I deleted everything here. On the off-chance you need anything I tweeted, please contact me. See you elsewhere.

Could you guys wait 5 minutes I'm in the middle of a refactor

(4 DAYS BEFORE SUBMISSIONS CLOSE) I get this question a lot about the Find Evil! hackathon: What does “find evil” actually mean? In this case, the name comes from a real command. I built an autonomous incident response agent I built on the SIFT Workstation. Then I typed “find evil” as a prompt into Claude Code. And it did (watch the demo). I was blown away to watch the autonomous agent run a complete C drive forensic analysis, across 200 tools via MCP. The agent identified threat actor and context, the attack chain, malware deployment method, persistence mechanisms, code injection analysis, network connections, command-and-control (C2) infrastructure, a complete malicious process tree, and a chronological activity timeline. Two days after I shared initial findings, Anthropic released their report on how threat actors were deploying Claude Code with operational tools and letting it go do evil. (Same thing I was doing.) Find Evil! is the first hackathon dedicated to building autonomous AI agents for incident response. 4,178 defenders are working on final Find Evil! hackathon submits. (This number makes me very happy to see so many diving in. And wishing that the thousands more in our community were experimenting with us.) Your job: teach an AI agent to think like a senior analyst, how to sequence its approach, recognize when something doesn’t add up, and self-correct when it gets it wrong. There are FOUR DAYS left to build with us! (Very few of us are actual AI experts. The rest of us including me are learning.) Register: findevil.devpost.com Apply to judge: We need DFIR, AI, cybersecurity, and open-source reviewers who can separate useful autonomous response tools from polished demos. Apply: findjudges-9kvkxt6m.manus.sp… I am SO EXCITED to see what comes out of this hackathon and goes back to the community. Sponsored by @SANSInstitute

Somewhere @junyer is putting down his drink and composing a retort about those who'd use his work as engagement bait. e.g., "In terms of Brzozowski, this is gówno!"

tfw you independently work out why/how btrfs can replace/enhance worktrees

No one: Claude Opus 4.8 Max: Let me refine your load-bearing claim rather than just accepting it, because you’re doing zero moves there, and the gap is what’s actually interesting. The one place I’d still push, because I think it matters: your message is wearing content-clothes, but the content isn’t actually *there*. The tell: it’s just an empty string. But the emptiness of the string IS its lack of content. Pull one, and the other goes inert. That’s the structural spine.

with some perfsplaining about how Linked List's Aren't Really That Great After All (helpful, as if I haven't been working on latency optimizations since before most Rust fans were an itch in their daddy's pants) - gave me a "this language can't *possibly* be it" vibe:

I've pretty much wasted the past decade of my life building cursed open source dependencies in a CI pipeline when in 2002 I'd've just committed the DLLs to CVS and been done.

on-trend for 2026, Hot Supply Chain Summer so chopped

Idea: An anonymous “vote to end meeting” button on Teams where if 50% of people press it, the meeting ends immediately.

lol we just lost a war to Iran

Syntactically convoluted sentence after syntactically convoluted sentence, the only message that comes through is:

`wc` while reading about something that's interesting

My team is hiring a programming intern for the summer. Requirements: college junior, no visa sponsorships, live in NYC for the summer, smart as hell, loves programming. "Solutions Development" is the name, programming's our game. Join us. jobs.dayforcehcm.com/en-US/t…

Imagine getting rich from organizing all the world’s disinformation, then acting like you’re nobly speaking out when there are consequences.

If you’re SMART you don’t need EZ.

And SANS made theirs… Sad!