OSINT
Beyond the Face (Part 2): Beyond the Pixel - OSINT Techniques to Verify and Attribute Deepfakes
I’ve learned something ironic about deepfake investigations: The better the detectors become, the more they push me b…
OSINT
Beyond the Face (Part 1): The First Line - How AI Sees Deepfakes (and Where It Fails)
I still remember the first time my detector got it wrong. It was late, my study room was quiet and I was stress-testi…
OSINT
AI Meets OSINT: The Double-Edged Sword in Cybersecurity
It’s been a while since I last wrote about OSINT, and the landscape has changed a lot. These days, it’s impossible to t…
Risk Management
Quantifying Cyber Risk: The Art and Math of Attack Surface Scoring (Part 4)
We have come a long way. In Part 1 I showed the why, in Part 2 I turned that into a scoring method, and in Part 3 I e…
Risk Management
Quantifying Cyber Risk: The Art and Math of Attack Surface Scoring (Part 3)
In Part 2, I shared how I use OSSTMM and RAV to give each asset a risk score. It’s a solid way to get a sense of what’…