Tool Matrix

Conferences

• MSSN CNTRL (2024)

Videos

• The impact of digital forensics in IR investigations | Carly Battaile and Partha Alwar | MSSN CTRL (2024)
• Using AI to reduce toil in detection writing | Dylan Williams | MSSN CTRL (2024)
• A decade of defense: securing the largest US crypto exchange | Philip Martin | MSSN CTRL 2024
• Kubernetes Security Fundamentals: API Security - Part 1. Published 2024-02-13
• AppSecCali 2019 - Startup security: Starting a security program at a startup - Evan Johnson
• BSidesSF 2024 - Startup Security, 2nd Edition, published 2024-07-08 Evan Johnson
• DEF CON 32 - On Your Ocean's 11 Team, I'm the AI Guy (technically Girl) - Harriet Farlow

Papers

• Hierarchical Multi-agent Reinforcement Learning for Cyber Network Defense. Submitted 2024-10-22 Alina Oprea
• Adversarial Machine Learning: A Taxonomy and Terminology of Attacks and Mitigations. Published 2024-01-15 Alina Oprea
• A Marauder's Map of Security and Privacy in Machine Learning. Published 2018-11-03
• Most Cited Security Papers from 2015-2019.
• CISA: Deploying AI Systems Securely. Published 2024-04-01 CISA

Articles

• Towards Zero Trust and Attribute-Based Encryption. Published 2024-11-16
• How we use Datadog for detection as code. Published 2024-10-11
• Paved Roads? Secure-by-Design?? More Buzzwords???
• North Korean-linked hackers were caught experimenting with new macOS malware. Published 2024-11-12
• Palo Alto Networks Confirms New Firewall Zero-Day Exploitation. Published 2024-11-15
• Pacific Rim: Inside the Counter-Offensive—The TTPs Used to Neutralize China-Based Threats. Published 2024-10-31 by Sophos
• State of Cloud Security. Published 2024-10-01 from Datadog Security Labs
• Things You Need to Know About Your Tech Salary, by Jeevan Singh
• Lessons in Security Tooling: Strategies for Success, by Jeevan Singh
• Microsoft's Dangerous Addiction To Security Revenue, published 2024-01-26 by Alex Stamos
• Startup Security by Andrew Kumansley
• Plotting a Winning Threat Detection Strategy: A Visual Model. Published 2024-01-22 by Van Vleet
• Things you wish you didn't need to know about S3, published 2024-05-30 by Daniel Grzelak
• Rolling your own Detections as Code with Elastic Security. Published 2024-05-14
• Startup Security: Starting a Security Program at a Startup. Published 2022-01-14 by Clint Gibler
• GreyNoise Intelligence Discovers Zero-Day Vulnerabilities in Live Streaming Cameras with the Help of AI. Published 2024-10-31
• Predicting AI's Impact on Security. Published 2024-06-17
• A Five Year Retrospective on Detection as Code. Published 2024-06-14 by Caleb Sima
• Phantom Secrets: Undetected Secrets Expose Major Corporations. Published 2024-06-23
• Hijacking GitHub runners to compromise the organization. Published 2024-05-22
• Methodology for incident response on generative AI workloads from AWS Security Blog. Published 2024-09-16
• NIST Drops Password Complexity, Mandatory Reset Rules. Published 2024-09-25
• How Cloudflare auto-mitigated world record 3.8 Tbps DDoS attack. Published 2024-10-02
• A Big Dashboard of Problems.pdf. Published 2023-02-28 by #TravisMcPeak